We are looking for experienced and passionate people who have a background in vulnerability research, offensive security and reverse engineering on Apple platforms.
The role:- You'll join our team looking to identify vulnerabilities in Apple platforms using both static and dynamic analysis techniques.
- You'll develop Proof-of-Concepts for vulnerabilities identified.
- You'll use common VR toolsets such as fuzzers, LLMs and reverse engineering tools; as well as have access to custom tooling built in-house (along with developing your own!).
- You'll need to present your findings in a useful and accessible way to others.
- You'll have access to internal and external training and conferences to refine and hone your skillsets.
The ideal candidate:- Developed tools and proof of concepts in a modern programming language such as Python and Rust.
- Skills in debugging and hacking around with low level or other relevant languages such as C, Swift, C++, Objective C, etc.
- Ability to reverse engineer ARM64 binaries using common toolsets such as IDA, Binary Ninja and Frida.
- Interest and a passion in learning new things, taking them apart, and getting stuck into new problems and challenges.
Desirable technical experience:- Research on the low-level internals of Apple platforms, including topics such as runtime internals, platform security features and exploit mitigations.
- Reverse engineering and vulnerability research on userland components on Apple platforms including XPC protocols, private frameworks and userland system daemons.
- iOS application reverse engineering and bug hunting, looking for weaknesses, logic bugs and memory corruption issues.
- Kernel or system level software internals and vulnerability research, for example XNU code review or IOKit reverse engineering and exploitation.
Salary:Packages are competitive and differ according to researcher experience. Full details can be discussed upon an invitation to interview.
Perks and benefits:- 25 days paid vacation + federal holidays
- Annual bonus based on company targets
- Matched 401k scheme up to 4%
- Healthcare, dental and vision cover
- Training and conference budgets
- Employee assistance program
- Company socials throughout the year
The location:This is a remote role so the successful candidate can be based anywhere in the USA, or indeed the world!
We aim to respond to all candidates via email within a week of their application. Please note that emails may go to your spam or junk folder.
Department Mobile Locations USA Remote status Fully Remote
