Mobile Security Research Engineer in Virtual / Travel

$80K - $100K(Ladders Estimates)

NowSecure   •  

Virtual / Travel

Industry: Enterprise Technology


Not Specified years

Posted 53 days ago

Who you are:

This exciting role sits at the intersection of software engineering, reverse engineering, automation, and vulnerability research. This team member can expect to contribute exciting new capabilities to our products, with many opportunities for applied security research. The ideal candidate has a firm command of mobile security tools, a knack for developing their own new capabilities, and is comfortable applying static and dynamic program analysis techniques to mobile security challenges. This candidate may have previously held positions as a software engineer or mobile developer and has taken an interest in researching new security vulnerabilities and mitigations. While a great reverse engineer, you also enjoy writing software and take pride in your craftsmanship and ability to think about design, and system architectures from both the reverse and forward engineering perspectives.

The candidate should feel comfortable performing mobile security assessments and be deep in at least one area of the OS stack. This is a technical position that presents opportunity to do research, present at conferences, and offers career advancement. The candidate should feel comfortable being focused on applied research and product development. This candidate is also driven by curiosity and a desire to understand systems at the most fundamental levels.

Members of our R&D team have presented at DefCon, Black Hat, and RSA Conference, to name a few.

Role description:

  • Understand the strengths and weaknesses of security related to mobile apps, devices and operating systems.
  • Deep technical understanding of at least one mobile platform (iOS or Android)
  • Utilize "hacking" and pen testing techniques to target mobile apps and Web services, and test their security
  • Capable of understanding and adapting large code bases of existing tools or functionality to meet specific requirements or for proof of concept development
  • Examine transmitted and stored data for personally identifiable information (PII) and/or mobile application artifacts
  • Identify both new vulnerabilities and ideate on key strategies for detection and remediation of software vulnerabilities
  • Continuously monitor the state of the mobile security industry with an eye towards innovation
  • Work with NowSecure's CTO and within our R&D team across NowSecure to assure continuous upgrades to existing offerings and the development of new cutting edge mobile security solutions

Experience we're looking for:

  • Understanding of mobile security techniques and fundamentals
  • Proficiency in more than one programming language including high level (JavaScript, Python and/or Node.js) and low-level system languages (C/C++/Rust)
  • Familiarity with exploit development, writing fuzzers and ideation of attack vectors
  • Experience with reverse engineering, especially mobile apps and ARM CPUs
  • Bachelor's Degree in Computer Science, Computer or Electrical Engineering, or equivalent experience
  • Strong communication skills and a high level of professionalism
  • Fluency in written and spoken English
  • Ability to work independently and with a team
  • Comfortable working with remote teams

Valid Through: 2019-10-18