Senior Android Vulnerability Researcher

Company Description

This fast-growing UAE-based software development company is dedicated to delivering innovative digital solutions that empower businesses across diverse industries. The team specializes in custom software development, mobile and web applications, cloud solutions, and cutting-edge technologies tailored to meet modern market demands. As the company continues to expand, it is actively seeking passionate, talented professionals who are eager to contribute to high-impact projects, grow within a collaborative environment, and help shape the future of technology.

Role Description

Android vulnerability researcher responsible for advanced reverse engineering of operating system components and applications, identification of security vulnerabilities, and development of custom research tools and proof-of-concept exploits for highly complex projects.

Qualifications

• Minimum of 3 years of experience in vulnerability research, exploit development, and reverse engineering, with a focus on Android operating system and applications.
• Proven experience in reverse engineering and exploit development.
• Extensive knowledge of the Android kernel or Android application security vulnerabilities.
• Hands-on experience with Android debugging and development tools, such as Android Debug Bridge (ADB), Android Studio, and JEB Decompiler.

Skills and Competencies

•  In-depth understanding of ARM64(e) architecture and assembly language.
• Proficiency in programming languages commonly used in Android ecosystem: Java, Kotlin, C, C++, and ARM Assembly.
• Strong knowledge of Android's system architecture, including an ability to reverse engineer at the binary level.
• Deep understanding of Android's Binder IPC mechanism, system services, and SELinux.
• Knowledge of modern exploit mitigations and techniques used to bypass them.
• Expertise in using and developing automated testing tools, fuzzers, and exploit frameworks.
• Ability to work well independently and in a team, excellent communication skills, and a detail-oriented mindset.

Duties 

• Perform in-depth vulnerability research across Android system components, kernel, and applications.
•  Perform reverse engineering on Android software and kernel using tools such as JEB, IDA Pro, Ghidra and Frida.
• Develop and maintain tools, harnesses, and fuzzers to support large-scale vulnerability discovery.
• Produce detailed technical documentation outlining identified vulnerabilities, exploitation feasibility, and security impact.
• Analyze security mitigations and design new techniques to bypass them.
• Develop proof-of-concept exploits for discovered vulnerabilities at the application and kernel level, to demonstrate their potential impact and risk.
• Contribute to the Android vulnerability research, identifying new vulnerabilities.
• Maintain an up-to-date understanding of the threat landscape, staying ahead of sophisticated threat actors and evolving attack vectors.

What we offer 

• Performance-based bonus and bounty incentive scheme.
• 25 working days of annual leave.
• Education support for up to 3 children.
• Annual flight allowance for you and your family.
• Comprehensive medical insurance for you and your dependents.
• Life insurance coverage.
• Relocation support, including flights and temporary accommodation (as applicable).
• Summer remote work flexibility, subject to approval.
• Joining support such as housing advance and parking assistance (as applicable).