Android Vulnerability Researcher

About The Position

Requirements

• 3+ years of experience conducting vulnerability research, reverse engineering, or exploit development
• Experience with C/C++, Python, Java or Kotlin, and the Android NDK/SDK
• Experience using IDA Pro, Ghidra, Binary Ninja, gdb, LLDB, Jadx, or Frida
• Experience in successfully discovering and weaponizing vulnerabilities
• Experience defeating kernel hardening, sandboxing, and attestation mechanisms
• Experience with GitLab CI/CD for implant build pipelines
• Knowledge of ARM64 architecture and AArch64 assembly
• Ability to achieve code execution in ring-0 and TrustZone contexts
• HS diploma or GED

Nice To Haves

• Experience in publishing research or tools recognized within the offensive security community
• Experience providing operational support to IC or DoD cyber mission forces
• Experience contributing to mobile exploit frameworks or public CVE discoveries

Responsibilities

• Discover and operationalize previously unknown vulnerabilities across the Android ecosystem
• Conduct advanced research on AOSP, OEM implementations, and trusted execution environments
• Develop reliable exploits targeting user applications, system components, kernel, TrustZone, and baseband subsystems
• Engineer persistent CNO implants and infrastructure
• Perform large-scale reverse engineering of closed-source binaries, bypassing modern mitigation
• Author comprehensive technical documentation, contributing to capability roadmaps and emerging tradecraft
• Leverage AI/LLM-powered tooling to accelerate vulnerability discovery and exploit development

Benefits

• health, life, disability, financial, and retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values