Android Vulnerability Researcher

Our client is seeking an Android Vulnerability Researcher to join their team. The ideal candidate will be responsible for identifying, evaluating, and exploiting vulnerabilities within the Android operating system. We are looking for experts with a strong background in Android/Linux vulnerability research and exploit development, along with a deep understanding of modern mitigation techniques and their bypasses. We have multiple openings for this role, catering to various levels of experience and seniority.

Key Responsibilities

• Conduct vulnerability research on mobile platforms and operating systems, primarily focusing on Android (experience with iOS and Linux is also valued).
• Gain an in-depth understanding of Android/Linux OS internals, interfaces, and security mechanisms.
• Perform source code audits on large C and C++ codebases.
• Develop exploits for identified vulnerabilities in operating systems and native applications.
• Utilize programming skills in C, Python, and ARM/AArch64 assembly.

Preferred Qualifications

• Proven experience in identifying and exploiting vulnerabilities in high-security software systems.
• Expertise in developing reliable and robust exploits.
• Advanced knowledge of memory management systems in Android devices.
• Familiarity with modern mitigation techniques such as SELinux, hypervisors, trusted computing, CFI, stack cookies, KASLR, and heap protections.
• Proficiency in binary auditing, debugging, and instrumentation using tools like GDB, Frida, IDA, and Ghidra.
• Experience in fuzzing OS internals and APIs using tools like syzkaller, AFL++, and libfuzzer.