Android Security Researcher

**About iVerify**:
We are Experts in Mobile Threat Hunting. The first mobile threat hunting company to protect mobile devices like any other vulnerable corporate endpoint.

The mobile security market has a problem. Simply put, current solutions fail to meet the sophistication of modern threats or the growing privacy desires of mobile device users. We believe that it is time for something new. Not only because we care deeply about the safety of frontline users like journalists and activists - many of whom are doing important and often dangerous work - but because enterprises and consumers deserve real protection from advanced mobile threats without sacrificing privacy.

We are building the first mobile threat hunting company to harmonize security and privacy in the face of a new class of mobile threats. Supported by some of the most well-respected VC firms, we aim to become the go-to mobile security solution for individuals who want to know they can trust their devices with their most sensitive information - without sacrificing privacy.

**About the Role**:
iVerify leads the world in iOS malware analysis and detection capabilities and we now need to extend this to the Android world too. This is an amazing opportunity to come in and define best practices in this space whilst helping to combat the worst nation-state and mercenary spyware groups targeting our customers. This is even more exciting as this is the first position in our Android analysis cell and there is potential to grow this team significantly over the coming years. You will also be working with our iOS and Network cells alongside our Data Science team.

**Responsibilities**:

- Analyze malware samples to identify signatures and develop new detection methods to enhance security measures.
- Design and develop advanced malware analysis tools and methodologies to stay ahead of emerging threats.
- Investigate potential attack vectors on Android devices and understand how various forms of attacks are executed.
- Identify signs of exploitation and respond effectively to prevent or mitigate security breaches.
- Evaluate failed exploits to determine appropriate response strategies and refine detection techniques.
- Review and interpret malware analysis reports to understand attack mechanisms and improve detection and prevention strategies.

**Requirements**:

- Proficiency with tools such as Ghidra, IDA Pro, Frida, and JEB for reverse engineering tasks.
- Strong background in Android forensics, including experience with commercial spyware attacks and analytical methods.
- Comprehensive understanding of the Android operating system, including familiarity with log files and their locations.
- Experience with Android sandboxing techniques.
- Skills in malware analysis specifically for Android OS, including the ability to build and maintain malware analysis pipelines.
- Proficiency in Python and shell scripting.
- Good understanding of the ELF format.
- Strong verbal and written communication skills in English.

**Nice to Have Skills**:

- Basic machine learning knowledge.
- Familiarity with mobile frameworks such as Cordova, Xamarin, and Flutter.

**Compensation**:
Our salary ranges are determined by role, level, location, and employment type. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position. Within the range, individual pay is determined by a variety of factors, including, but not limited to, work location, job-related skills, experience, and relevant education or training.

**Diversity, Equity, and Inclusion**:
At iVerify, we are committed to building a diverse, equitable, and inclusive workplace and community. We believe that diversity in all its forms drives innovation and fosters creativity. We strive to create an environment where everyone feels valued, respected, and empowered to bring their authentic selves to work.