Reverse Android Engineer (Tier 1 / Tier 2)

Title: Reverse Android Engineer (Tier 1 / Tier 2) Length of Contract: Contract- 2 Years Location: Remote is Fine (Need to work PDT/CDT) Ideal Start Date: Aug/Sept Process- Submittals must include a Capture the flag exercise (CTF) with the resume, 2nd round is a technical with 2 screeners on their side and 3rd is a final formality interview with team- If they get to step three they normally will get the offer Drug/Background Check – Both Required prior to start Duties: This strategic role combines hands-on research, reverse engineering, and detection development with architectural vision and cross-functional collaboration. You will investigate emerging attack techniques and design novel detection approaches. • Lead efforts to reverse engineer sophisticated malware, identifying malicious code, obfuscation techniques, and communication protocols. • Author advanced detection rules for behavior-based detection engines. • Conduct comprehensive research on attacker campaigns and techniques to support detection investments and enhance customer experience. • Develop and optimize generic threat detection strategies based on static and dynamic detection engines. • Perform advanced proactive and reactive threat hunting to identify detection issues such as misses or misclassifications from large-scale datasets. • Respond to escalations to resolve detection effectiveness issues (misclassifications, false positives, and false negatives). • Collaborate with cross-functional teams within the product organization including product management, engineering and research to drive exceptional customer experiences and ensure comprehensive protection. • Develop advanced alerting, reporting, and automated detection solutions. • Stay abreast of the latest cybersecurity threats, attack techniques, detection evasion tactics, OS features, and industry developments. • Build and maintain tools and automation to improve productivity and detection efficacy. • Utilize machine learning techniques to enhance threat detection and response capabilities. Must Haves: Tier 2 level: • 3-5 Years of combined practical experience with the following: • Web Application Penetration Testing • Mobile Forensics • Binary Analysis • Malware Analysis • Reverse Engineering on other platforms • CTF, Hack-in-the-box, Hack this site • Incident Response, Security Operations • Android Development • Must have experience with Non- Java Coding, Frameworks (Unity, Flutter, Xamarin), Dalvik/ART Virtual Machine • Must know the Reverse Engineering Fundamentals Including: • Static Analysis- Decompliation to a higher-level language, Disassembly, Code Auditing • Dynamic Analysis- Debugging, Monitoring, and Fuzzing • Data Analysis- Data Extraction and Data Mining • Must have experience with Reverse Engineering Tools including- • Decompilers- IDA Pro, Ghidra, Radare2, JADX, Fernflower • Disassemblers- Smali/Baksmali • Debugging Tooks- ADB, JDWP • Emulators- BlueStack, Unicorn qemu, Android Studio • tcpdump/Wireshark • Frida • CyberChef or similar Tools (encode/decode, encryption/decryption) • HTTP Interception Tools (WebScarab, HTTP Toolkit, BurpSuite) • Pattern Detection (Yara, SEMGREP, SNORT) • Must be knowledgeable in Linux/Unix, Networking Fundamentals and protocols, and Problem Solving and Debugging • Strong communication and technical writing Tier 1 level • 1-2 Years of combined practical experience with Android Engineering or reverse Engineering (is a must) • Need experience with programing fundamentals including Encode/Decode (Base 64) and Cryptography (Encryption/Decryption) • Experience with one of the following Static Analysis Reverse Engineering Fundamentals (Preferred) • Decompliation • Disassembly • Code Auditing • Experience with one of the following Dynamic Analysis Reverse Engineering Fundamentals (Preferred) • Debugging • Monitoring • Experience experience with one of the following Reverse Engineering Tools (Preferred) • Decompilers- IDA Pro, Ghidra, Radare2, JADX, Fernflower • Disassemblers- Smali/Baksmali • Debugging Tooks- ADB, JDWP • Must have experience with Linux/Unix Command-Line Job Type: Contract Pay: $35.00 - $65.00 per hour Expected hours: 40 per week Benefits: • 401(k) • Dental insurance • Health insurance • Vision insurance Work Location: Remote