Location— Kiev

Job Description
White & black-box software vulnerability assessment of internal products:
security review of Android mobile applications and firmware
risk analysis and security issues mitigation advisory
exploitability Proof-of-Concepts development
emerging threats research: new attack methods, (un)known
security issues risks
Security validation is typically executed in 1-2 months iterations.

Major Requirements
in-depth understanding of Android security architecture and
typical security issues
practical experience in reverse-engineering (preferably *.apk
and ARM binaries), software exploitation, binary and source
code audit
knowledge of Linux Kernel security architecture and
Android-specific add-ons (IPC, SE Android, application securit framework)
ability to understand execution logic in C/C++, Java,
Assembler; scripting skills (Python)
good technical English, strong reporting and communication

Optional Requirements
security background (University, relevant prior employment)
participation in security contests (CTF), own write-ups
publications, community activities
hands-on experience with assessment automation tools
(fuzzers, static source code analyzers)
experience with IDA Pro, JEB customization with own plugins
applied crypto: knowledge of existing algorithms and
protocols (AES/RSA/ECC/SHA, authentification/key exchange,
digital signature, SSL/TLS)
software exploitation experience
reversing experience of protected solutions (obfuscated /
packed code)
awareness of security-related standards and best practices
(OSSTMM, OWASP, PTES, NSA Vulnerability and Penetration
Testing Standards)

What we offer:
Competitive salary (USD per month that will be paid in UAH
according to official NBU rate), semiannual bonus, annual
salary review
Corporate SW certification program for employees
(guaranteed bonus for level achievement)
Technical library of sharing worldwide knowledge, workshops
and training
Global mobility programs to headquarters and global R&D
centers (for top performers)
Official employment according to Ukrainian Labor Code
(days-off on Ukrainian official holidays; paid sick leave; paid
maternity leave)
Flexible working schedule (no remote work)
28 working days of annual paid vacations;
Medical & life insurance for employees and their children
Discount on Samsung products
Compensation of lunches
Congratulation bonus (marriage, child birth)
Business trips to other countries
English & Korean language courses
Bicycle parking
Internal referral program
Convenient location: close to metro stations «Vokzalna»
and «Universitet»
Sport Life fitness-center with pool and parking (right in
the office building), bank, minimarket, beauty salon, restaurant,

Отправить резюме на эту вакансию