Android Reverse Engineer - MId/Jr. level

Job Title: Android Reverse Engineer - Mid /Jr. level

Job Location: Tysons VA 22012 (Remote)

Onsite Requirements:

• Android experience


• JADX or similar Reverse Engineering tools


• Static analysis

Job Description:

• We are seeking a talented Android Reverse Engineer to join our team.


• The ideal candidate will have hands-on experience in reverse engineering Android applications and SDKs, uncovering security vulnerabilities, and crafting solutions to improve detection of applications/SDKs to reduce user harm.


• This role requires a blend of analytical skills, practical programming knowledge, and a deep understanding of the Android ecosystem.

Responsibilities:

• Conduct reverse engineering of Android applications to identify security vulnerabilities.


• Utilize static and dynamic analysis techniques, including decompilation, disassembly, debugging, and monitoring.


• Analyze and audit application code to identify potential security flaws or issues.


• Develop comprehensive technical documentation, reports, and presentations based on findings.


• Collaborate with the team to design and implement remediation strategies for identified vulnerabilities.


• Employ tools such as JADX, IDA Pro, Ghidra, Smali/Baksmali, ADB, and Frida for advanced analysis and debugging.


• Monitor system calls, network traffic, and other program-environment interactions to detect anomalies.


• Support incident response efforts by analyzing malware and other suspicious binaries.


• Provide expertise on cryptography, networking protocols, and Android system architecture.

Qualifications:

Education

• Bachelor's degree with equivalent practical experience will be considered.

Experience

• Junior-Level: 1-3 years of relevant experience.


• Mid-Level: 3-5 years of relevant experience.


• Senior-Level: 5+ years of relevant experience.

Technical Skills:

• Programming Languages: Proficient in Java/Kotlin, Python, and JavaScript. Experience with non-Java coding languages is a plus.


• Android Fundamentals: Expertise in permissions, manifests, services, exported activities, and Dalvik/ART VM.


• Reverse Engineering Tools: Proficiency with decompilers (JADX, Ghidra), disassemblers (Smali), debugging tools (ADB, JDWP), and HTTP interception tools (BurpSuite, HTTP Toolkit).


• Cryptography and Encoding: Knowledge of Base64 encoding, encryption/decryption methodologies, and CyberChef.


• Networking: Understanding of protocols like HTTP and TCP/IP.


• Problem-Solving: Strong analytical and debugging skills.

Preferred Experience:

• Web application penetration testing.


• Mobile forensics and binary/malware analysis.


• Participation in CTF challenges or security-focused hackathons.


• Incident response or experience with security operations.