Reverse Engineer

About the Role

Join Trellix's global Android Reverse Engineering program as a skilled App and SDK Reverse Engineer. You will analyze and deconstruct Android applications to identify security risks, gain insights into underlying functionality, and contribute to an industry-leading cybersecurity platform.

Your Responsibilities:

• Deep Dive Analysis: Conduct in-depth analysis of Android apps and SDKs to understand codebase architecture, functionality, and potential vulnerabilities.
• Reverse Engineering Techniques: Employ advanced techniques including decompilation (using Jadx, Ghidra), disassembly (IDA Pro), debugging (Frida), and binary/APK analysis with Burp Suite.
• Risk Identification: Detect data leakage, malicious code execution, user/device risks, and security gaps within Android environments.
• Threat Intelligence: Gather intelligence on malware, exploits, APTs, and emerging trends using OSINT (Virus Total, ExploitDB, MITRE).
• Collaboration: Work with developers and researchers to share findings, develop signatures (SQL, Yara), and build secure ecosystems.

About You

We seek engineers with 3-5+ years of expertise in Android Development, Pentesting, or Application Security. Essential skills include unpacking malicious code, static/dynamic analysis, ELF reverse engineering, and knowledge of mobile languages (Java, Kotlin, Flutter).

Preferred: Understanding of AOSP, app lifecycles, rooting techniques, cryptography, network traffic analysis, and mobile store policies.