Research Engineer

Join Our Mission: To Save the World from Unsafe Mobile Apps! NowSecure is the mobile app security software company trusted by the world’s most demanding organizations and most advanced security teams.

As the standards-based mobile app security and privacy company, NowSecure protects the Mobile App Economy. The world’s most demanding organizations, innovative mobile developers and advanced risk managers and compliance teams entrust NowSecure to safeguard millions of mobile app users across banking, insurance, high tech, IoT, retail, hospitality, energy and government sectors. Only NowSecure delivers the full solution suite of continuous security and compliance assessment with the depth, speed, accuracy, and efficiency to meet modern business demands. Dedicated to the open-source community and standards including OWASP, ioXt and NIAP, NowSecure is SOC 2 certified and recognized by IDC, Deloitte, Gartner and TAG Cyber.http://www.nowsecure.com

Your Opportunity:

This exciting role sits at the intersection of iOS reverse engineering and software engineering. The ideal candidate has a firm command of mobile security tools, a knack for developing their own new capabilities, and is comfortable applying static and dynamic program analysis techniques to mobile security challenges. While a capable reverse engineer, you also enjoy writing software and take pride in your craftsmanship and ability to think about design and system architectures from both the reverse and forward engineering perspectives. You are capable of working independently on software projects with only high-level guidance, and can rapidly adapt to work on existing projects with established teams.

Members of our R&D team have presented at DefCon, Black Hat, and RSA Conference, to name a few.

What You’ll be Doing:

• Leverage deep technical understanding of iOS to build tools to test apps on both stock and jailbroken devices
• Understand and adapt large code bases of existing tools or functionality to meet specific requirements or for proof of concept development
• Communicate the strengths and weaknesses of security related to mobile apps, devices and operating systems
• Reverse-engineer apps and frameworks to identify techniques used for jailbreak detection and runtime protection
• Examine transmitted and stored data for personally identifiable information (PII) and/or mobile application artifacts
• Ideate on key strategies for detection and remediation of known software vulnerabilities
• Continuously monitor the state of the mobile security industry with an eye towards innovation
• Work within our R&D team and across NowSecure to assure continuous upgrades to existing offerings and the development of new cutting-edge mobile security solutions
• Work in a flat, agile, and expedited project structure

Who You Are:

The candidate should feel comfortable performing mobile security assessments and be deep in at least one area of the OS stack. This is a technical position that presents opportunities to do research, present at conferences, and offers career advancement. The candidate should feel comfortable working at a company focused on applied research and product development. This candidate is driven by curiosity and a desire to understand systems at the most fundamental levels.

Skills and Experience Needed for Success:

• Understanding of mobile security techniques and fundamentals
• Proficiency in more than one programming language including high-level (TypeScript, JavaScript, and/or Node.js preferred) and low-level system languages (C/C++)
• Experience with reverse engineering, especially iOS apps and ARM CPUs
• Comfortable writing and using Frida scripts
• Bachelor’s Degree in Computer Science, Computer or Electrical Engineering, or equivalent experience
• Strong communication skills and a high level of professionalism
• Fluency in written and spoken English
• Ability to work independently and with an international team
• Comfortable working with remote teams across time zones

Bonus Points if You Have Any of the Below:

• Previous experience working in the Mobile Security OR AppSec OR Cybersecurity space is a plus

We Value Diversity

We believe that the best ideas come from teams where diverse points of view uncover new solutions to hard problems. We welcome and value team members who bring diverse life experiences, educational backgrounds, cultures, and work experiences.

Compensation & Benefits

• The salary band for this position ranges is competitive and commensurate with experience and performance.
• This position will be eligible for a competitive annual bonus and equity package.
• Remote work flexibility (Find your team members working across the U.S. and globally!)
• Flexible PTO (And yes, we want you to use it!)
• Comprehensive Medical/Dental/Vision coverage
• 401K Plan with Company Match
• Paid Parental Leave
• Home Office Stipend
• The rare opportunity to work with sharp, motivated team members solving some of the most unique challenges with a passion for Mobile App Security!