Solution Consultant

📋 Description

• • As an Android Reverse Engineer at Trellix, you will play a critical role in safeguarding our clients by delving deep into the intricacies of Android applications and Software Development Kits (SDKs).
• • Your primary responsibility will be to conduct comprehensive and in-depth analyses of these mobile components, meticulously deconstructing their architecture, functionality, and codebase.
• • This deep dive analysis is crucial for uncovering potential security vulnerabilities, identifying risks to users and devices, and detecting instances of data leakage or malicious code execution.
• • You will be at the forefront of employing advanced reverse engineering techniques, including decompilation, disassembly, and debugging, to extract vital information from diverse codebases.
• • A significant aspect of your role will involve gathering, analyzing, and reporting on threat intelligence specifically related to Android malware, emerging exploits, and evolving security trends within the mobile ecosystem.
• • This intelligence will directly inform our security strategies and product development, ensuring Trellix remains a leader in cybersecurity.
• • You will collaborate closely with a talented team of security researchers, developers, and other stakeholders, sharing your findings and providing actionable recommendations.
• • Your insights will contribute directly to the development of more secure applications and a more resilient cybersecurity ecosystem for our customers.
• • This role offers the unique opportunity to work on cutting-edge cybersecurity challenges, contributing to a global effort to protect organizations from the most advanced threats.
• • You will be instrumental in understanding how malicious actors operate on the Android platform and developing countermeasures.
• • The analysis extends to understanding the nuances of various mobile software languages and frameworks, including Java, Kotlin, JavaScript, and Flutter.
• • You will also engage in the reverse engineering of native binaries (ELF), further broadening the scope of your technical contributions.
• • Developing signatures, such as SQL and Yara rules, will be a key part of translating your analysis into practical security measures.
• • A strong understanding of Android fundamentals, including activity lifecycles, common API usage, and the Android Open Source Project (AOSP), is essential for contextualizing your findings.
• • You will investigate techniques employed by malicious applications to compromise user devices and data, contributing to a proactive defense strategy.
• • Familiarity with mobile app store policies, including those related to advertising, potentially harmful applications (PHAs), and developer guidelines, will be beneficial.
• • Analyzing network traffic and applying fundamental security principles will be integral to your investigative process.
• • You will leverage open-source intelligence (OSINT) tools and platforms like VirusTotal, ExploitDB, and MITRE ATT&CK to research threats, including Advanced Persistent Threats (APTs).
• • Understanding encoding, cryptography, authentication mechanisms, and device rooting techniques will enhance your ability to dissect complex security challenges.
• • You will also tackle the complexities of advanced frameworks and application packers, which are often used to obfuscate malicious code.
• • This role is ideal for a proactive and analytical individual who thrives on solving complex technical puzzles and has a passion for mobile security.
• • Your work will directly impact Trellix's ability to provide comprehensive, open, and native cybersecurity solutions to over 50,000 business and government customers worldwide.
• • You will be part of a company that is redefining the future of cybersecurity through innovation in artificial intelligence, automation, and analytics.
• • The position requires a meticulous approach to analysis, a deep understanding of mobile security threats, and the ability to communicate technical findings clearly and effectively.
• • By joining Trellix, you contribute to a mission-driven organization dedicated to empowering organizations with confidence in their security and resilience.
• • This is an opportunity to grow your expertise in a rapidly evolving field within a supportive and collaborative global team.