Oferta pracy

Security Engineer - Android Vulnerability Researcher

Samsung R&D Institute Poland

Samsung R&D Institute Poland

plac Europejski 1

Wola

Warszawa

Technologies we use

Expected

  • C

  • C++

Optional

  • Linux

  • Android

  • Python

About the project

Samsung R&D Poland Mobile Security Team is looking for Security Engineers / Android Vulnerability Researchers (we have opened positions from Junior to Senior). The main responsibilities of this role are finding new and analyzing existing vulnerabilities in Samsung Android based products (Linux kernel and native user space), planning and conducting security analysis, performing security research, developing infrastructure and tools to automate vulnerability detection.

Your responsibilities

  • Conducting security assessment of the newest Samsung flagship devices (Galaxy S and Galaxy Note devices)

  • Performing security research focused on finding vulnerabilities in Samsung products

  • Finding bugs in software applications, system services, drivers and kernel to identify potential vulnerabilities

  • Constant review of existing processes and tools, gradual improvement of assessment methodology

  • Automatic and manual security testing, analyzing and triaging using both source code analysis and dynamic analysis tools

  • Building, maintaining and extending the distributed fuzzing framework for the discovery and triage of vulnerabilities

Our requirements

  • Comprehensive, practical programming knowledge in C or C++ language (good to have Java or Python, the more you know about how programs work together with operating systems, network, etc. the better)

  • Ability to 'think outside of the box' and a passion for solving unique challenges in technical environments

  • Knowledge about different types of fuzzing techniques and related tools

  • Practical knowledge of the code review for finding vulnerabilities

  • Knowledge about application security, reverse-engineering and binary analysis (GDB, IDA Pro)

Optional

  • Ability to leverage scripting languages like Bash or Python for implementation of automatable tasks

  • Deep understanding of Linux/Android Operating System and its low-level components (like drivers)

  • Knowledge of Kernel interworking with drivers, services and higher level platform components

  • Knowledge of static and dynamic analysis tools in and its usage in the context of security evaluation

  • Knowledge of clang compiler internals, ability to write compiler extensions to improve security analysis

What we offer

  • Friendly working atmosphere

  • Wide range of trainings

  • Opportunity to work in multiple projects

  • Working with the latest technologies on the market

  • Possibility to attend local and foreign conferences

  • Start of work between 7 a.m. and 10 a.m.

  • Benefits

  • sharing the costs of sports activities

  • private medical care

  • sharing the costs of foreign language classes

  • life insurance

  • corporate products and services at discounted prices

  • integration events

  • dental care

  • no dress code

  • leisure zone

  • pre-paid cards

  • redeployment package

  • baby layette

  • employee referral program

  • charity initiatives

  • unlimited free access to Copernicus Science Center

  • mentoring program

  • psychological support

  • possibility to test new Samsung products

  • work in Korea as a part of our Mobility Program

Samsung R&D Institute Poland

If you share our faith in the power of technology that changes reality, you work with passion, you have a curiosity about the world and you still want to learn - this is the place for you, and we know what types of working conditions to create to foster your development. We are looking for people who can turn bold visions of the future into projects and products that will serve millions of people around the world.

Scroll to the company’s profile