Dataflow Security

job inquiries

For more details on how to apply, contact us at:

[email protected] - (Download Public Key)

Head of Research

We are looking to fill the position of Head of Research. A person in this role will be responsible for co-developing the strategy of our research team and successfully executing that strategy.

Devising, planning and managing internal vulnerability research projects in the areas of mobile platforms, web applications and desktop platforms, which contribute to our higher level company goals and client requests;
Working closely with Dataflow’s Chief Research Officer to utilise our resources in a way that maximises the chances of our research projects to be successful, as well as satisfies our clients;
Devising, planning and implementing changes aimed at increasing our researchers well being (physical and mental) as well as their motivation and productivity;
Being in close contact with our clients technical staff and acting as a bridge between them and our domain experts;
Assisting our HR team in its research team recruiting efforts by defining job postings, suggesting potential candidates, providing feedback on candidates in our pipeline and conducting technical interviews together with our domain experts;
Managing researchers and supporting them in their day to day work by providing feedback, guidance and removing obstacles;
Supporting our business team in organising successful team events and public presences (such as at conferences).

A strong background in the domain of security research or software engineering as a manager, technical lead or researcher/engineer (at least 3 years);
Experience working with and managing medium sized technical teams (10+ people);
Good knowledge of effective management approaches and tools;
Excellent verbal and written English communication skills;
Ability to take initiatives and generate results.

Experience with the domain of vulnerability research.

Career Development: Enjoy off-topic time and access to the most attractive international training, conferences, hackathons, and more;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more;
Work Environment: Fully remote work environment as part of experienced and renowned mobile security researchers.

Senior Security Researcher

We are looking to fill the position of a senior security researcher. A person in this role will conduct vulnerability research on modern mobile software stacks of different vendors.

Planning and conducting vulnerability research, reverse engineering and exploit development around mobile browsers, messaging apps or operating systems;
Providing unbiased insights and ideas;
Writing blog posts and white-papers on the topics of cyber security;
Participating on behalf of Dataflow at conferences and information security competitions.

Must be able to apply a methodical approach to rigorously analyze and document the attack surface of unfamiliar and possibly large target code bases;
Track record of findings of impactful vulnerabilities (e.g., RCE, Sandbox escape, privilege escalation) in a mobile browser, mobile messaging app or Android/iOS kernels during the last 2 years;
Deep knowledge of memory corruption vulnerabilities;
Deep knowledge of exploitation is a plus, but not required;
Must be willing to conduct long term and widely scoped security research projects.
Good written English.

Finance: Highly competitive compensation package with an additional monetary bonus system based on vulnerability findings;
Career Development: Enjoy off-topic time and access to the most attractive international training, conferences, hackathons, and more;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more;
Work Environment: Fully remote work environment as part of experienced and renowned mobile security researchers.

Head of Engineering

We are looking to fill the position of Head of Engineering. A person in this role will be responsible for leading our engineering team and help Dataflow maximize its internal engineering efforts, tools and infrastructure. To be successful in this role, you should be confident leading our engineering team while, at the same time, setting goals, budgets and timelines for various projects. We also expect you to be in charge of integrations and software development plans from ideation to execution.

Leading and developing the engineering and DevOps team;
Implementing best practice engineering methods;
Providing technical guidance to engineering teams and top management;
Planning, managing and executing internal engineering projects, such as R&D, infrastructure and business applications;
Prepare and manage the engineering team budget;
Recruiting engineers and coordinating their training;
Generating, implementing and optimizing process improvements;
Investigating digital technologies and making suggestions to the VP of Information Security;
Designing and implementing new IT & security products and procedures;
Creating new ways to address existing security challenges;
New duties and responsibilities may be added or removed throughout your period at the company.

Leadership abilities with a strategic mind;
A strong background in software engineering (at least 5 years);
Experience working as part of or leading an engineering team with agile methodologies (e.g. Scrum);
Experience working with Linux/Python-based application stacks;
Basic familiarity with Ansible;
Familiarity with infrastructure and networking topics;
Ability to be successful leading a team at a remote-only company;
Ability to take initiatives and generate results;
Good and effective verbal and written English communication skills.

Finance: Highly competitive compensation package;
Career Development: Enjoy off-topic time and access to the most attractive international training, conferences and more;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more;
Work Environment: Fully remote work environment as part of experienced and renowned mobile security researchers.

macOS Security Researcher

We are looking to fill the position of a macOS security researcher. A person in this role will conduct vulnerability research in the default configuration of macOS. The main focus of the research will be userland attack surfaces applicable for sandbox escapes and privilege escalations.

Planning and conducting vulnerability research, reverse engineering and exploit development in the context of the macOS operating system;
Providing unbiased insights and ideas;
Writing blog posts and white-papers on the topics of cyber security;
Participating on behalf of Dataflow at conferences and information security competitions;

Must be able to apply a methodical approach to rigorously analyze and document the attack surface of unfamiliar and possibly large target code bases;
Must be willing to conduct long term and widely scoped security research projects – a vested interest in reverse engineering and reading code is recommended;
Experience reverse engineering compiled native for Intel or ARM64 platforms;
Experience recognizing security vulnerabilities and their impact;
Good knowledge of memory corruption vulnerability classes and exploit strategies;
Good knowledge of macOS userland concepts such as IPC mechanisms, sandboxing, services etc;
Good written English.

Finance: Highly competitive compensation package with an additional monetary bonus system based on vulnerability findings;
Career Development: Enjoy off-topic time and access to the most attractive international training, conferences, hackathons, and more;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more;
Work Environment: Fully remote work environment as part of experienced and renowned macOS and iOS security researchers.

Cyber Security Engineer

Our Cybersecurity team works diligently to ensure Dataflow Security software, hardware, and related components are protected from cyber-attacks. We’re developing our security systems, analyzing current systems for vulnerabilities, and preparing to handle cyber-attacks against us. As a Cybersecurity Engineer, you will support the company by building, implementing, optimizing, and administering the company's cybersecurity solutions to safeguard our data, systems, networks, and associates.

Build, configure, maintain, and monitor cybersecurity threat defense capabilities;
Create, implement, and tune policies on cybersecurity tools;
Collaborate with IT to appropriately configure cybersecurity systems and services and to monitor for indications of compromise;
Security log collection from various systems and integration with the Security Information and Event Management (SIEM) system in order to enable fast threat detection and response;
Maintenance and monitoring the health and wellness of the SIEM – ELK stack;
Assist troubleshooting escalated cybersecurity incidents to aid in rapid resolution;
Develop dashboards, reports, and alerts to meet their cybersecurity operational information requirements;
nvestigate and recommend corrective actions to improve Incident Response plan;
Execute penetration tests in accordance with PTES.

Bachelor's Degree from an accredited college or university with a major in Cybersecurity or Computer Information Systems, or a minimum of 3 years of cybersecurity experience;
Minimum 5 years of general IT experience with various operating systems in a functional capacity (Linux, macOS, Xen, XCP-ng);
Minimum of 3 years of direct experience in cybersecurity operations;
Experience with configuring and maintaining cybersecurity technologies. Preference to experience with ELK Stack, Linux Firewalls, and Kali Linux or ParrotSec cybersecurity systems;
Working knowledge of coding with Python and/or shell scripts;
In-Depth understanding of cybersecurity operations and incident response procedures and toolsets used for internal investigations and audit/compliance reviews;
Experience with the MITRE ATT&CK Framework and Cyber Kill Chain;
Knowledge of common information security standards is a plus, such as NIST and CIS;
Understanding security concepts of Cloud/Private Cloud - IaaS/PaaS/SaaS;
Basic understanding of the elements of the System Development Life Cycle;
Ability to work independently and as part of a team with minimal supervision;
Excellent written and verbal communication skills. Must be able to communicate technical details in a clear, concise, understandable manner;
This position requires minimal travel.

Finance: Highly competitive compensation package;
Career Development: Enjoy off-topic time and access to the most attractive international training, conferences, hackathons, and more;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more;
Work Environment: Fully remote work environment as part of experienced and renowned mobile security researchers.

Project Manager

At Dataflow Security, we offer you a unique challenging and rewarding environment to provide immediate impact for both internal and external projects and their stakeholders. Dataflow Security, is a global leader in mobile security research, compromising the most talented researchers across the globe, to solve the hardest technical challenges, to create a safer world for everyone. We are looking to fill the position of a technical project manager. A person in this role will perform management tasks and work closely with our director of project management.

Analyze and understand, roles and responsibilities for team members required for each specific project;
Participate within technical team meetings to gather insight about project status;
Facilitate communication with leadership and other stakeholders, including regular reports regarding implemented strategy;
Create and maintain internal policy and guidelines in relation to technical projects;
Maintain hardware and software acquisition for technical projects;
Oversee day-to-day operations and perform general administrative tasks such as gathering feedback from team members.

Ability to predict upcoming challenges and communicate with key stakeholders of each project those concerns;
Excellent time management and organizations skills;
Excellent communication skills and ability to proactively seek solutions to problems;
Proven experience in a managerial role;
Strong decision-making capabilities;
Ability to motivate and lead people, and hold team members accountable;
Experience managing people.

Finance: Highly competitive compensation package;
Career Development: Enjoy off-topic time and access to the most attractive international training, conferences, hackathons, and more;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more;
Work Environment: Fully remote work environment as part of experienced and renowned mobile security researchers.

our mission