Dataflow Security

job inquiries

For more details on how to apply, contact us at:

[email protected] - (Download Public Key)

Browser Security Researcher

We are looking to fill the position of a security researcher in our Browser team. A person in this role will conduct vulnerability research on Web Browsers.

Help develop and carry out the Browser team research strategy by doing vulnerability research, reverse engineering and exploit development on Web Browsers;
Provide unbiased insights and ideas to the research team;
Develop proof-of-concept code and exploits to the quality standard of DFSEC;
Remain on top of various developments related to Web Browsers such as security mitigations, new features, etc.

Track record of finding impactful vulnerabilities (RCE or Sandbox escape) in Web Browsers during the last year;
Deep knowledge of Web Browsers architecture and internals;
Solid understanding of predominant bug classes and patterns;
Solid understanding of current and upcoming security mitigations;
Ability to conduct long-term and widely scoped security research projects as part of a broader team effort;
Exploitation experience is a plus, but not required;
Good written English.

Finance: Highly competitive compensation package with an additional monetary bonus system based on exploitable vulnerability findings;
Career Development: Further your career by joining a team of established and experienced security researchers;
Work Environment: Fully remote with flexible work schedule;
Off-topic Research: We allow researchers, at their discretion, to spend up to 15% of their time conducting research on other topics;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more.

Baseband Security Researcher

We are looking to fill the position of a security researcher in our Android team. A person in this role will conduct vulnerability research around the Android ecosystem at the baseband level.

Help develop and carry out the Android team research strategy by doing vulnerability research, reverse engineering and exploit development on baseband-related research projects;
Provide unbiased insights and ideas to the research team;
Develop proof-of-concept code and exploits to the quality standard of DFSEC;
Remain on top of various developments related to baseband architecture and chipset ecosystem such as security mitigations, new additions, etc.

Track record of finding remotely exploitable baseband vulnerabilities;
Good knowledge of baseband architecture and internals;
Some understanding of current baseband bug classes and patterns;
Some insight on current and upcoming baseband security mitigations;
Ability to conduct long-term and widely scoped security research projects as part of a broader team effort;
Exploitation experience is a plus, but not required;
Good written English.

Finance: Highly competitive compensation package with an additional monetary bonus system based on exploitable vulnerability findings;
Career Development: Further your career by joining a team of established and experienced security researchers;
Work Environment: Fully remote with flexible work schedule;
Off-topic Research: We allow researchers, at their discretion, to spend up to 15% of their time conducting research on other topics;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more.

Kernel Security Researcher

We are looking to fill the position of a security researcher in our Android team. A person in this role will conduct vulnerability research around the Android kernel.

Help develop and carry out the Android team research strategy by doing vulnerability research, code auditing and exploit development on the Android kernel;
Provide unbiased insights and ideas to the research team;
Develop proof-of-concept code and exploits to the quality standard of DFSEC;
Remain on top of various developments related to Android and the Linux kernel such as security mitigations, new additions, etc

Track record of finding exploitable vulnerabilities in the Linux/Android kernel during the last year;
Knowledge of Android architecture and internals;
Solid understanding of current bug classes and patterns;
Solid understanding of current and upcoming security mitigations;
Ability to conduct long-term and widely scoped security research projects as part of a broader team effort;
Some experience with kernel exploitation;
Good written English.

Finance: Highly competitive compensation package with an additional monetary bonus system based on exploitable vulnerability findings;
Career Development: Further your career by joining a team of established and experienced security researchers;
Work Environment: Fully remote with flexible work schedule;
Off-topic Research: We allow researchers, at their discretion, to spend up to 15% of their time conducting research on other topics;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more.

iOS Security Researcher

We are looking to fill the position of a security researcher in our iOS team. A person in this role will conduct vulnerability research around the iOS Kernel.

Help develop and carry out the iOS team research strategy by doing vulnerability research, reverse engineering and exploit development on iOS;
Provide unbiased insights and ideas to the research team;
Develop proof-of-concept code and exploits to the quality standard of DFSEC;
Remain on top of various developments related to iOS such as new security mitigations, new features, etc.

Track record of finding impactful vulnerabilities (LPE, PAC bypasses, PPL bypass, Code Signing bypass) in iOS during the last year;
Deep knowledge of iOS architecture and internals;
Solid understanding of predominant bug classes and patterns;
Solid understanding of current and upcoming security mitigations;
Ability to conduct long-term and widely scoped security research projects as part of a broader team effort;
Exploitation experience is a plus, but not required;
Good written English.

Finance: Highly competitive compensation package;
Career Development: Enjoy off-topic time and access to the most attractive international training, conferences, hackathons, and more;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more;
Work Environment: Fully remote work environment as part of experienced and renowned mobile security researchers.

Web Security Researcher

We are looking to fill the position of a security researcher in our Web team. A person in this role will conduct vulnerability research on Web Applications.

Help develop and carry out the Web team research strategy by conducting vulnerability research and exploit development on Web Applications;
Provide unbiased insights and ideas to the web research team;
Develop proof-of-concept code and exploits ;
Remain on top of various developments related to Web Technologies such as security mitigations, new features, exploitation techniques, etc.;

Track record of finding impactful vulnerabilities (e.g. Auth Bypass, RCE, User to Admin PE) in Web Applications;
An understanding of web protocols and web architectures;
Ability to manually detect and exploit common web vulnerabilities;
Ability to conduct long-term and widely scoped security research projects as part of a broader team effort;
Stay up to date with emerging trends of web app security and research methods;
Exploitation experience is a plus, but not required;

Finance: Highly competitive compensation package with an additional monetary bonus system based on exploitable vulnerability findings;
Career Development: Further your career by joining a team of established and experienced security researchers;
Work Environment: Fully remote with flexible work schedule;
Off-topic Research: We allow researchers, at their discretion, to spend up to 15% of their time conducting research on other topics;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more.

Bootloader Security Researcher

We are looking to fill the position of a bootloader security researcher in our Android team. A person in this role will conduct vulnerability research around the Android ecosystem at the bootloader level.

Help develop and carry out the Android team research strategy by doing vulnerability research, reverse engineering and exploit development on bootloader-related research projects;
Provide unbiased insights and ideas to the research team;
Develop proof-of-concept code and exploits to the quality standard of DFSEC;
Remain on top of various developments related to bootloaders and chipset ecosystem such as security architecture, etc.

Track record of finding exploitable bootloader vulnerabilities for at least one major Android system-on-chip manufacturer (e.g. Samsung/Exynos, Mediatek, Qualcomm and/or HiSilicon);
Good knowledge of Android boot architecture and internals;
Good knowledge of Arm boot and security architecture and internals;
Good knowledge of bare metal firmware reverse engineering;
Some understanding of current bootloader bug classes and patterns;
Ability to conduct long-term and widely scoped security research projects as part of a broader team effort;
Good written English.

Finance: Highly competitive compensation package with an additional monetary bonus system based on exploitable vulnerability findings;
Career Development: Further your career by joining a team of established and experienced security researchers;
Work Environment: Fully remote with flexible work schedule;
Off-topic Research: We allow researchers, at their discretion, to spend up to 15% of their time conducting research on other topics;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more.

Quality Assurance Engineer

We are looking to fill the position of a QA Engineer who would be responsible for quality assurance engineering efforts on mobile devices. This role involves active collaboration with our research teams by performing continuous quality assurance tasks i.e. performing continuous testing, optimization and code porting tasks.

Ensure that Dataflow iOS and Android products are well tested and follow a high quality standard;
Improve quality of Dataflow‘s deliverables through optimization, porting and documentation;
Maintain and contribute to various internal framework codebases.

Strong low level engineering skills in C;
Basic knowledge of Python or JavaScript;
Familiarity with working on mobile phones (rooting devices, building custom kernels, flashing IPSWs);
Ability to apply a scientific mindset to the problem of exploit reliability, testing and optimization.

Finance: Highly competitive compensation package;
Career Development: Enjoy off-topic time and access to the most attractive international training, conferences, hackathons, and more;
Work Environment: Fully remote work environment as part of experienced and renowned mobile security researchers;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more.

Project Manager

At Dataflow Security, we offer you a unique challenging and rewarding environment to provide immediate impact for both internal and external projects and their stakeholders. Dataflow Security, is a global leader in mobile security research, comprising the most talented researchers across the globe, to solve the hardest technical challenges, to create a safer world for everyone. We are looking to fill the position of a technical project manager. A person in this role will perform management tasks and work closely with our director of project management.

Analyze and understand, roles and responsibilities for team members required for each specific project;
Participate within technical team meetings to gather insight about project status;
Facilitate communication with leadership and other stakeholders, including regular reports regarding implemented strategy;
Create and maintain internal policy and guidelines in relation to technical projects;
Maintain hardware and software acquisition for technical projects;
Oversee day-to-day operations and perform general administrative tasks such as gathering feedback from team members.

Ability to predict upcoming challenges and communicate with key stakeholders of each project those concerns;
Excellent time management and organizations skills;
Excellent communication skills and ability to proactively seek solutions to problems;
Proven experience in a managerial role;
Strong decision-making capabilities;
Ability to motivate and lead people, and hold team members accountable;
Experience managing people.

Finance: Highly competitive compensation package;
Career Development: Enjoy off-topic time and access to the most attractive international training, conferences, hackathons, and more;
Wellness: We offer a prime wellness program designed to promote a healthy lifestyle, which includes, but not limited to access to gyms around the world, health coaching, and more;
Work Environment: Fully remote work environment as part of experienced and renowned mobile security researchers.

our mission

We are driven by our curiosity to understand systems and how they interact, and use this advantage to deliver unique research to our clients.

about us

services

Vulnerability Research

You may want to retain our services in case:

Exploit Development

Exploiting

Optimizing

Porting

Chaining

Training Services

contact us

Business Inquiries

Found a bug (crash) in iOS or Android?

Follow Us: