1

Android Malware Reverse Engineer Jobs in New York

Senior Penetration Tester

Manhattan, NY · On-site

$152K - $260K/yr

... android/iOS), including the use of industry-standard tools (e.g., Burp Suite, Nmap, Metasploit, etc ... Experience in reverse engineering thick-client and mobile applications to identify vulnerabilities.

next page

Showing results 1-20

Android Malware Reverse Engineer information

What does an Android Malware Reverse Engineer do?

An Android Malware Reverse Engineer analyzes malicious software targeting Android devices to understand how it works, identify its behavior, and develop ways to detect or remove it. They use specialized tools to decompile and inspect code, examine app permissions, and trace network activity. Their findings help improve mobile security, assist law enforcement, and protect users from cyber threats. This role often requires strong programming skills, familiarity with Android internals, and knowledge of cybersecurity techniques.

What are some typical challenges faced by Android Malware Reverse Engineers in their daily work?

Android Malware Reverse Engineers often encounter obfuscated or encrypted code, which makes it challenging to analyze malicious software efficiently. They must stay updated with evolving malware techniques and anti-analysis strategies that threat actors deploy. Collaborating closely with threat intelligence and security operations teams is crucial, as findings often contribute to broader security defenses. The role requires patience, attention to detail, and strong problem-solving skills to effectively dissect and understand complex malware behaviors.

What is the difference between Android Malware Reverse Engineer vs Mobile Security Analyst?

AspectAndroid Malware Reverse EngineerMobile Security Analyst
CredentialsKnowledge of reverse engineering, malware analysis, programming skillsSecurity certifications (e.g., CISSP, CEH), understanding of mobile security
Work EnvironmentResearch labs, cybersecurity firms, or in-house security teamsCorporate security teams, consulting firms, or government agencies
Industry UsageFocus on analyzing malicious Android apps and malwareBroader mobile security issues, including vulnerabilities and threat mitigation
Search & Comparison IntentUnderstanding technical malware analysis rolesBroader mobile security roles and responsibilities

While both roles involve mobile security, the Android Malware Reverse Engineer specializes in dissecting malicious Android applications to understand and mitigate threats. The Mobile Security Analyst has a broader focus on overall mobile security strategies, including vulnerability assessments and threat management across platforms.

What are the key skills and qualifications needed to thrive as an Android Malware Reverse Engineer, and why are they important?

To thrive as an Android Malware Reverse Engineer, you need expertise in malware analysis, reverse engineering, programming (Java, Kotlin, C/C++), and strong knowledge of Android OS internals, often supported by a degree in computer science or a related field. Familiarity with tools such as IDA Pro, Ghidra, Android Studio, Wireshark, and mobile security frameworks, as well as certifications like GIAC Reverse Engineering Malware (GREM), is typically required. Analytical thinking, attention to detail, persistence, and effective communication are crucial soft skills for excelling in this role. These skills enable accurate detection, analysis, and mitigation of threats to protect Android devices and users from evolving malware risks.
What are popular job titles related to Android Malware Reverse Engineer jobs in New York? For Android Malware Reverse Engineer jobs in New York, the most frequently searched job titles are:
What job categories do people searching Android Malware Reverse Engineer jobs in New York look for? The top searched job categories for Android Malware Reverse Engineer jobs in New York are:
What cities in New York are hiring for Android Malware Reverse Engineer jobs? Cities in New York with the most Android Malware Reverse Engineer job openings:
Senior Penetration Tester

Full-time

Medical, Retirement

Re-posted 7 days ago


JPMorgan Chase & Co. rating

8.0

Company rating: 8.0 out of 10

Based on 490 frontline employees who took The Breakroom Quiz

57th of 148 rated banks


Job description

This position is also open in the following locations: Tampa, FL / Atlanta, FL / Plano, TX / Columbus, OH / McLean, VA / Wilmington, DE / Jersey City, NJ / Chicago, IL / Brooklyn, NY / Houston, TX

Drive the security of critical banking applications and platforms through hands-on offensive testing.

As an Assessments & Exercises Vice President in the Cybersecurity and Technology Controls organization, you will play a key role in safeguarding the firm's most vital assets. Your primary responsibility will be to plan, execute, and report on penetration tests targeting high-impact applications, platforms, and services. Leveraging industry-standard methodologies and advanced techniques, you will proactively identify vulnerabilities, collaborate with application owners to understand root causes, and guide effective remediation to strengthen the firm's security posture.

We are seeking candidates with a passion for offensive security, deep technical expertise in penetration testing, and a commitment to continuous learning and excellence.

Job responsibilities

  • Plan, scope, and execute penetration testing engagements across a variety of environments, including web applications, APIs, cloud platforms, infrastructure, thick-client, and/or mobile applications.
  • Collect and validate pre-requisites for each engagement, ensuring all necessary access, documentation, and approvals are in place.
  • Perform manual and automated testing to identify vulnerabilities, misconfigurations, and security weaknesses, leveraging industry-standard tools and custom scripts.
  • Document and communicate findings through comprehensive reports that include technical details, risk assessments, and actionable remediation recommendations.
  • Conduct peer reviews of penetration test reports to ensure accuracy, consistency, and quality of deliverables.
  • Collaborate with development, infrastructure, and security teams to clarify findings, support remediation efforts, and provide subject matter expertise on offensive security.
  • Stay current with emerging threats, vulnerabilities, and attack techniques by leveraging threat intelligence, security research, and participation in relevant industry groups.
  • Contribute to the continuous improvement of penetration testing methodologies, tools, and frameworks to enhance effectiveness and alignment with firm strategy and regulatory requirements.

Required qualifications, capabilities, and skills

  • 5+ years of hands-on penetration testing experience in offensive security, with a proven track record of scoping, executing, and reporting on complex engagements.
  • Expertise in manual penetration testing of web, API, cloud (AWS/Azure/GCP), infrastructure, thick-client, and/or mobile applications (android/iOS), including the use of industry-standard tools (e.g., Burp Suite, Nmap, Metasploit, etc.).
  • Strong understanding of security assessment methodologies such as OWASP Top Ten, NIST Cybersecurity Framework, and other relevant standards.
  • Ability to identify and articulate systemic security issues related to threats, vulnerabilities, and risks, and provide clear, actionable recommendations for remediation.
  • Exceptional organizational and communication skills, including the ability to write detailed technical reports and present findings to both technical and non-technical stakeholders.
  • Experience conducting peer reviews of penetration test reports and mentoring junior testers.
  • Continuous learner who keeps up with the latest offensive security trends, tools, and techniques.

Preferred qualifications, capabilities, and skills

  • Knowledge of cybersecurity practices, operational risk management, and incident response methodologies within the US financial services sector, including relevant regulations, threats, and risks.
  • Proficiency in penetration testing and security concepts for both Windows and Unix-like operating systems.
  • Experience conducting security-focused source code reviews (e.g., Python, Java, Rust).
  • Experience in reverse engineering thick-client and mobile applications to identify vulnerabilities.
  • Relevant certifications such as OSWE, CREST (CRT, CCT), OSCP, OSCE, GXPN, GWAPT, GPEN, GMOB, or BSCP. GXPN, GWAPT, GPEN, GMOB, or BSCP

#CTC

Chase is a leading financial services firm, helping nearly half of America's households and small businesses achieve their financial goals through a broad range of financial products. Our mission is to create engaged, lifelong relationships and put our customers at the heart of everything we do. We also help small businesses, nonprofits and cities grow, delivering solutions to solve all their financial needs. 

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions.  We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. 

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

Equal Opportunity Employer/Disability/Veterans

Our Consumer & Community Banking division serves our Chase customers through a range of financial services, including personal banking, credit cards, mortgages, auto financing, investment advice, small business loans and payment processing. We're proud to lead the U.S. in credit card sales and deposit growth and have the most-used digital solutions - all while ranking first in customer satisfaction.

What JPMorgan Chase & Co. employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom