Android Vulnerability Researcher jobs in United States
cer-icon
Apply on Employer Site
company-logo

Booz Allen Hamilton · 4 hours ago

Android Vulnerability Researcher

positionAnnapolis Junction, MD
timeFull-time
remoteHybrid
seniorityMid Level
money$87K/yr - $198K/yr
date3+ years exp

Booz Allen Hamilton is a leading consulting firm, and they are seeking an Android Vulnerability Researcher to enhance their cyber capabilities. The role involves discovering vulnerabilities in the Android ecosystem, developing exploits, and contributing to technical documentation and capability roadmaps.

ConsultingCyber SecurityIT InfrastructureManagement ConsultingSecurity
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Deliver production-grade offensive capabilities that directly enable strategic intelligence collection and cyber effects missions
Discover and operationalize previously unknown vulnerabilities across the Android ecosystem, conducting advanced research on AOSP, OEM implementations, and trusted execution environments
Develop reliable exploits targeting user applications, system components, kernel, TrustZone, and baseband subsystems while engineering persistent CNO implants and infrastructure
Hold responsibilities for large-scale reverse engineering of closed-source binaries, bypassing modern mitigation
Author comprehensive technical documentation, contributing to capability roadmaps and emerging tradecraft, and leveraging AI and LLM-powered tooling to accelerate vulnerability discovery and exploit development

Qualification

Vulnerability researchReverse engineeringExploit developmentCC++PythonAndroid NDKSDKIDA ProGhidraBinary NinjaARM64 architectureGitLab CI/CDTechnical documentationSoft skills

Required

3+ years of experience with conducting vulnerability research, reverse engineering, or exploit development
Experience with C, C++, Python, Java or Kotlin, and Android NDK and SDK
Experience using IDA Pro, Ghidra, Binary Ninja, gdb, LLDB, Jadx, or Frida
Experience in successfully discovering and exploiting vulnerabilities
Experience defeating kernel hardening, sandboxing, and attestation mechanisms
Experience with GitLab CI/CD for implant build pipelines
Knowledge of ARM64 architecture and AArch64 assembly
Ability to achieve code execution in ring-0 and TrustZone contexts
TS/SCI clearance with a polygraph
HS diploma or GED

Preferred

Experience with publishing research or tools in the offensive security community
Experience providing operational support to IC or DoD cyber mission forces
Experience contributing to mobile exploit frameworks or public Common Vulnerabilities and Exposures (CVE) discoveries

Benefits

Health, life, disability, financial, and retirement benefits
Paid leave
Professional development
Tuition assistance
Work-life programs
Dependent care
Recognition awards program

Company

Booz Allen Hamilton

twittertwittertwitter
Glassdoor4.2
company-logo
Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering.
dateFounded in 1914
location
Mclean, Virginia, USA
people-size10001+ employees
web-link
http://www.boozallen.com

Funding

Current Stage
Public Company
Total Funding
$3.03B
2025-03-11Post Ipo Debt· $650M
2023-08-01Post Ipo Debt· $650M
2020-08-13Post Ipo Debt· $700M

Leadership Team

leader-logo
Matthew Calderone
Chief Financial Officer and Executive Vice President
linkedin
leader-logo
Kristine Anderson
Chief Operating Officer
linkedin

Recent News

Fortune
BP’s C-suite milestone: Women in both the CEO and CFO seats
2025-12-19
The Motley Fool
Why Booz Allen Hamilton Fell Today
2025-12-17
Washington Technology
A trio of C-level moves to note at Booz Allen, Leidos and SAIC
2025-12-17
Company data provided by crunchbase