Senior Staff Security Researcher- Mac/IOS, Reverse Engineering at Zscaler

Bengaluru, Karnataka, India

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, TechnologyIndustries

Requirements

Proficiency in system-level languages such as C, C++, Objective-C, Swift, and Assembly language (x86_64 and ARM64)
Deep knowledge of macOS architecture, including the Mach-O binary format, frameworks (Cocoa, AppKit), and security mechanisms like System Integrity Protection (SIP), Transparency, Consent, and Control (TCC), and Gatekeeper
Extensive hands-on experience with industry-standard reverse engineering tools, such as IDA Pro, Ghidra, Hopper, Binary Ninja, Frida, Cycript, otool, nm, lipo, Wireshark, hex editors
Strong scripting skills, particularly in Python, for automating analysis tasks
Ability to decompile, disassemble, and de-obfuscate closed-source binaries to reconstruct and understand the code's logic without access to the source code

Responsibilities

Performing static and dynamic analysis of macOS and iOS applications, firmware, and system internals to identify vulnerabilities and malicious functionality
Reverse-engineering and malware analysis of malware samples to understand their behaviour, capabilities, and attack vectors, contributing to the development of detection and prevention strategies
Researching and staying current with the latest macOS security features, kernel updates (XNU), frameworks (e.g., Endpoint Security, Network Extensions), and common malware techniques
Developing custom tools and scripts to aid in reverse engineering, binary analysis, and automation of malware related tasks
Collaborating with engineering, QA, and threat intelligence teams to integrate new security features and improve product defences

Skills

Reverse Engineering

macOS

iOS

Static Analysis

Dynamic Analysis

Firmware Analysis

Vulnerability Research

Malware Analysis

Zscaler

Cloud-based cybersecurity and secure gateway services

About Zscaler

Zscaler provides cloud-based information security services, focusing on internet, web, and cloud security. Its platform functions as a secure gateway that inspects all internet traffic between users and applications, ensuring that threats are identified and stopped before they can access a client's network. This service is offered through a subscription model, allowing large enterprises and government organizations to select the level of security that meets their needs. Zscaler differentiates itself from competitors by offering a strong partner program that enhances market reach and provides partners with training and resources. The company's goal is to support secure digital transformation for its clients by delivering reliable security solutions.

San Jose, CaliforniaHeadquarters

2008Year Founded

$148.8MTotal Funding

IPOCompany Stage

Enterprise Software, CybersecurityIndustries

5,001-10,000Employees

Benefits

Comprehensive health plans

Supportive parental & family leave

On-demand learning & development

Company-sponsored volunteering

Global tuition assistance program

Guilt-free paid time off

Risks

Emerging cybersecurity firms may erode Zscaler's market share.

Economic downturns could impact Zscaler's subscription-based revenue model.

The retirement of CFO Mr. Canessa may lead to financial instability.

Differentiation

Zscaler offers a 100% cloud-based security platform, eliminating on-premise hardware needs.

The company is a Gartner magic quadrant leader for secure web gateways.

Zscaler's platform inspects all internet traffic, ensuring threats are neutralized pre-network.

Upsides

Zscaler's FY/25 guidance was revised upward, indicating strong financial performance.

The partnership with Bharti Airtel enhances Zscaler's zero-trust architecture offerings.

Zscaler's hiring of government experts strengthens its position in the public sector.

Land your dream remote job 3x faster with AI

Try Jobo Free