Jobs Security

Reverse Engineer (Android / Windows)

About the Role

We’re looking for a highly skilled Reverse Engineer to analyze, understand, and modify complex software systems across Android and Windows platforms. You will work on low-level system components, proprietary protocols, and real-world production binaries—going far beyond basic static analysis.

This role requires deep technical expertise in native code, system internals, and runtime behavior, with a strong focus on practical reverse engineering and problem-solving.

Responsibilities

• Reverse engineer Android and Windows applications (Java/Kotlin + native C/C++)
• Analyze compiled binaries, obfuscated code, and packed applications
• Perform dynamic instrumentation, tracing, and runtime analysis
• Understand and modify system-level behavior (services, drivers, IPC, networking)
• Reverse proprietary protocols and data formats
• Identify security mechanisms, protections, and bypass techniques
• Develop tooling, scripts, and automation for analysis workflows
• Collaborate with engineering teams to integrate findings into products

Requirements

Core Skills

• Strong experience with reverse engineering tools:
  • IDA Pro / Ghidra / Binary Ninja
  • Frida, LLDB, WinDbg, x64dbg
• Solid understanding of:
  • Assembly (ARM, ARM64, x86/x64)
  • Native code (C/C++)
  • Memory management, calling conventions, binaries

Android

• Deep understanding of Android internals:
  • ART / Dalvik runtime
  • Binder IPC
  • System services & HALs
• Experience reversing APKs and native libraries (.so)
• Familiarity with AOSP structure and system components

Windows

• Understanding of Windows internals:
  • User-mode & kernel-mode architecture
  • Windows APIs, services, drivers
• Experience analyzing PE binaries, DLLs, and system behavior

Nice to Have

• Experience with iOS reversing (Objective-C / Swift, Mach-O)
• Knowledge of anti-debugging / anti-tampering techniques
• Experience with emulators, virtualization, or sandboxing
• Cryptography and protocol analysis experience
• Exploit development or vulnerability research background

What We Expect

• Ability to work with incomplete information and figure things out independently
• Strong debugging mindset and curiosity
• Focus on real-world results, not just theoretical analysis
• Clean and well-documented findings

RedCore is an international business group that creates technological solutions for digital markets. Our products and services cover fintech, marketing, e-commerce, customer service, communications, and regulatory technologies. 

We are looking for an Application Security Engineer with Web3/DeFi

Requirements:

- Strong proven experience in auditing Web3/DeFi projects (at least 2–3 audits of capital management or vault systems)
- Deep expertise in Solidity and smart contract development
- Solid understanding of DeFi risks and economic attack vectors
- Hands-on experience with Aave, Morpho, or similar lending/yield protocols
- Ability to deliver not only technical audits but also strategic and risk management recommendations

Will be plus:

- Experience with TRON / TVM
- Practical experience auditing and configuring multisig wallets on Fireblocks
- Previous audits of vaults and capital management strategies
- Knowledge of formal verification, invariant testing, and fuzzing (Foundry, Echidna)
- Experience working at top auditing firms (Sherlock, Cyfrin, Spearbit, Trail of Bits, Zellic, etc.)
- Published audit reports and a history of finding critical/high-severity vulnerabilities
- Strong understanding of current DeFi market dynamics and risk management practices (2026)

Responsibilities:

- Conduct comprehensive security audits of smart contracts (Solidity, TVM/TRON)
- Identify and analyze vulnerabilities (reentrancy, access control, flash loan attacks, oracle manipulation, etc.)
- Review protocol architecture, identify single points of failure, and key risks
- Audit and provide recommendations on access control models and custom role systems
- Review multisig setup on Fireblocks (signers, thresholds, role distribution, best practices)
- Analyze DeFi integrations (Aave, Morpho) and capital allocation strategies
- Develop recommendations for risk management and safety mechanisms (pause, emergency controls, circuit breakers)
- Prepare detailed audit reports with severity levels and remediation steps
- Provide strategic advisory on protocol design, guardrails, and incident response

Our benefits to you:
🍀 An exciting and challenging job in a fast-growing business group, the opportunity to be part of a multicultural team of top professionals in Development, Architecture, Management, Operations, Marketing, Legal, Finance, and more
🤝🏻 Great working atmosphere with passionate experts and leaders, sharing a friendly culture and a success-driven mindset is guaranteed
🧑🏻‍💻 Modern corporate equipment based on macOS or Windows, and additional equipment is provided
🏖️ Paid vacations, sick leave, personal event days, days off
💵 Referral program — enjoy cooperation with your colleagues and get a bonus
📚 Educational programs: regular internal training sessions, compensation for external education, attendance of specialized global conferences
🎯 Rewards program for mentoring and coaching colleagues
🗣️ Free internal English courses
✈️ In-house Travel Service
🦄 Multiple internal activities: online platform for employees with quests, gamification, presents and news, clubs for movie/book/pets lovers, and more
🎳 Other benefits could be added based on your location

ICONIC21 is a premier provider of live dealer and casino games, delivering a diverse and immersive portfolio for global markets. We create high-quality gaming experiences focused on innovation, reliability, and strong visual appeal.

Our portfolio covers live casino games, slot games, and virtual (RNG) products, all designed to maximize player engagement and long-term value. Every solution we deliver is built to elevate our partners’ brands and enhance the overall gaming experience.

ICONIC21 is looking for experienced Technical Compliance Manager to own and drive the technical side of our regulatory compliance programme across multiple igaming jurisdictions. You will be the primary point of contact for all technical certification and audit matters, ensuring our platform, games, and information security practices meet the requirements of our licensed markets — and are ready for the new ones on the horizon.

Responsibilities:

• Lead technical compliance activities across regulated markets including Malta (MGA), Ontario (AGCO), Romania (ONJN), Italy (ADM), Portugal (SRIJ), and future jurisdictions. 
• Coordinate technical submissions including maths reports, PAR sheets, game logic documentation, system descriptions, security architecture, and data flow diagrams.
• Prepare, submit, and track technical licence applications, renewals, audits, and certification-related documentation.
• Ensure no non-certified games or platform components are released in regulated markets.
• Interpret technical regulatory requirements and translate them into actionable specifications for Product, Engineering, and Platform teams.
• Maintain and update a compliance matrix covering jurisdictional technical requirements, certifications, and supporting evidence.
• Serve as the primary technical liaison with regulators, testing laboratories, certification bodies, and external compliance partners.
• Monitor regulatory changes and proactively assess the technical impact on products, platforms, and operational processes.
• Partner with Product, Engineering, and Platform teams to embed compliance checkpoints into the SDLC and release pipelines.
• Advise internal stakeholders on technical architecture and platform decisions from a compliance and certification perspective.
• Support Legal and Commercial teams during market entry initiatives, licensing activities, and regulatory assessments.
•  

Requirements:

• Proven experience of 5+ years in a technical compliance, regulatory, or information security role within the iGaming industry.
• Direct experience managing RNG and game certification processes with recognized testing laboratories.
• Proven track record working across multiple regulated jurisdictions.
• Strong understanding of iGaming technical standards, including MGA and AGCO frameworks.
• Knowledge of RNG standards and game mathematics.
• Strong understanding of information security frameworks.
• Knowledge of responsible gambling technical requirements and player protection mechanisms.

• Advanced English.

   

What We Offer:

• Challenging and exciting tasks, and all the needed tools to achieve them.
• A real opportunity for professional growth in a team of professionals.
• 21 days of vacation, 5 flexible days for your needs, 15 sick leave days.
• National holidays according to the official calendar.
• Individual benefit limit to support your health and wellness needs.
• Annual bonus based on company and individual performance results.

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a Middle/Senior Security Consultant / Penetration tester to work on and lead penetration testing and vulnerability/cloud security assessment projects.

In this role, you will work on technically challenging projects and also spend some time leading/mentoring our junior pentesting colleagues.

Required skills

- 1.5+ years of intensive commercial experience

- OSCP, eWPTx2 or similar would be a plus

- Scripting/coding skills and being comfortable with advanced pentesting tooling

- Strong knowledge of mobile/web security

- Comfortable with cloud and container security

- Basic RE skills

- Ability to mentor/lead colleagues

- Strong ability and drive to learn and develop cybersecurity skills

- Technical English (Intermediate+)

We offer

- Good salary + bonus system

- Diverse project portfolio and technologies to work with

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Participate in various pentesting projects

- Lead junior colleagues

- Perform threat modeling in pentesting and security assessment projects

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Consult clients on efficient issues remediation

- Conduct security researches

- Develop tools and scripts to automate and improve current pentesting processes

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a talented and motivated Junior Pentester who will join our security team to work on penetration testing and vulnerability/cloud security assessment projects.

We expect a short motivation letter where you can explain your skills, achievements and motivation.

Required skills

- Solid non-commercial cybersecurity experience, such as HTB/THM

- Junior-level cybersecurity certifications would be a plus.

- Comfortable with basic application security testing and common vulnerabilities (like OWASP Top 10, CWE Top 25) and cybersecurity fundamentals

- Strong basic IT skills: Linux, networking (TCP/IP, DNS, HTTP etc.)

- Some experience in scripting/coding languages, such as Java, JS, Python, Shell, etc.

- Strong drive to learn and develop cybersecurity skills

- Technical English (Intermediate)

We offer

- Good salary + bonus system

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Support in obtaining professional certifications, such as BSCP, OSCP, eWPTX, cloud certifications, etc.

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Execute penetration tests and security assessments as part of a team, including internal/external networks, web and mobile applications, Windows and Linux environments, cloud architectures, IoT devices, and more

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Conduct security research

COMPARUS UA is a development and innovation center of the German company Comparus GmbH.
For 17 years, we have specialized in digital transformation, business process optimization, and the creation of complex IT solutions for the financial sector.
We provide a full development cycle: from analytics to cloud infrastructure support.

Requirements:

• Experience as a System Administrator ( 2 years +)
• Knowledge of MacOS at the administrator level
• Network Technologies
• Basic knowledge of remote desktops and the principles of the thin clients
• Knowledge of the basics of information security
• Knowledge of ISO27001, ISO27002 and similar documents and experience with ISO/IEC 27001 certification audits in information security
• Understanding the basic aspects of information security and network components (firewalls, switches, routers, VPNs)
• English: Intermediate (B1-В2). Fluent level is welcome

Would be a plus:

• Experience in supporting or taking part in corporate inventory checks

Responsibilities:

• Implementing and enforcing security policies
• Monitoring security events and incidents
• Conducting risk assessments and security audits
• Managing cybersecurity tools and protection systems
• Delivering information security awareness training for employees
• Ensuring compliance with standards and requirements (ISO 27001)
• Creating, reviewing, and regularly updating ISO 27001 documentation (Confluence)
• Collaborating with German colleagues on ISMS-related tasks (document preparation, reporting, participation in meetings)

This role is new to our company, and the specialist will be the first to establish and develop this area.

What you will get working with us:

— Full technical equipment (MacBook, 2K additional monitors, and a comfortable workplace)

— Remote working equipment provided if needed

— Work exclusively with cutting-edge technologies

— Friendly and professional team atmosphere

— 8-hour workday with no overtime

— Full tax compensation

— 18–24 days of paid vacation

— Paid sick leave:

10 days with a medical certificate

5 days without a certificate

Recruitment Process:

1. Online Call — detailed discussion of the vacancy with a Recruiter (up to 30 minutes)
2. Online Call — English level check (up to 10 minutes)
3. Technical Interview — (up to 60 minutes)

The order of the stages may vary during the process, but always with the goal of moving forward together.

Before sending your CV, please carefully review the vacancy details to save both your time and ours.
If your experience matches the requirements — you will definitely receive feedback.

SOFTSWISS is looking for a Network Security Engineer to join our Team. SOFTSWISS Security Team takes care of iGaming services protection, data privacy, and business continuity to ensure that nothing distracts satisfied customers from using our products. We work closely with the IT team that develops and supports our services, and together we create genuinely excellent and secure iGaming products.

Purpose of the role:

In this role, you will design, implement, and maintain secure, scalable, and reliable network security infrastructure across the company. You will strengthen corporate and cloud network security, improve security standards and automation, and help ensure the resilience and protection of the company’s infrastructure against modern security threats.

Key responsibilities:

• Maintain and develop the corporate VPN infrastructure
• Maintain and improve Next-Generation Firewall infrastructure across the company
• Own and drive the implementation of network security controls and best practices
• Design, optimize, and secure network architectures
• Manage network security within cloud environments
• Integrate and deploy network and security equipment
• Contribute to the development of security policies and standards
• Automate routine network security and operational tasks

Required Experience:

• 3+ years of experience as a Network Security Engineer or Network Engineer
• Hands-on experience with modern VPN solutions
• Experience with Firewalls/Next-Generation Firewalls and understanding of NFtables/IPtables and core firewall principles
• Strong knowledge of network segmentation, Zero Trust Network Access (ZTNA), and DDoS protection approaches
• Deep knowledge of Linux-based operating systems, including networking stack
• Experience with Public Cloud technologies (AWS, Microsoft Azure, Oracle Cloud), specifically networking and security implementations
• Solid understanding of routing protocols such as BGP and OSPF
• Strong knowledge of OSI layers (L2/L3/L4/L7), common network architectures, Firewalls, and IDS/IPS environments
• Strong experience with Infrastructure as Code (Terraform, Ansible, Salt Stack)
• Experience with network monitoring and observability tools, including NetFlow/IPFIX traffic analysis
• Experience with automation using Python or Go
• Strong written and verbal communication skills
• English level B2 or higher

Nice to have:

• Experience with VMware NSX, OpenStack Neutron, Docker, Kubernetes, Istio, or similar technologies
• Knowledge of IAM, SSO, OpenID, and SAML authentication technologies

We are looking for an endpoint/workstation support engineer to support multiple mixed MacOS/Windows/Lin remote working environments. You should maintain a high level of user satisfaction, as well as properly document your work.

Your primary tasks will include:

* Enduser remote support for agents installation

* AV alerts investigation

* Ensuring security compliance policies are in place (e.g. full disk encryption, firewall)

* Implementing updates on agent installation packages whenever new version arrives

* Testing of Windows/Win/Lin endpoint agent updates

The candidate should have a proof records of successful projects in the following areas:

* support of AV/EDR/VPN and other security agents on multiple platforms

* Intune MDM

* Apple Business Manager

* Windows, MacOS and Linux endpoint support

* Basic Unix shell and Powershell scripting

* MS Graph API and other REST API basic experience

* Windows and MacOS troubleshooting with the aid of Sysinternals tools and different set of MacOS tools (netstat, lsof, vmstat, top, dtruss, etc.)

* Fluent English

* Teamwork and problem solving mind

* Compliance framework basic awareness (ISO27001/PCI-DSS/HIPAA etc.)

* ITIL and IT service basic awareness and ability to write end-user documentation/procedures/instructions

A big plus if have all or any of the following:

* Microsoft Intune certification or other Microsoft Security/Endpoint certificationi

* Any AV vendor certification

* Any security related certification (e.g. ISO27001LA, CISSP, CISA)