At PayJoy, we provide finance for the next billion. We are looking for an Android Security Engineer to join us in securing our proprietary device locking technology. In this role, you will be responsible for proactively testing and helping maintain the integrity of our lock against evolving bypass methods and tools following updates.
What You'll Do
- Proactively and systematically test our device locking mechanism on a diverse range of Android devices and OS versions after every Over-The-Air update.
- Conduct thorough, periodic testing after each update or modification to the PayJoy lock technology.
- Research, identify, acquire, and utilize existing and emerging lock-breaking tools, software, and hardware techniques to attempt to bypass our lock.
- Develop, maintain, and execute comprehensive test plans focused on lock security, bypass attempts, and anti-tampering features.
- Simulate various attack vectors and user behaviors that could lead to a lock bypass.
- Document all testing activities, methodologies, findings, and vulnerabilities in a clear, actionable manner using our bug tracking system.
- Collaborate closely with Android developers, security engineers, and product managers to report vulnerabilities, discuss root causes, and verify fixes.
- Provide detailed reports on test execution, vulnerability status, and overall lock security posture.
- Stay continuously updated on the latest Android security vulnerabilities, rooting techniques, bootloader unlocking methods, and new bypass tools.
- Maintain and manage a lab environment with various Android devices, testing tools, and necessary infrastructure.
What We're Looking For
- Bachelor’s degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
- 3+ years of experience in Quality Assurance, with at least 1-2 years specifically focused on mobile application testing on the Android platform.
- Proven hands-on experience and a strong curiosity for attempting to bypass software-based locks, security mechanisms, or device restrictions.
- Strong understanding of the Android OS architecture, including bootloader, recovery mode, ADB, fastboot, system partitions, and security features.
- Familiarity with common Android rooting techniques, custom ROMs, and tools used for device modification.
- Experience with Android debugging tools.
- Meticulous attention to detail, strong analytical, and problem-solving skills.
- Excellent written and verbal communication skills, with the ability to document technical issues clearly and effectively.
- Ability to work independently, manage priorities, and take ownership of assigned tasks in a fast-paced environment.
Technical Stack
- Android OS
- Android Studio
- Logcat
- Wireshark/tcpdump
- JIRA
Benefits & Compensation
- 100% Company Funded Private Health Insurance for employee and immediate family
- 20 days vacation, unlimited sick leave
- $2,000 USD annual Co-working Travel perk
- $2,000 USD annual Professional Development perk
- Phone Finance, headphone benefit, home office equipment allowance and wellness perks
- Catered Lunch
PayJoy is proud to be an Equal Employment Opportunity employer and we welcome and encourage people of all backgrounds. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
