Senior Staff Security Researcher- MacIOS, Reverse Engineering

About Zscaler

Zscaler accelerates digital transformation so our customers can be more agile efficient resilient and secure. Our cloud native Zero Trust Exchange platform protects thousands of customers from cyberattacks and data loss by securely connecting users devices and applications in any location.

Here impact in your role matters more than title and trust is built on results. We believe in transparency and value constructive honest debatewere focused on getting to the best ideas faster. We build high-performing teams that can make an impact quickly and with high quality. To do this we are building a culture of execution centered on customer obsession collaboration ownership and accountability.

We value high-impact high-accountability with a sense of urgency where youre enabled to do your best work and embrace your potential. If youre driven by purpose thrive on solving complex challenges and want to make a positive difference on a global scale we invite you to bring your talents to Zscaler and help shape the future of cybersecurity.

Our Engineering team built the worlds largest cloud security platform from the ground up and we keep building. With more than 100 patents and big plans for enhancing services and increasing our global footprint the team has made us and our multitenant architecture todays cloud security leader with more than 15 million users in 185 countries. Bring your vision and passion to our team of cloud architects software engineers security experts and more who are enabling organizations worldwide to harness speed and agility with a cloud-first strategy.

Were looking for an experienced Senior Staff Security Researcher to join our Threatlabz team to contribute as Security Researcher Reporting to the Senior ManagerThreat Research. Youll be responsible for:

• Performing static and dynamic analysis of macOS and iOS applications firmware and system internals to identify vulnerabilities and malicious functionality
• Reverse-engineering and Malware Analyst malware samples to understand their behaviour capabilities and attack vectors contributing to the development of detection and prevention strategies
• Researching and stay current with the latest macOS security features kernel updates (XNU) frameworks (e.g. Endpoint Security Network Extensions) and common malware techniques
• Developing custom tools and scripts to aid in reverse engineering binary analysis and automation of malware related tasks
• Collaborating with engineering QA and threat intelligence teams to integrate new security features and improve product defences

What Were Looking for (Minimum Qualifications)

• Proficiency in system-level languages such as C C Objective-C Swift and Assembly language (x8664 and ARM64)
• Deep knowledge of macOS architecture including the Mach-O binary format frameworks (Cocoa AppKit) and security mechanisms like System Integrity Protection (SIP) Transparency Consent and Control (TCC) and Gatekeeper
• Extensive hands-on experience with industry-standard reverse engineering tools such as - IDA Pro Ghidra Hopper Binary Ninja Frida Cycript otool nm lipo Wireshark hex editors
• Strong scripting skills particularly in Python for automating analysis tasks
• Decompile disassemble and de-obfuscate closed-source binaries to reconstruct and understand the codes logic without access to the source code

What Will Make You Stand Out (Preferred Qualifications)

• Experience with other platforms such as Windows or Linux for comparative analysis
• Prior experience in malware analysis or vulnerability research
• Understanding of network protocols and system-level communication mechanisms

#LI-Hybrid

#LI-PM5

At Zscaler we are committed to building a team that reflects the communities we serve and the customers we work with. We foster an inclusive environment that values all backgrounds and perspectives emphasizing collaboration and belonging. Join us in our mission to make doing business seamless and secure.

Our Benefits program is one of the most important ways we support our employees. Zscaler proudly offers comprehensive and inclusive benefits to meet the diverse needs of our employees and their families throughout their life stages including:

By applying for this role you adhere to applicable laws regulations and Zscaler policies including those related to security and privacy standards and guidelines.

Zscaler is committed to providing equal employment opportunities to all individuals. We strive to create a workplace where employees are treated with respect and have the chance to succeed. All qualified applicants will be considered for employment without regard to race color religion sex (including pregnancy or related medical conditions) age national origin sexual orientation gender identity or expression genetic information disability status protected veteran status or any other characteristic protected by federal state or local laws. See more information by clicking on the Know Your Rights: Workplace Discrimination is Illegal link.

Pay Transparency

Zscaler complies with all applicable federal state and local pay transparency rules.

Zscaler is committed to providing reasonable support (called accommodations or adjustments) in our recruiting processes for candidates who are differently abled have long term conditions mental health conditions or sincerely held religious beliefs or who are neurodivergent or require pregnancy-related support.