iOS Researcher

We are Experts in Mobile Threat Hunting. The first mobile threat hunting company to protect mobile devices like any other vulnerable corporate endpoint.

The mobile security market has a problem. Simply put, current solutions fail to meet the sophistication of modern threats or the growing privacy desires of mobile device users. We believe that it is time for something new. Not only because we care deeply about the safety of frontline users like journalists and activists - many of whom are doing important and often dangerous work - but because enterprises and consumers deserve real protection from advanced mobile threats without sacrificing privacy.

We are building the first mobile threat hunting company to harmonize security and privacy in the face of a new class of mobile threats. Supported by some of the most well-respected VC firms, we aim to become the go-to mobile security solution for individuals who want to know they can trust their devices with their most sensitive information – without sacrificing privacy. 

We are hiring a Senior iOS Researcher to lead deep technical investigations into iOS exploitation. You will be assigned investigative tasks and research projects ranging from triaging crash reports back to potential vulnerabilities, to reversing binaries and developing controlled exploit proofs-of-concept that help us generate high-quality telemetry for detection validation.

This role is highly technical, hands-on, and research-driven. You will be responsible for conducting deep research into iOS internals, helping the team better understand how the operating system works and performing in-depth analysis of unknown or emerging vulnerabilities. Your work will directly advance our understanding of iOS threat surfaces and strengthen iVerify’s ability to detect and analyze compromises at scale.

• Deep iOS Internals Research Conduct deep research into iOS internals - including system daemons, security mechanisms, sandboxing,frameworks and kernel functionality to uncover how iOS operates beneath the surface.

• Crash and Vulnerability Analysis: Investigate iOS crash reports, logs and diagnostic information to conduct root-cause analysis for crashes. Audit affected code parts to determine vulnerable code paths and potential vulnerabilities.

• Exploit Development & Validation: Develop controlled, proof-of-concepts to reproduce known vulnerabilities and demonstrate they could be exploited.

• Reverse Engineering & Binary Analysis: Reverse engineer key system and userland binaries to understand behavior, privilege boundaries, and potential misuse. Analyze updates and patches to identify previously undisclosed or silently fixed vulnerabilities.

• Detection Enablement: Translate deep research findings into actionable insights, detection heuristics, or engineering requirements that strengthen our detection pipeline and threat hunting capabilities.

• Tooling & Automation: Develop lightweight tools, scripts, or harnesses (typically in Python or Swift) to accelerate reversing, fuzzing and vulnerability research.

• Collaboration & Knowledge Sharing: Partner with research, ML, and product teams to ensure research outputs are reproducible and production-ready. Document methodologies and findings clearly for both internal use and potential publication.

• 5+ years experience in security research, reversing, or vulnerability discovery with a strong focus on iOS/macOS internals.
  Deep practical knowledge of iOS internals: dyld, kernel vs userland boundaries, sandbox, entitlements, code signing, latest kernel mitigations, and system daemons.

• Experience with exploit development, crash engineering, or fuzzing (creating deterministic crash harnesses experience in 0-Click / 1-Click attack surfaces and their exploitation is a plus.)

• Strong C/C++ and Objective-C/Swift familiarity, able to read and reason about compiled code and runtime behaviors.

• Comfortable developing tooling and scripts in Python or equivalent for automation and analysis.

• Experience triaging crashes and working with Apple diagnostics and symbolication.

• Familiarity with ARM64 assembly and Apple’s various extensions..

• Proven reversing skills (IDA Pro, Ghidra, or Binary Ninja) and low-level debugging experience (lldb, frida).

• Strong understanding of secure coding principles, hard and software mitigations, and how they interact with exploitation techniques.

• Excellent technical writing skills, able to produce reproducible research notes, CVE-style reports, and triage artifacts.

• Strong collaboration skills, experience working across engineering, data, and product teams.

Our salary ranges are determined by role, level, location, and employment type. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position. Within the range, individual pay is determined by a variety of factors, including, but not limited to, work location, job-related skills, experience, and relevant education or training.

At iVerify, we are committed to building a diverse, equitable, and inclusive workplace and community. We believe that diversity in all its forms drives innovation and fosters creativity. We strive to create an environment where everyone feels valued, respected, and empowered to bring their authentic selves to work.