Forensic exploit developer / reverse engineer for mobile devices
Ministerie van Veiligheid en Justitie, Nederlands Forensisch Instituut
The Digital and Biometric Traces division of the Netherlands Forensic Institute is primarily engaged in forensic research into automated systems. The division reviews many types of soft- and hardware, and the results play an important role in detection, prosecution and legal cases. You are a qualified hacker or reverse engineer with a lot of practical experience on mobile devices, looking to apply your skills to benefit the public good.
We are a group of embedded systems specialists within the Digital and Biometric Traces Division (DBS), which develops and performs methods for extracting digital data from lawfully seized electronic devices like mobile phones, navigation systems and other smart devices. By mainly focusing on physical flash chip acquisition techniques, the team is quite successful and has earned a good reputation within the digital forensic community.
The increased use of strong cryptography in consumer devices demands for new approaches to keep our services up to standard. We need you to expand our device exploitation capabilities. You have a hacking for justice affinity, a creative mind and love to challenge colleagues to assist your exploit work with expertise and tools present at the Netherlands Forensic Institute (e.g. mathematics, electronics, logical analysers, micro probes, focused ion beam).
You will be working on developing exploits for mobile devices that were seized in a criminal investigation. These devices are password protected, or have user data that is encrypted with unknown keys. Your job is to develop methods to find a valid password or a way to decrypt extracted data. Another task is to analyse security features of apps present on seized mobile devices and develop a method to recover information from those apps.
The information from seized devices can be used in court as evidence to prove or disprove guilt. This demands that all processes applied to digital evidence need to be logged in such a way that an independent party is able to examine those processes and achieve the same result. Therefore, you have an eye for the forensic soundness of the methods you develop. The need for auditing exploits on mobile devices within a forensic context will become even more relevant as soon as a proposed Dutch law is accepted where the police is allowed to use exploits on devices of (certain) suspects before they are seized.
- You have a Master’s degree in preferably computer science, or equivalent working experience.
- You have extensive knowledge of low level layers of embedded software. Not only on the application (Java, C) and OS (iOS, Android) level, but specifically on the layers connecting software with hardware components.
- You have experience with ARM based architectures, low-level debugging, reverse engineering techniques (IDA, GDB, ICE, JTAG). You know how to write low level exploit code, also with ROP and within ASLR contexts.
- You’ve also worked with Trusted Execution Environments like QSEE.
- You have good practical knowledge of mobile device security and cryptography.
- You can read ARM based assembly and know how to determine key app security features with tools like IDA or Radare2.
- You incorporate information you find into applications aimed at breaking app security which run on dedicated infrastructures. You have excellent programming skills (e.g. C/C++ or OpenCL) and experience with software optimisation.
- You are fluent in English or Dutch, or willing to learn Dutch.
- You have a curious mind, are a quick learner and able to continuously renew and extend your knowledge.
- You work methodically and structured, your results are reproducible and can be validated.
Conditions of employment
Salarisniveau: schaal 11, schaal 12 en schaal 13
Maandsalaris: Min €2.996 – Max. €5.837 (bruto)
Dienstverband: Vaste aanstelling (eventueel met een proeftijd)
Maximaal aantal uren per week: 36
Other conditions of employment
In addition to the salary and holiday pay, you can expect to receive an end-of-year payment, the so-called ‘13th month’. The national government strongly adheres to personal growth and career development and offers several opportunities to facilitate this. The terms of employment include, amongst other things, a maximum of 55% paid parental leave (conditions apply), facilities to study, an additional leave plan for older employees and reimbursement of commuting costs. Moreover, the national government also offers a range of options to shape your total employment package based on individual choice.
If you think you fit the profile, please leave your motivated application letter and resume behind using our application form.
Acquisition as a result of this vacancy is not appreciated.