שי מרדכי
@0003360
Malware researcher specializing in Android reverse engineering, execution-flow analysis, and OS internals.
What I'm looking for
I’m a Malware Researcher focused on reverse engineering, Android internals, and execution-flow analysis. I perform static and dynamic analysis of Android malware to trace what code actually does across complex codebases.
In my self-directed security research, I combine JADX, Frida, and native analysis to reconstruct execution flow, map trust boundaries, and study anti-analysis behavior. I translate Android internals into practical methodologies for runtime instrumentation and behavioral malware analysis.
I’m also experienced in application security validation through a Secure SDLC lens, where I validated SAST/SCA findings by tracing static issues to actual runtime behavior. That work helped distinguish real exploitability from theoretical risk, and I supported engineering teams with threat modeling, manual code reviews, and remediation guidance.
My interests extend to OS-level enforcement and cross-boundary interactions—investigating permission enforcement and IPC pathways through targeted proof-of-concept development. I enjoy building research labs that model practical attack techniques, including IPC abuse, dynamic code loading, and network/TLS analysis.
Experience
Work history, roles, and key accomplishments
Independent Security Research
Self-Directed Research Initiative
Aug 2025 - Present (11 months)
Conducts long-term malware research combining Android internals, OS/architecture analysis, and reverse engineering to develop practical methods for analyzing malware execution and evasion. Reverse-engineers Android malware to reconstruct execution flow and investigate Binder-based permission enforcement and pre-UI bootstrap behavior.
Application Security Analyst
Israel Tax Authority
Aug 2024 - Jul 2025 (11 months)
Validates SAST/SCA findings by tracing static issues to runtime behavior to distinguish real exploitability from theoretical risk. Performs threat modeling and manual code/security design reviews, translating exploitation paths into actionable engineering guidance across the secure SDLC.
Reconnaissance Specialist
IDF - Combat Intelligence
Jan 2016 - Jan 2018 (2 years)
Performs operational intelligence work focused on reconnaissance, pattern analysis, and threat detection in real-world scenarios.
Education
Degrees, certifications, and relevant coursework
Jerusalem College of Technology
Bachelor of Science, Computer Science
2021 - 2026
Grade: GPA: 89; Reverse Engineering: 93; Advanced Networks: 97; Principles of Programming Languages: 100
B.Sc. in Computer Science at Jerusalem College of Technology (2021–2026), achieving GPA 89 and strong grades in Reverse Engineering, Advanced Networks, and Principles of Programming Languages.
Tech stack
Software and tools used professionally
Availability
Location
Authorized to work in
Website
shay-mordechai.github.ioJob categories
Skills
Interested in hiring שי?
You can contact שי and 90k+ other talented remote workers on Himalayas.
Message שיGet matched with your dream remote job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
