Android 4.1.1 is the vulnerable version. Google says only 4.1.1 is vulnerable. There are a handful of services on Android that use openssl and, I suppose, could present open ports for there to be an attack vector. See http://www.pcmag.com/article2/0,2817,2456507,00.asp
You can also MITM outgoing SSL connections and use heartbleed on them. The vulnerability is accessible before the certificate checks are completed, so the standard MITM prevention measures don't help you there.
I love it when a candidate has some kind of public presence. The very first question in our online application asks, "Do you code outside of your day-to-day job? If so, what have you built, and how recently did you work on it? Be specific. Provide links if possible." I look for developers who get out into the community to learn and teach new ideas, new approaches. They might attend user groups, present, contribute to open source projects, etc. These kind of activities prove the candidate really lives and breathes this stuff. It's tough to fake passion. We have developers with projects on the side, libraries of Pluralsight courses they've developed, well-read blogs, eBooks on development topics, and some who get invited to speak regularly on podcasts like Hanselminutes and .NET Rocks. We encourage all of the above.
The point about trying to save time from a recruiting perspective are spot on. We really can get buried with candidates, and there isn't enough time in the day to get through them all. We work hard to create a really great place to work and a good reputation so candidates will be willing to do something like take a Codility test.
TrackAbout is a small (<40) but successful SaaS company providing tracking and rental services for durable, returnable assets. Our customers use a variety of mobile devices to scan assets (RFID and barcodes) every time they touch or move them. We have customers around the globe.
We are experiencing high demand for our services and we are growing. We need great people who are interested in playing pivotal roles in the growth of a small company. Our customer base is very dependable and we are doing well despite the economy.
Our headquarters is just outside the Pittsburgh International Airport in Pennsylvania, but our entire development staff is work-from-home.
We are seeking exceptional developers who are truly passionate about technology and the craft of software development. All members of our development team are dedicated to keeping up with the latest technologies, practices, patterns and tools related to software development. We do peer programming and collaboration on a regular basis. We take time out to share our knowledge with one another and improve both our skills and our distributed development environment. We often experiment with and integrate new tools into our environment.
Stuff we use includes: .NET 4.0, jQuery, Backbone.js, MonoTouch for iOS, Mono for Android (Xamarin tools), ReSharper, Mecurial (Hg) and Subversion, MassTransit Lean Service Bus, Jenkins CI, VersionOne, Trello, MediaWiki, WCF/Web API and RESTful web services, RhinoMocks, Ninject, NHibernate.
TrackAbout has a Developer Free Time policy intended to promote creative thinking and innovation by providing developers an opportunity to contribute new ideas and technologies for the benefit of the company.
We host an annual Dev Con where all the remote developers are brought together for a week to strategize, tackle tough issues, bug bash, socialize and have fun.
We promote continuous improvement in every aspect of our work. After each release we hold a retrospective and discuss how we can do better.
Our published core values are:
* Believe in the Power of Storytelling
* Work with Great Passion and Enthusiasm
* Celebrate Problem Solving
* Foster a Fun and Friendly Atmosphere
* No Egos & No Yelling
