Job Details

Home

Urgent Hiring:: Product Security Engineer- Mobile App Security (Embedded Security Testing Engineer) :: Hybrid- Plano, TX at Plano, Texas, USA

Email: [email protected]

http://bit.ly/4ey8w48
https://jobs.nvoids.com/job_details.jsp?id=1487719&uid=

From:

Aditya,

Talent Junction

[email protected]

Reply to: [email protected]

Hello,

I hope you are doing good,

I have the below open position with our client, please find the job description below and let me know if youre interested, please send me a copy of your updated resume ASAP.

Job Title: Product Security Engineer- Mobile App Security (Embedded Security Testing Engineer)

Job Type: Contract

Job Location: Hybrid- Plano, TX

Description:

The product Security Engineer will be responsible for end-to-end security testing with a focus on Android/iOS application security. The successful candidate will be a highly technical, passionate, and self-driven individual who loves to learn, solve problems, and contribute to the team's advancement.

Summary:

The Mobile Application Security Engineer will be responsible for conducting manual and automated Security testing and requirements verification such as MASVS/CWEs on iOS/Android applications.

Perform security assessment, and penetration testing including but not limited to mobile application binary analysis, source code review, IPC, and SDK analysis

Experience analyzing the application sandbox on iOS and Android privilege issues[D(1]

Participate in mobile application development, and facilitate the security requirements development and verification

Identify hardcoded secrets, insecure storage, insecure communication, improper permissions, sensitive disclosure, and insecure use and validation of data entering platform features (i.e. DeepLinks, Exported Activities/Content Providers).

Identify weak or deprecated algorithms used in 3rd party and internal libraries.

Produce reports/artifacts, recommendations for remediations, and provide support to strengthen the security posture of Android/iOS applications.

Familiarity with the Mobile Security Testing Guide and ability to leverage the framework and test both iOS and Android applications.

Participate in various security projects, technical design reviews, code reviews, and test specifications.

Identify the use of deprecated mobile components and methods such as WebViews and vulnerable programmatic deep link handlers.

Requirements:

Hands-on experience performing security assessments on OS or application-level iOS/Android applications.

The successful candidate will be a highly technical, passionate, and self-driven individual who loves to learn, solve problems, grow, and contribute to the team's advancement.

Strong understanding of security testing framework for Android/iOS applications (e.g., OWASP, SANS).

Advance skills in secure coding best practices in any programming languages such as C/C++, Java, Objective C, Swift, SwiftUI, Kotlin, and Python

Knowledge of Inter Process Communication (IPC) on Mobile Platforms

Proficient in writing scripts in various languages such as Bash, and Python

Proficient knowledge of APIs, and authentication protocols such as OAuth, SAML, etc.

Knowledge of software development lifecycle (SDLC), cloud security, and iOS/Android reverse engineering

Hand-On experience on testing tools such as Burp Suite, Frida, dissemblers, debuggers, dynamic instrumentations, and static code analysis

Ability to articulate complex technical concepts to a non-technical audience

Experience mobile application CI/CD pipeline

Generating test reports, and recommending the appropriate course of action, and supporting the mitigation and re-validation efforts

Qualifications:

Bachelors degree (or higher) in Computer Science, Engineering or related discipline, or equivalent experience.

Strong background in security engineering, various authentication, and security protocols.

Strong understanding of Mobile OS security internals.

Hand-on experience with security testing tools, standards, and best practices.

Deep experience in mobile security, obfuscation techniques, and reverse engineering.

Strong knowledge and understanding of X.509, SSL/TLS certificate, and general certificate management process.

--

Thanks and Regards,

Aditya Srivastava

Technical Recruiter | Talent Junction LLC

2060 Walsh Avenue, Suite 122, Santa Clara, CA 95050

E-mail Id:

[email protected]

Keywords: cprogramm cplusplus continuous integration continuous deployment California Idaho Texas
Urgent Hiring:: Product Security Engineer- Mobile App Security (Embedded Security Testing Engineer) :: Hybrid- Plano, TX
[email protected]
http://bit.ly/4ey8w48
https://jobs.nvoids.com/job_details.jsp?id=1487719&uid=

[email protected]
View All

10:41 PM 17-Jun-24

To remove this job post send "job_kill 1487719" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

aditya@talent-junction.com wrote:
From:

Aditya,

Talent Junction

aditya@talent-junction.com

Reply to:   aditya@talent-junction.com

Hello,

I hope you are doing good,

I have the below open position with our client, please find the job description below and let me know if youre interested, please send me a copy of your updated resume ASAP.

Job Title: Product Security Engineer- Mobile App Security (Embedded Security Testing Engineer)

Job Type: Contract

Job Location: Hybrid- Plano, TX

Description:

The product Security Engineer will be responsible for end-to-end security testing with a focus on Android/iOS application security. The successful candidate will be a highly technical, passionate, and self-driven individual who loves to learn, solve problems, and contribute to the team's advancement.

Summary:

The Mobile Application Security Engineer will be responsible for conducting manual and automated Security testing and requirements verification such as MASVS/CWEs on iOS/Android applications.

Perform security assessment, and penetration testing including but not limited to mobile application binary analysis, source code review, IPC, and SDK analysis

Experience analyzing the application sandbox on iOS and Android privilege issues[D(1]

Participate in mobile application development, and facilitate the security requirements development and verification

Identify hardcoded secrets, insecure storage, insecure communication, improper permissions, sensitive disclosure, and insecure use and validation of data entering platform features (i.e. DeepLinks, Exported Activities/Content Providers).

Identify weak or deprecated algorithms used in 3rd party and internal libraries.

Produce reports/artifacts, recommendations for remediations, and provide support to strengthen the security posture of Android/iOS applications.

Familiarity with the Mobile Security Testing Guide and ability to leverage the framework and test both iOS and Android applications.

Participate in various security projects, technical design reviews, code reviews, and test specifications.

Identify the use of deprecated mobile components and methods such as WebViews and vulnerable programmatic deep link handlers.

Requirements:

Hands-on experience performing security assessments on OS or application-level iOS/Android applications.

The successful candidate will be a highly technical, passionate, and self-driven individual who loves to learn, solve problems, grow, and contribute to the team's advancement.

Strong understanding of security testing framework for Android/iOS applications (e.g., OWASP, SANS).

Advance skills in secure coding best practices in any programming languages such as C/C++, Java, Objective C, Swift, SwiftUI, Kotlin, and Python

Knowledge of Inter Process Communication (IPC) on Mobile Platforms

Proficient in writing scripts in various languages such as Bash, and Python

Proficient knowledge of APIs, and authentication protocols such as OAuth, SAML, etc.

Knowledge of software development lifecycle (SDLC), cloud security, and iOS/Android reverse engineering

Hand-On experience on testing tools such as Burp Suite, Frida, dissemblers, debuggers, dynamic instrumentations, and static code analysis

Ability to articulate complex technical concepts to a non-technical audience

Experience mobile application CI/CD pipeline

Generating test reports, and recommending the appropriate course of action, and supporting the mitigation and re-validation efforts

Qualifications:

Bachelors degree (or higher) in Computer Science, Engineering or related discipline, or equivalent experience.

Strong background in security engineering, various authentication, and security protocols.

Strong understanding of Mobile OS security internals.

Hand-on experience with security testing tools, standards, and best practices.

Deep experience in mobile security, obfuscation techniques, and reverse engineering.

Strong knowledge and understanding of X.509, SSL/TLS certificate, and general certificate management process.

Thanks and Regards,

Aditya Srivastava

Technical Recruiter | Talent Junction LLC

2060 Walsh Avenue, Suite 122, Santa Clara, CA 95050

E-mail Id:

aditya@talent-junction.com

Keywords: cprogramm cplusplus continuous integration continuous deployment California Idaho Texas 
Urgent Hiring:: Product Security Engineer- Mobile App Security (Embedded Security Testing Engineer) :: Hybrid- Plano, TX
aditya@talent-junction.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]

Time Taken: 76

Location: Plano, Texas