Cyber Security-Mobile
The Mobile Application Security Engineer will possess deep knowledge and hands-on experience in enterprise-wide platforms, especially in mobile application security and microservices architectures.
This role is pivotal in solving technical problems while working on technology initiatives.
The Engineer will be responsible for the successful delivery, design, and support of the vulnerability management program, focusing on mobile application security, microservices security, vulnerability scanning, and the tools and methodologies utilized within the program.
ROLE Automates, documents, shares, educates, delegates, and improves processes.
Builds prototypes of potential features.
Creates conceptual and detailed technical design documents and standards.
Enhances automation of applications, systems, and platforms; and identifies opportunities for streamlining and continuous process improvement.
Collaborates with architects to plan, design, implement, and improve new capabilities, enhancements, solutions, and/or platforms.
Applies knowledge to practical and sustainable applications and capabilities.
Partners with project managers, solution leads, and other stakeholders to establish the rough order of magnitude estimates, to create and maintain a robust framework to support applications, and to deliver quality solutions.
Contributes, interprets, and communicates enterprise, technical, project, and operational strategies to the team.
Develops team vision to drive new capabilities against a published roadmap, in conjunction with management.
Ensures that proposed and existing systems are aligned with organizational standards, goals, and objectives.
Formulates and directs activities that align short term goals and long term initiatives while providing accurate and timely estimates of work breakdown schedules.
Works with teams, management, and stakeholders to conceptualize, design, build, test, and release products.
Shares relevant information among teams.
Influences and drives adoption of best practices and high quality standards throughout the division.
Tests and resolves problems, performs root cause analysis, identifies gaps, recommends solutions and preventative measures, and leads team members to solution delivery plans.
Runs proof of concepts and uses diagnostic/debugging skills to solve current challenges in multi-platform systems.
Orchestrates reviews for system additions and/or enhancements.
Promotes and supports a culture of compliance, risk avoidance/mitigation, and corporate accountability throughout the organization through technical leadership, knowledge of business need, development and communication of policies, procedures, and plans, and assurance of solution designs that are in compliance with architecture standards, technology guardrails, security, and operational guidelines.
Provides leadership/mentoring to team members, implements development efficiencies, creates appropriate documentation, drives operational efficiencies and technical growth within the team, and supports the release model.
Participates in security assessments of mobile applications (iOS, Android, Flutter, React Native) with a focus on platform-specific security controls.
Treats mobile apps as gateways into larger systems, ensuring security from the app to the backend and vice versa.
Stays updated with emerging security threats, vulnerabilities, and controls, including reading articles, following CVE updates, and understanding the evolving threat landscape.
Collaborates with InfoSec, Compliance, Internal Audit, and Business teams.
Coordinates with the Incident Response team for security incident remediation.
REQUIRED 3
years' in security in an enterprise environment, with a focus on mobile applications.
2
years' in a security engineering role with a focus on mobile and microservices.
2
years' in a software engineering or DevOps role, especially in mobile and microservices environments.
1
years' with Azure, Google Cloud Platform or another cloud service.
Understanding of the software development lifecycle for mobile applications and microservices.
Ability to read and comprehend code, discern business logic, and identify security flaws in mobile-relevant languages, such as Swift, Objective-C, Kotlin, Java, JavaScript, TypeScript, and Dart.
Experience with vulnerability management processes for mobile and microservices.
Knowledge in remediation activities at the code/script level.
Experience with ADO, Git or similar agile code system functions.
Familiarity with mobile programming languages, development practices, and common bug patterns.
Knowledge of OWASP Mobile Top 10, SANS Top 20, CVE, CWE, CVSS, etc.
Proficient understanding of OWASP MAS (MASVS
MASTG).
Familiarity with application security verification and software maturity frameworks, including OWASP SAMM and OWASP ASVS.
Comprehensive understanding of SSDLC and its challenges, with knowledge of OWASP SSDLC.
Strong verbal and written communication skills.
Experience identifying security requirements for mobile software and microservices.
Strong analytical, documentation, and time management skills.
Familiarity with HIPAA, PCI, and other sensitive data standards.
Proficiency in mobile application development and security for various platforms including Apple (iOS), Google (Android), Samsung (Tizen), and other relevant platforms.
Familiarity with platform-specific development environments, SDKs, and tools, such as Xcode for iOS, Android Studio for Android, and Samsung's Tizen Studio.
Understanding of platform-specific security features and best practices, such as Apple's App Transport Security, Android's Network Security Configuration, and Samsung Knox.
FTE with Fortune 100 company.
Seattle or Dallas location Cyber Security-Mobile Recommended Skills Agile Methodology Analytical Application Security Architecture Assessments Auditing Estimated Salary: $20 to $28 per hour based on qualifications.
This role is pivotal in solving technical problems while working on technology initiatives.
The Engineer will be responsible for the successful delivery, design, and support of the vulnerability management program, focusing on mobile application security, microservices security, vulnerability scanning, and the tools and methodologies utilized within the program.
ROLE Automates, documents, shares, educates, delegates, and improves processes.
Builds prototypes of potential features.
Creates conceptual and detailed technical design documents and standards.
Enhances automation of applications, systems, and platforms; and identifies opportunities for streamlining and continuous process improvement.
Collaborates with architects to plan, design, implement, and improve new capabilities, enhancements, solutions, and/or platforms.
Applies knowledge to practical and sustainable applications and capabilities.
Partners with project managers, solution leads, and other stakeholders to establish the rough order of magnitude estimates, to create and maintain a robust framework to support applications, and to deliver quality solutions.
Contributes, interprets, and communicates enterprise, technical, project, and operational strategies to the team.
Develops team vision to drive new capabilities against a published roadmap, in conjunction with management.
Ensures that proposed and existing systems are aligned with organizational standards, goals, and objectives.
Formulates and directs activities that align short term goals and long term initiatives while providing accurate and timely estimates of work breakdown schedules.
Works with teams, management, and stakeholders to conceptualize, design, build, test, and release products.
Shares relevant information among teams.
Influences and drives adoption of best practices and high quality standards throughout the division.
Tests and resolves problems, performs root cause analysis, identifies gaps, recommends solutions and preventative measures, and leads team members to solution delivery plans.
Runs proof of concepts and uses diagnostic/debugging skills to solve current challenges in multi-platform systems.
Orchestrates reviews for system additions and/or enhancements.
Promotes and supports a culture of compliance, risk avoidance/mitigation, and corporate accountability throughout the organization through technical leadership, knowledge of business need, development and communication of policies, procedures, and plans, and assurance of solution designs that are in compliance with architecture standards, technology guardrails, security, and operational guidelines.
Provides leadership/mentoring to team members, implements development efficiencies, creates appropriate documentation, drives operational efficiencies and technical growth within the team, and supports the release model.
Participates in security assessments of mobile applications (iOS, Android, Flutter, React Native) with a focus on platform-specific security controls.
Treats mobile apps as gateways into larger systems, ensuring security from the app to the backend and vice versa.
Stays updated with emerging security threats, vulnerabilities, and controls, including reading articles, following CVE updates, and understanding the evolving threat landscape.
Collaborates with InfoSec, Compliance, Internal Audit, and Business teams.
Coordinates with the Incident Response team for security incident remediation.
REQUIRED 3
years' in security in an enterprise environment, with a focus on mobile applications.
2
years' in a security engineering role with a focus on mobile and microservices.
2
years' in a software engineering or DevOps role, especially in mobile and microservices environments.
1
years' with Azure, Google Cloud Platform or another cloud service.
Understanding of the software development lifecycle for mobile applications and microservices.
Ability to read and comprehend code, discern business logic, and identify security flaws in mobile-relevant languages, such as Swift, Objective-C, Kotlin, Java, JavaScript, TypeScript, and Dart.
Experience with vulnerability management processes for mobile and microservices.
Knowledge in remediation activities at the code/script level.
Experience with ADO, Git or similar agile code system functions.
Familiarity with mobile programming languages, development practices, and common bug patterns.
Knowledge of OWASP Mobile Top 10, SANS Top 20, CVE, CWE, CVSS, etc.
Proficient understanding of OWASP MAS (MASVS
MASTG).
Familiarity with application security verification and software maturity frameworks, including OWASP SAMM and OWASP ASVS.
Comprehensive understanding of SSDLC and its challenges, with knowledge of OWASP SSDLC.
Strong verbal and written communication skills.
Experience identifying security requirements for mobile software and microservices.
Strong analytical, documentation, and time management skills.
Familiarity with HIPAA, PCI, and other sensitive data standards.
Proficiency in mobile application development and security for various platforms including Apple (iOS), Google (Android), Samsung (Tizen), and other relevant platforms.
Familiarity with platform-specific development environments, SDKs, and tools, such as Xcode for iOS, Android Studio for Android, and Samsung's Tizen Studio.
Understanding of platform-specific security features and best practices, such as Apple's App Transport Security, Android's Network Security Configuration, and Samsung Knox.
FTE with Fortune 100 company.
Seattle or Dallas location Cyber Security-Mobile Recommended Skills Agile Methodology Analytical Application Security Architecture Assessments Auditing Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
