Mobile Penetration Tester/Mobile Security Engineer (Remote)

з/п не указана

Вакансия в архиве

Работодатель, вероятно, уже нашел нужного кандидата и больше не принимает отклики на эту вакансию

Показать описание вакансии

Требуемый опыт работы: 1–3 года

Полная занятость, удаленная работа

We are presently identifying candidates for a Mobile Penetration Tester position.

As a Mobile Penetration Tester/Mobile Security Engineer, you will help with assessing the security level of mobile applications. This position will require advanced technical depth and experience.

Responsibilities

  • Conduct vulnerability assessments and penetration testing
  • Demonstrate considerable knowledge of planning and estimating specific to security assessment activities
  • Collaborate with technical and management personnel across the full security assessment life cycle
  • Utilize problem solving skills, especially within troubleshooting complex issues while identifying options and/or alternatives
  • Document all disclosed issues using different reporting formats (e.g. available for distribution to different concerned parties: business, technicians, clients)
  • Provide remediation suggestions to correct disclosed issues
  • Collaborate with personnel responsible for writing and presenting proposals to prospective clients
  • Manage and contribute to planning, coordination and successful completion of security engagements

Requirements

  • At least 1 year of practical proven experience in penetration testing
  • Ability to perform evaluation of application requirements, processes, technologies
  • Experience in security testing of iOS and Android applications based on different technologies (Objective C, Java)
  • Experience in security testing of Web Services (SOAP, RESTful)
  • Experience in different vulnerability scanners (MobSF, OWASP ZAP, etc.)
  • Understanding of mobile security testing process (e.g. OWASP Mobile Security Testing Guide)
  • Ability to develop custom scripts needed for specific assessment purposes (Python, bash, PowerShell, JavaScript)
  • Ability to resolve technical problems when required
  • Ability to explain assessment results to technical and non-technical personnel

Nice to have

  • Certification in security field
  • Understanding of and practical experience in security audit process, meeting fintech security compliance requirements (PCI DSS)
  • Experience in different exploitation tools and frameworks (ADB, idb, Frida, drozer, nathan)
  • Previous experience as a software engineer or knowledge of software development methodologies is desired, but not mandatory
  • Experience in security testing of network infrastructure
  • Experience in development of security-related documentation

Ключевые навыки

SecurityMobile SecurityiOSAndroidpenetration testing

Вакансия опубликована 27 марта 2019 в Минске

Написать сопроводительное письмоПисьмо отправлено

Сопроводительное письмо к отклику

Похожие вакансии