Senior Mobile Security Consultant in New York, NY

$80K - $100K(Ladders Estimates)

Synopsys Inc   •  

New York, NY 10001

Industry: Information Technology

  •  

Less than 5 years

Posted 51 days ago

General Responsibilities

As Synopsys engages with clients in the application of our software security improvement methodologies, the Senior Mobile Security Consultant joins in the execution and delivery of planned project deliverables and milestones that assist clients in learning, understanding, and applying Synopsys's secure software development methodologies.


The Senior Mobile Security Consultant typically leads security engagements with a small team and advises clients on solving complex problems in the software security world. The Senior Mobile Security Consultant continuously learns, expands, and shares his/her technical competence. Senior Mobile Security Consultants do work from the office, but often go on-site to help customers exterminate the bugs and untangle the flaws that make their systems insecure. Our Senior Mobile Security Consultants and their team are trusted advisors to our clients: they build the relationships and deliver immaculate software security guidance and best practices.


Activities Include

• Source Code Analysis

• Software Penetration Testing

• Threat Modeling

• Secure Software Design and Architecture

• Application Reverse Engineering

• Database Security Analysis


Qualifications and Experience

Technical skills

• At least 3 years performing mobile security testing on Android and/or iOS platforms

• Experience conducting mobile-based code reviews in Objective-C/Swift and Java/Kotlin

• Solid understanding of the mobile security attack surface

• Strong understanding of ARM/ARM64 assembly is highly desired

• Some experience with cross-platform frameworks such as React Native, Xamarin, Cordova is a plus

• Familiarity with mobile security testing tools and how and why to use them. Such tools would include (but are not limited to) Frida, Passionfruit, JD-Gui, MobSF

• Experience writing custom scripts directly in Frida is a plus

• Some reverse engineering experience using tools such as IDA Pro, Radare2, Hopper Disassembler Ghidra is a plus

• Familiarity with mobile standards such as OWASP, MASVA and MSTG

• Familiarity with Mobile Device Management and Mobile Application Management technologies

• Familiarity with configuring, assessing or reviewing mobile Runtime Application Self Protection (RASP) products is a plus

• Familiarity with concepts such as certificate pinning, anti-debugging and root/jailbreak detection

• Experience performing security assessments of mobile backend API services


Consulting Skills

• Ability to interface with clients, utilizing consulting and negotiating skills

• Ability to undertake and complete tasks independently, meet schedules & delivery timelines, and to move swiftly from concepts and theory to action

• SDLC Implementation and Testing

Team-oriented Skills

• Ability to lead multiple project teams; give directions and ensure that tasks are executed consistently

Project Management Skills

• People: You can lead a team, give direction and ensure tasks are executed consistently

• Projects: You can demonstrate the ability to plan, execute and closeout multi-person projects


Communication

• Written communication skills for use in preparing formal documentation, Statements of Work, proposals, white papers, and case studies

• Verbal skills that include the ability to clearly articulate thoughts and to deliver presentation and training to all levels of management


Travel Related

• You are enthusiastic and committed to your work. You do this because you love it

• You've got an entrepreneurial drive and want to help grow this business

• Willingness to travel around 20-50%


Education and Certifications

Bachelor's Degree or Master's Degree in Computer Science/Engineering or equivalent

Valid Through: 2019-10-18