Mobile Application Security Consultant

We are looking for a Mobile Application Security Consultant who is responsible for ensuring the security, resilience, and integrity of mobile banking applications across iOS and Android platforms. This role focuses on identifying security risks, conducting in-depth assessments, and guiding development teams in implementing secure-by-design mobile solutions.

You will work closely with mobile developers, solution architects, and enterprise security teams to safeguard sensitive financial data and ensure compliance with banking security standards and regulatory requirements.

Responsibilities:

• Conduct mobile application security assessments and penetration testing for iOS and Android applications.

• Identify, analyze, and remediate vulnerabilities in mobile applications, backend services, and APIs.

• Perform secure code reviews to ensure compliance with secure coding standards and banking security policies.

• Advise on and validate the implementation of encryption, authentication, authorization, and secure data storage mechanisms.

• Ensure alignment with OWASP Mobile Top 10, industry best practices, and banking regulatory requirements.

• Collaborate with development teams to embed security into the Software Development Life Cycle (SDLC).

• Stay current on emerging mobile security threats, attack vectors, and mitigation strategies relevant to financial institutions.

• Prepare clear and actionable security reports, risk assessments, and recommendations for technical and non-technical stakeholders.

Qualifications:

• At least 4 years of experience with reviewing mobile application code using Swift, Kotlin, and Java.

• Proficiency with mobile security testing tools such as MobSF, Burp Suite, Frida, or similar.

• Experience with API security, secure communication protocols (HTTPS, TLS), and backend integrations.

• Solid understanding of encryption standards, key management, and secure credential handling, particularly in banking environments.

• Strong analytical and problem-solving skills.

• Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders.

• Proven ability to collaborate effectively with cross-functional teams in fast-paced environments.

Preferred Certifications:

• Certified Mobile Security Professional (CMSP)

• GIAC Mobile Device Security Analyst (GMOB)

• Offensive Security Certified Professional (OSCP)