This job ad has been posted over 30 days ago...



Mobile Application Security Full-time

at Autoone Engineering Services Pvt. Ltd. in Mumbai (Published at 07-08-2019)

Autoone India is a leading service provider company focused on IT and Automotive client . Autoone helps clients to provide quality resources as per their requirements.


Mandatory Skill / Experience Application & Security Testing Concepts:
Thorough understating and hands-on experience on manual assessment of applications as per OWASP and SANS application security standards, CVSS and CWE standards for Web and Mobile apps.

Knowledge on Threat Agents, Attack Vectors, Security Weaknesses in an application, Security Controls, Exploit Analysis, Technical & Business Impact Analysis.
Concept in programming languages for identification of overall application development loop-holes areas.

1. Web Applications:
(Browser based applications, thick client applications, APIs and PKI based applications)
Experience in black box and grey box assessment approaches
Able to maintain existing test setup and grow as and when required.
Expertise in VAPT tools: Acunetix WVS, Qualys WAS, Appknox, Nowsecure, Burpsuite, Kali Linux, Metasploit Framework, OWASP ZAP, SQLmap, nmap, soap UI, mallory, echo mirage, postman etc.

2. Mobile Applications:
(Android and iOS),
Thorough understanding of Web, Native and Hybrid mobile applications
Understand security threats from rooted and jail broken phones and vulnerability assessment concepts and experience on these devices
End-to-end security testing of Android and iOS apps

Experience in VA of entire mobile deployment stack (i.e. mobile application, underlying operating system sand boxing, memory operations, server back-end)

Experience and knowledge in Static, Dynamic and Behavioral Analysis.

Expertise in VAPT tools: Frida, Appknox, Burpsuite, MobSF, Androbugs, Dex2Jar, JDGui,Genymotion, Android Studio.

Desired Candidate :
3+ years of experience in Mobile application security.
Good Understanding of Security Testing Concepts
Certifications like: OSCP, OSCE and OSWE etc.
Bug Bounty and Hall of Fame listings.

• Name:
• Email Address:
• Phone Number:
• Resume in PDF format

Viewed: 147 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend