Mobile Application Penetration Tester

Nave Security LLC - Cambridge, MA

posted 8 days ago

Full-time
Cambridge, MA

About the position

The Mobile Application Penetration Tester at Nave Security LLC is responsible for conducting comprehensive security assessments of mobile applications. This role involves utilizing industry-standard tools and methodologies to identify vulnerabilities and weaknesses in mobile app security, ensuring that applications are secure against potential threats. The tester will work closely with development teams to communicate findings and assist in implementing necessary security measures.

Responsibilities

  • Perform thorough penetration testing on mobile applications using industry-standard tools and methodologies
  • Conduct static and dynamic analysis of mobile application code and runtime behavior
  • Assess mobile app security across areas including authentication, authorization, data storage, network communication, and API integrations
  • Reverse engineer mobile applications to identify potential security flaws and weaknesses
  • Evaluate mobile app permissions and access to device resources for potential misuse
  • Test for common mobile vulnerabilities like insecure data storage, weak cryptography, and improper platform usage
  • Work closely with development teams to explain findings and assist with implementing security fixes

Requirements

  • Bachelor's degree in Computer Science, Cybersecurity, or related field
  • 3+ years of experience in mobile application security testing
  • In-depth knowledge of iOS and Android architectures and security models
  • Proficiency with mobile penetration testing tools like MobSF, Frida, Objection
  • Experience with reverse engineering and static/dynamic analysis of mobile apps
  • Strong understanding of OWASP Mobile Top 10 vulnerabilities
  • Familiarity with mobile app development frameworks and languages (Swift, Kotlin, React Native, etc.)
  • Relevant certifications like GPEN, GMOB, eMAPT, CMPen preferred

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service