Application and Mobile Security Audit Expert

Position: Application and Mobile Security Audit ExpertExperience: 1-4 yearsLocation: BangaloreSkills Sets: Should have 1-4 years of experience in Application and Mobile Security Auditproven experience in conducting security audits and penetration testing for web applications, mobile applications, and backend systems.Strong understanding of web application security concepts, mobile security best practices, and common vulnerabilities (e.g., OWASP Top 10).Hands-on experience with security testing tools and frameworks, such as Burp Suite, Metasploit, Nessus, and mobile application security testing tools (e.g., MobSF, OWASP ZAP).Familiarity with mobile app development frameworks, programming languages (e.g., Java, Kotlin, Swift), and mobile app security controls.Knowledge of secure coding practices, cryptographic protocols, and authentication mechanisms.Relevant certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or Mobile Security Certified Professional (MSCP) are a plus.Excellent analytical and problem-solving skills, with a keen attention to detail.Effective communication skills, with the ability to convey technical concepts to both technical and non-technical audiences.Job Description:Conduct comprehensive security audits of web applications, mobile applications, and associated backend systems to identify potential vulnerabilities and security weaknesses.Perform penetration testing and ethical hacking on applications and mobile apps to simulate real-world cyber-attacks and uncover potential security flaws.Assess the security of mobile applications across various platforms (iOS, Android) and identify vulnerabilities such as insecure data storage, insecure communication, and insufficient authentication/authorization mechanisms.Analyse the security architecture and design of applications and mobile apps to ensure adherence to security best practices and industry standards.Evaluate the effectiveness of existing security controls and mechanisms in place and provide recommendations for improvement.Work closely with development teams to prioritize and remediate security findings identified during audits and penetration tests.Develop and maintain security audit procedures, methodologies, and tools to streamline the auditing process and improve efficiency.Stay up-to-date on the latest security threats, vulnerabilities, and attack techniques relevant to applications and mobile platforms.Provide guidance and training to internal teams on secure coding practices, secure mobile app development, and general security awareness.Collaborate with cross-functional teams, including developers, QA engineers, and system administrators, to integrate security into the software development lifecycle (SDLC).Prepare detailed audit reports documenting findings, recommendations, and remediation steps for stakeholders and management.QualificationsBachelor's degree in computer science, Information Security, or related field PRB