Sr. iOS Application Security Analyst

Delhi/Mumbai | Experience: 3 to 7 years

Core Responsibilities

  • Primary responsibility would be to perform Vulnerability Assessment & Penetration Testing as well as Source Code Review of iOS Applications and articulate reports of the assessment and present findings to various stakeholders as well as support clients in patching the identified vulnerabilities
  • Perform iOS Application Vulnerability Assessment & Penetration Testing
  • iOS Application Source Code Analysis (Objective-C and Swift)
  • Write in-house tools, extenders and automated scripts
  • Create/Enhance methodology and process documents
  • Present identified security issues to the stakeholders
  • Contribute to internal Research & Development initiatives

Experience and Qualifications

  • M.Tech or B.Tech / B.E./BCA in Computer Science or Information Technology
  • Hands-on experience of security assessment of iOS applications
  • Solid understanding of iOS application and backend development
  • Good understanding of secure code review of iOS applications (Objective-C and Swift)
  • Hands-on experience of security assessment of Web applications/API security
  • Good understanding of Penetration Testing Tools - Burpsuite etc.
  • Security analysis of applications built on hybrid technologies such as Xamarin, Apache Cordova, Worklight, Ionic framework
  • Good Knowledge of scripting languages (Python, Shell Script, JS etc.)
  • Experience on working with tools for runtime analysis of iOS applications: FRIDA, Cycript, Objection, MobSF etc.
  • Basic understanding of tools like HP Fortify, IBM App Scan, Acunetix etc.
  • Team Management & Presentation Skills
  • Good understanding of network security assessment
  • Hands-on experience of building Burp extenders
  • Security certifications like OSCP, OSCE, CRT, SLAE would be a plus
  • Reverse engineering native iOS application source code
  • Experience of assessing Mobile applications for at-least one platform out of E-commerce or Finance/Banking