Mobile Security Expert/ Penetration Tester

Mobile Security Expert/ Penetration Tester

Techbridge Market Holdings Pte Ltd
Singapore
3 - 5 Years
Not Specified

Job Description


Job Description :

The following describe the type of mindset applicants should exhibit:

  • Non-linear thinking (being able to think out-of-the-box): The candidate should be able to improvise and think on their feet
  • When looking at a solution, capacity to see how it can be abused rather than how it solves a problem.
  • Interest in constantly learning new things and new ways of doing things
  • At the same time the candidate should be able to be very thorough and systematic in its work
  • Highly motivated and autonomous

Requirements
  • Experience in software development and best practices on either Android and/or iOS (At least 3 - 5 years).
  • Includes experience doing code audits
  • Working knowledge of both Android and iOS platforms
  • Experience in penetration testing mobile applications
  • Understanding of the attack paths on mobile applications
  • Programming languages: Python, Shell script, Java, C, ARM/INTEL assembly, Objective-C
  • Common OS exploits: Jailbreaking/Rooting/Flashing a device, custom kernels, custom ROMs, hooking frameworks
  • Knowledge of classic attacking techniques: data cloning, reverse engineering, traffic interception, hooking, debugging (like gdb, jdb, other tools like Burp suite, Substrate, Frida, Cycript, IDA)
  • Experience in advance tools such as Miasm, Unicorn, Angr is a plus
  • Understanding of communication protocols
  • OSI Model, TLS standards, Certificates
  • Knowledge and experience in cryptography
  • Common crypto algorithm (AES, RSA, MAC, PBKDF, etc)
  • Common platform crypto libraries (OpenSSL, BouncyCastle/SpongyCastle, javax.crypto, iOS CommonCrypto)
  • Interest and understanding of low-level aspects of operating systems
  • Syscalls, processes, daemons, virtual memory, kernel extensions

People Also Considered

Career Advice to Find Better