Job Description

Mobile Security Engineer

Job Number: 19-09081

 

Grab the opportunity to achieve your full potential! Eclaro is looking for a Mobile Security Engineer for our client in Denver, CO.

 

Eclaro’s client is one of the world's largest financial institutions, committed to providing the tools and services that bridge the gap between customers and their goals. If you’re up to the challenge, then take a chance at this rewarding opportunity!

 

Responsibilities:

  • Collaboratively develop technical designs, processes and procedures pursuant to mobile application security objectives together with business and technical partners
  • Contribute to the continued development of mobile ecosystem governance (including Enterprise Architecture) and ensuring mobility solutions (devices, apps, infrastructure) adhere to bank policies, standards and guidelines
  • Collaborate with architecture, BISO, LOB and enterprise teams regarding mobile device and app management implementations and deployments
  • Identify and implement defensive controls for bank mobile devices, and aid in implementing methods and processes for production deployment (Mobile Threat Defense)
  • Build and execute on a hardening checklist for different platforms - iOS, Android, Blackberry. Define security design patterns for Strong Authentication, Encryption, and Integrity, further refine Mobile Security Playbook, Mobile Security Capabilities Catalog and wiki
  • Pro-actively engage stakeholders, including development managers, developers, architects, and governance bodies in the Bank to achieve security objectives
  • Deliver multiple technology projects across multiple teams
  • Regularly interact with senior technology and business management, requiring the ability to explain complex technical matters in a way both technical and non-technical personnel can understand
  • Partner to create threat models and threat assessments supporting enterprise systems (MAM, MDM, UEM) and bank mobile apps, enumerate threats by attack surface, and identify countermeasure options
  • Collaborate with internal GIS and enterprise teams to strengthen mobile security awareness, including partnering with mobile developers, solutions architects (promote use of threat modeling, reference design patterns, source code analysis, mobile ethical hacks, brand identity, vulnerability detection)
  • Develop policies, processes and procedures to advance mobile ecosystem governance security objectives for adoption throughout the Bank
  • Contribute to and interpret enterprise policies, standards, and baselines and mentor personnel with less experience or knowledge of the same
  • Ability to undertake and complete tasks independently, meet schedules and delivery timelines, and to move swiftly from concepts and theory to action

 

Required Qualifications:

  • Bachelor's degree or equivalent work experience required; Advanced degree preferred
  • CISSP or similar relevant industry accreditation preferred
  • Working knowledge of MDM, MAM, UEM
  • Extensive knowledge of iOS and Android platforms
  • Extensive experience with security in a mobile/mobility infrastructure environment
  • The ideal candidate will possess expertise in several of the following areas:
    • Experience with mobile security vulnerability assessment techniques (during design, development and testing)
    • Experience with mobile platform attack and defense techniques
    • Experience conducting mobile security reviews
    • Mobile Device Management/MDM and OS patching
    • Mobile App Management/MAM and app updates/patching
    • Mobile App Containerization and Wrapper Technologies
    • Mobile Operating Systems and Platforms
    • Mobile Testing, Quality Assurance and Security Verification
    • Mobile App Signing and Certificate Governance
    • Mobile Authentication (FIDO, OAuth, etc.)
    • Mobile Code Protection, Obfuscation and Tamper Resistance
    • Mobile Threat Modeling
    • Mobile Vulnerabilities (CVE, CVSS, CWE ratings, etc.)
    • Knowledge of mobile app penetration/testing
    • Enterprise Architecture governance and process (in a large enterprise)
    • Mobile app software delivery experience preferable
    • Mobile app software development experience including app signing across platforms preferable

 

If interested, you may contact:

Tony Clariza

Antonette.Clariza@eclaro.com

6463571247

Tony Clariza | LinkedIn

 

Equal Opportunity Employer: Eclaro values diversity and does not discriminate based on Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online