Job Title                                           : Mobile Security
Experience                                       : 10 - 15 Years
Location                                            : Remote

Description:

• Bachelors degree in Computer Science, Information Technology, Cyber Security, or related discipline or equivalent experience.
• 10+ years of Android OS Security experience with prior experience as Mobile Application Security Architect.
• Design, build and implement enterprise-class scalable security systems for production environment
• Align standards, frameworks, and security with overall business and technology strategy
• Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
• Safeguard the interests of millions of customers and making sure that the Android mobile OS is safe to use
• Guide the OS development teams by setting guidelines on all aspects related to Android security, like usage of frameworks and libraries, secure coding, storage and protection of data
• Lead the vision for security for the platform and evangelize and create “Secure by default” coding frameworks for Android
• Oversee the fraud prevention and other detection mechanisms on the device and advise suitable changes in strategy and implementation
• Focus on mobile safety at a transaction level, thus enabling us to block specific transactions, as needed
• Identify and communicate current and emerging mobile security threats
• Conduct research on the evolving trends in mobile security space and keep abreast of the latest vulnerabilities
• Experience coding in Kotlin,             and at least one scripting language.
• Knowledge of AWS, Azure preferable.
• Security Certifications - CSSLP, CISSP, CTIA or similar certifications.
• Experience in managing and securing container platforms such as docker and Kubernetes.
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures.
• Strong written and verbal communication skills.

Responsibilities:

• Represent the Information Security team and collaborate with peer architects, technical leadership, functional technical leads (developers, QA, DevOps), project managers, third-party vendors, and business unit stakeholders to integrate security controls into the SDLC.
• Manage automated secure coding tools and processes (SAST, DAST, IAST).
• Review security test results from vulnerability scans, and penetration testing for true positives and propose appropriate remediation measures or mitigation control.

• Collaborate with a cross-functional team of engineering, security, architecture, product and design to come up with a Security Architecture strategy and implementation
• Participate in technical and product review meetings
• Produce technical documents such as RFCs and other artefacts to clearly communicate the Security architecture philosophy and strategy
• Design review of critical components within the partner ecosystem and check for compliance with the agreed vision
• Drive greater collaboration between the mobile app engineering and security teams
• Contribute code to suitable framework components that would enable developers to worry less about security and implement logic themselves. (Android)
• Evangelize and publish security models across the org
• Research on the evolving threats and build mitigations to protect against them