Responsibilities
include:
1. Performing mobile application design reviews and advising on secure development
2. Serve as a subject matter expert for mobile application developers and architects
3. Conduct pen-tests against mobile apps, including reviewing security assessment reports from external pen-tests
4. Conduct Debrief Calls with the business to articulate risk and rmend a mitigation strategy
5. Develop secure mobile architecture design policy
6. Mentor other junior members of the team
Basic Qualifications:
7. 5+ years' experience in one or more technical roles (focused in mobile security)
8. Prior experience in performing Threat Modelling or Secure Design Reviews
9. Knowledge of mostmon Mobile Application Security vulnerabilities -, OWASP Top 10
10. Familiarity with Security standards such as OWASP MASVS, NIST and Sans top 20
11. Experience in mobile application vulnerability assessments and penetration testing of mobile applications
12. Working knowledge of application security tools such as those used for Jailbreak/Rooting and testing of iOS/Android applications
13. Ability to identify threats, abuse cases, and gaps in the design before it is implemented
14. Strong written and oralmunication skills to be able to articulate risks to both technical and management stakeholders
Preferred qualifications:
15. In-depth knowledge of the Android Operating system
16. Experience of Secure Systems Development Lifecycle for Mobile Applications
17. Experience in using mobile application testing tools such as Magisk, Frida, Burp, Hopper Disassembler, etc. Also, crafting custom proof of concept application exploits using testing tools/frameworks or scripting exploits in Python, Perl, JS, Shell scripting, etc.
18. Experience in Mobile Application Management (MAM) or Mobile Device Management (MDM) solutions
19. Knowledge of network, application and operating system security risks.
20. MS. inputer Science, Systemputer Engineering, Cyber-Security, or Information Security.
21. Experience or trainings in related disciplines science,puter security, software development, system design, open source frameworks, encryption schemes, etc.
#TechRiskCybersecurity
ABOUT GOLDMAN SACHS
At Goldman Sachs, wemit our people, capital, and ideas to help our clients, shareholders, and themunities we serve to grow. Founded in 1869, we are a leading global investment banking, securities, and investment management firm. Headquartered in New York, we maintain offices around the world.
We believe who you are makes you better at what you do. We'remitted to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS/careers .
We'remitted to finding reasonable amodations for candidates with special needs or disabilities during our recruiting process. Learn more: //goldmansachs/careers/footer/
© The Goldman Sachs Group, Inc., 2024. All rights reserved.
Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity
Job ID 300007622238635