Syncreon Consultingposted 13 days ago
Irvine, CA
About the position
The Product Security Architect will focus on mobile application security, responsible for reviewing mobile app architectures, evaluating security controls, creating threat models, and contributing to the overall security of mobile products. The role involves providing support for mobile application security tooling automation and troubleshooting, conducting security testing for PSE engagements, reviewing security architecture, and evaluating security controls. The contractor will primarily focus on Cloud and Communications products, with VzCloud being the main product, and will also act as a backup on mobile security SME testing, security reviews, and vulnerability management of the VzCloud products.
Responsibilities
- Perform security architecture reviews for iOS and Android applications.
- Create and maintain threat models for mobile products and services.
- Evaluate and advise on security controls embedded within mobile application frameworks.
- Identify mobile-specific vulnerabilities (e.g., insecure storage, improper platform usage).
- Build and maintain automation for mobile security tooling (e.g., custom scripts, CI/CD integration).
Requirements
- Strong understanding of mobile platforms (Android, iOS) and mobile development frameworks.
- Experience with mobile app security testing tools (MobSF, Frida, Burp Suite, OWASP MASVS).
- Familiarity with mobile application threat modeling and common attack vectors.
- Knowledge of CI/CD pipeline integration for mobile app security checks.
- Scripting experience (Python, Bash, or equivalent) for automation.
