Security Consultant for Singapore with broad standard skills in Pentesting and strong mobile testing focus as follows:
General
- Between 2 and 6 years experience
- Annual target salary, incl. standard bonus categories: between 110,000 and 140,000 SGD
- Local Singapore, PR or existing workpass / on-site Singapore
Skills
- OSCP, CRT, CCT, other offensive security certificates
- Strong experience performing compliance testing of mobile applications that meet certain Technology Security Standards and regulatory/industries requirements : eg. MAS TRM, OWASP MSTG.
- In-depth knowledge of iOS / Android architecture and their underlying security mechanisms.
- Experienced with performing secure code review of Swift / Kotlin / Objective-C and Java applications.
- Proficient with various reverse engineering tools such as IDA Pro, Ghidra, as well as Frida.re hooking framework or equivalent.
- Knowledge of ARM architectures (armeabi-v7a, arm64-v8a, etc.) as plus.
- Ideal candidate will also have experience bypassing various security mechanisms commonly present in mobile applications (SSL pinning, root/jailbreak detection, anti-tampering, in-app VPN, etc.).
- Ability to develop BURP extensions to aid with mobile and web application tests.
- Web Applications Pentest
- Source Code Review
- Infrastructure Pentests
