Principal Mobile Application Security Specialist (RARR Job 5828)

he Principal Mobile SME (Offensive Security) supports the Mobile Cyber Fusion Cell by bringing deep expertise in attacks against applications on end-user mobile devices. The role applies security research and testing methodologies to help strengthen the cybersecurity posture of customer-facing mobile applications.

The role holder will sit within the Offensive Security function and embed within the Mobile Cyber Fusion Cell, working alongside malware experts, mobile developers, and other key technical SMEs to respond to the ever-evolving landscape of cybersecurity attacks targeting mobile applications.

The role holder will test known Tactics, Techniques, and Procedures (TTPs) to validate the effectiveness of preventative and detective controls, applying subject matter expertise to stay ahead of attacker techniques.

The role requires flexibility, with the ability to perform varying duties based on the changing needs of the function.

What you’ll do: (Key Responsibilities)

• Perform highly technical analysis of known TTPs leading to mobile application fraud.

• Enhance testing methodologies for consumption by other Offensive Security services.

• Develop proof-of-concept malware to replicate TTPs in a controlled environment.

• Clearly and professionally document root cause analysis and risk assessment for all findings.

• Adhere to established security testing processes and raise gaps or improvement opportunities with the manager.

• Work closely with the Mobile Cyber Fusion Cell to build a shared understanding of mobile application fraud.

• Develop an understanding of business functionality and apply appropriate testing methodologies based on technology and risk.

• Perform other responsibilities as assigned.