❤️ About the role

Ejara is actively seeking entry or mid-level applicant to work as Security Engineer. The individual will be involved in testing applications for our exciting, high-profile security projects that focus on the security of our mobile app, services, etc.

He/She will be responsible for performing vulnerability assessments using best-of-breed tools and techniques, researching various security and privacy topics as they apply to mobile, working with our customers to remediate security issues, and much more!

⭐️ The Role

• Utilize hacking and pentesting techniques to target our mobile app, web services, etc.
• Perform code audits, dynamic scans and API security analysis on our mobile application and services endpoints.
• Examine transmitted and stored data for personally identifiable information (PII).
• Convey technical topics to various audiences, including developers, customer service, etc.
• Develop automation or tooling to aid in inspecting network traffic logs from application testing sessions to identify anomalous or suspicious activity initiated by mobile applications.
• Demonstrate a resourceful and creative approach to solving technical and procedural problems.

📖 Requirements

• Experience conducting application or network security assessments, security research, reverse engineering, or mobile development.
• Experience conducting network traffic captures / packet captures (PCAP), including familiarity with proxies such as OWASP ZAP, mitmproxy, Charles, Fiddler, Burp Suite, etc.
• Workable knowledge of command line interfaces or scripting tools.
• Solid understanding of communication protocols and web requests, including POST, GET, HTTP headers, user agents, request parameters, cookies, etc.
• Familiar with iOS or Android operating systems.
• Experience developing in Node.js, Python, and Typescript.
• Ability to multi-task and context switch to work on multiple project requests in parallel.
• Must demonstrate a solid fundamental understanding of security.