CrawlJobs Logo
Booz Allen Hamilton Logo Booz Allen Hamilton · IT - Software Development

Mobile Application Security Engineer

United States, Fort Meade 69400.00 - 158000.00 USD / Year · Job Posted March 19, 2026
Apply Position
Job Link Share

Job Description

Build your problem-solving prowess in a rapidly evolving systems security research and engineering environment. Use skills in mobile operating system security, mobile application pen testing, and networking protocols to support our government clients. Have a direct impact on the nation’s security. Be involved in the full life cycle of mobile application security and solution design.

Job Responsibility

  • Perform reverse engineering and vulnerability analysis of various software problems
  • Inform operational parameters for complex systems
  • Leverage automation and machine learning to influence the delivery of your work
  • Support government clients in mobile application security

Requirements

  • 2+ years of experience with iOS and Android mobile device operating systems
  • Knowledge of static and dynamic mobile app security analysis concepts
  • Knowledge of protocol and network analysis using mitmproxy and Wireshark
  • Knowledge of common mobile application vulnerabilities and mobile threats
  • Secret clearance
  • Bachelor's degree

Nice to have

  • Experience developing iOS and Android mobile applications
  • Knowledge of common mobile application authentication and encryption methods, including OAuth and PKI
  • Knowledge of reverse engineering Android DEX files and Apple’s Mach-O files
  • Knowledge of OWASP Mobile Top 10 and the Mobile Security Testing Guide (MSTG)
  • Possession of excellent verbal and written communication skills
  • Security+, Certified Ethical Hacker (CEH), SANS Mobile Device Security, or Ethical Hacking Certification

What we offer

  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Booz Allen Hamilton - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Mobile Application Security Engineer

8 matching positions

Senior Security Engineer, Application Security

We are hiring a Senior Application Security Engineer to join Turnkey's team and ...
Location
Location
Salary
Salary:
Not provided
turnkey.com Logo
Turnkey
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelors degree in Computer Science, Engineering, or a related field
  • 5+ years of experience in application or product security, ideally in fast-moving, high-impact or crypto-native environments
  • Strong understanding of web, mobile, and cryptographic security fundamentals (e.g. OWASP Top Ten, SANS/CWE Top 25)
  • Proficiency in programming and scripting languages (Typescript/Javascript, Go, Rust) and experience building secure systems from the code up
  • Hands-on experience with security testing tools and methodologies (static/dynamic analysis, pen testing, etc.)
  • Strong understanding of cloud, containerized, and runtime environments (AWS, GCP, Docker, Kubernetes), with the ability to embed security early in the SDLC
  • Excellent analytical, problem-solving, and communication skills, with a collaborative mindset for partnering across product and infrastructure teams
  • Curious, proactive, and passionate about building secure, reliable systems in a fast moving startup environment
  • A builder mentality
  • comfortable operating with ambiguity, tackling incomplete systems, and applying hands-on engineering experience to security challenges.
Job Responsibility
Job Responsibility
  • Partner with Product and Engineering at both the design and development stage to ensure that we implement new features securely, including (but not limited to): Participating in the implementation efforts
  • Doing security reviews
  • Helping with product design decisions
  • Auditing and surfacing vulnerabilities in our current products
  • Conducting threat modeling and security assessments for new features and systems, identifying risks early and shaping secure architectural decisions
  • Developing and improving our Automated Tooling: further enhancing our automated tooling to scale our product security capabilities and find potential code problems both before and after we deploy
  • Making the safe way, the easy way: work on defining and building application guardrails so that developers can build securely by default
  • Investigating and remediating security issues, including vulnerabilities and incidents, and drive long-term improvements to prevent recurrence
  • Embedding a culture of secure development across engineering, defining practices that influence how Turnkey builds, deploys, and maintains systems at scale.
What we offer
What we offer
  • Full benefits, including medical, dental, vision, life, disability, HSA/FSA, 401(k)
  • Paid parental leave
  • Unlimited PTO
  • $3,000/yr learning and development budget to attend industry conferences
  • Multiple team offsites per year
  • Macbook Pro laptop
  • Lunch stipend (for those physically in the New York City office)
  • Fulltime
Read More
Arrow Right

Security Engineer, Application Security

Figure is an AI Robotics company developing a general purpose humanoid. Our huma...
Location
Location
United States , San Jose
Salary
Salary:
150000.00 - 350000.00 USD / Year
figure.ai Logo
Figure
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in several of the following application security domains: penetration testing, vulnerability research, security assessment, secure coding practices, security architecture & design, hardware security
  • Strong software engineering (not scripting or automation) skills in C/C++, Rust, Golang, Python or similar
  • Experience with securing embedded systems, including secure boot, secure identity, OTA, or others
  • Solid foundation in web security, mobile security, or cryptography
  • Ability to collaborate with internal and external stakeholders whilst prioritizing tasks and work independently under minimal supervision.
  • BS in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field
  • 3+ years of experience in the field of application security or related security role
  • Passion for learning and helping others
  • Excellent verbal and written communication skills, with high attention to detail
Job Responsibility
Job Responsibility
  • Conduct security assessments of applications, embedded systems, back-end services, and business integrations, as well as build tooling for a secure development lifecycle
  • Design technical solutions to mitigate security weaknesses on the robot and our service stack. Work with teams across the company to implement them.
  • Build frameworks and systems to prevent classes of vulnerabilities
  • Hunt for vulnerabilities and insecure coding patterns on our product stack (backend services and robot internal systems)
  • Be a champion for security and user privacy
  • Fulltime
Read More
Arrow Right

Senior Application Security / Product Security Engineer

We are seeking an experienced Application Security / Product Security Engineer t...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
Galaxy Office Automation Pvt. Ltd.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of Application Security and Product Security principles
  • Experience with secure SDLC practices
  • Hands-on experience performing security testing for Web applications, APIs, Mobile apps, Thick client applications
  • Knowledge of cloud platforms (AWS / Azure / GCP) and cloud security architecture
  • Experience performing security design reviews and threat modeling
  • Familiarity with OWASP Top 10, API Security Top 10, and common vulnerability classes
  • Experience using security tools such as SAST, DAST, SCA
  • API testing tools
  • Good working knowledge of Excel for tracking vulnerabilities, metrics, and reporting
  • Strong task management and stakeholder coordination skills
Job Responsibility
Job Responsibility
  • Integrate security practices into the Software Development Lifecycle (SDLC)
  • Perform application security design reviews for new and existing products
  • Conduct manual and automated security testing of Web applications, REST / GraphQL APIs, Mobile applications (Android / iOS), Thick client / desktop applications
  • Identify vulnerabilities such as OWASP Top 10, authentication issues, authorization flaws, and API security risks
  • Review cloud architecture and deployments (AWS, Azure, GCP) for security best practices
  • Work with development teams to prioritize and remediate vulnerabilities
  • Perform threat modeling and security architecture assessments
  • Track vulnerabilities, remediation status, and risk metrics using Excel or vulnerability management tools
  • Support secure coding practices and developer security awareness
  • Manage multiple security assessments and coordinate tasks across teams
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Security Risk Assessment Security Policies, Standards, Guidelines, And Procedure...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in application security or software development with security focus
  • Strong experience in DevSecOps with a solid foundation in cybersecurity and risk assessment
  • Hands-on knowledge of secure software development lifecycle (SSDLC) principles and tools
  • Familiarity with integrating security testing tools and practices within CI/CD environments
  • Experience with secure coding and vulnerability assessments across common web and mobile technologies
  • Ability to work with and guide development teams without being directly involved in implementation
  • Excellent communication skills and the ability to translate complex security requirements into practical advice
Job Responsibility
Job Responsibility
  • Perform comprehensive risk assessments of development environments, DevOps workflows, and CI/CD processes
  • Perform security assessments, threat modelling, and code reviews to identify vulnerabilities in applications
  • Review and recommend improvements in areas such as identity and access management, network security, secure SDLC practices, source code management, cryptographic key handling, and data protection
  • Guide application teams on adopting secure development practices and integrating security tools such as SAST, DAST, and VAPT into their workflows
  • Review existing CI/CD pipelines from a security perspective and provide expert recommendations to align with DevSecOps principles
  • Mentor and advise internal teams on secure coding practices across various platforms and languages (e.g., JavaScript, Node.js, Java, C#, Python, etc.)
  • Develop and maintain secure coding guidelines and security standards
  • Collaborate with development teams to remediate security issues and provide guidance on secure coding practices
What we offer
What we offer
  • Hybrid working mode
  • 18 days of Annual leave
  • Comprehensive coverage including General Practitioner, hospitalization, dental, and optical
  • Annual bonus based on individual performance
  • Training programs, certification opportunities, and training incentives to support career growth
  • Regular team-building activities and social events
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Performing regular penetration testing and vulnerability assessments on internal...
Location
Location
Türkiye , İstanbul
Salary
Salary:
Not provided
paribu.com Logo
Paribu
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Software Engineering, or a related field
  • Minimum 5 years of hands-on experience in web and mobile (iOS & Android) application security
  • Deep understanding of security standards and methodologies such as OWASP Top 10, OWASP Mobile Top 10, and SANS 25
  • Proficiency with application security testing and vulnerability analysis tools such as Burp Suite, Nessus, Acunetix, Fortify, Checkmarx, and MobSF
  • Strong knowledge of mobile application architectures, reverse engineering concepts, and secure coding principles
  • Experience contributing to SSDLC and integrating security into modern engineering and release processes
  • Familiarity with AI-assisted analysis and research workflows, and awareness of how AI can be applied in application security use cases
  • Excellent written and verbal communication skills in English
  • Strong analytical thinking, problem-solving capabilities, and a team-oriented mindset
  • Relevant certifications such as OSCP, OSWE, CEH, GWAPT, GMOB, eWPT, or eMAPT are highly preferred
Job Responsibility
Job Responsibility
  • Performing regular penetration testing and vulnerability assessments on internally developed and third-party web, iOS, and Android applications
  • Managing and integrating SAST, DAST, and IAST tooling into application security processes and engineering workflows
  • Contributing to the continuous improvement of the Secure Software Development Life Cycle (SSDLC) and DevSecOps pipelines
  • Conducting secure code reviews in close collaboration with software development teams
  • Producing clear and actionable security findings, providing remediation guidance, and tracking vulnerabilities through resolution
  • Monitoring the latest cybersecurity threats, zero-day vulnerabilities, and attack vectors to help strengthen proactive defense mechanisms
  • Collaborating with engineering and product teams to improve the security posture of applications across development, testing, and production environments
  • Applying AI-supported approaches in security research, vulnerability analysis, and workflow efficiency, while maintaining a strong understanding of secure and responsible AI usage in cybersecurity contexts
What we offer
What we offer
  • Meal allowance
  • Private health insurance
  • Commuting support
  • S.O.S. leave (10 days)
  • Birthday leave
  • Language learning support
  • Personal development support
  • Well-being & health platform
  • Relocation allowance
  • Top-tier work equipment
  • Fulltime
Read More
Arrow Right

Application Security Engineer

We're looking for an intermediate Application Security Engineer to join our Info...
Location
Location
Salary
Salary:
Not provided
talentsafari.io Logo
Talent Safari
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 3 years in application security, IT security, or software development with a security focus
  • Hands-on experience with penetration testing, vulnerability assessments, and secure code reviews
  • Proven experience with SAST, DAST, and threat modelling frameworks
  • Practical knowledge of secure software development practices (OWASP Top 10, CWE)
  • Hands-on development experience or scripting ability (Python, JavaScript, Bash)
  • Strong understanding of web application security, API security, and cloud security concepts (AWS, Azure, or GCP)
  • Understanding of DevSecOps principles and CI/CD security integration
  • Excellent communication skills with the ability to explain complex security concepts to technical and non-technical audiences
  • Collaborative mindset with the ability to work cross-functionally
Job Responsibility
Job Responsibility
  • Application Security Testing: Conduct web and mobile application security assessments and API security testing. Perform threat modelling, secure code reviews, and attack surface analysis. Support SAST and DAST initiatives
  • Vulnerability Management: Assist in managing the vulnerability lifecycle. Coordinate internal and external security assessments, ensuring proper scoping and timely delivery. Track and report on remediation progress
  • Secure Development Lifecycle (SDLC) Integration: Ensure secure coding practices are followed. Collaborate with developers, testers, and business analysts to provide proactive security guidance during development sprints. Contribute to security frameworks, checklists, and guidelines (aligned with OWASP, NIST, MITRE). Work on DevSecOps testing and protective controls
  • Incident Response Support: Assist in the investigation and resolution of application security incidents. Contribute to post-incident analysis and implement preventative measures
  • Continuous Improvement & Innovation: Stay informed about cybersecurity trends, emerging threats, and attack vectors. Research and contribute to the implementation of innovative security solutions. Identify process improvements to enhance the efficiency and effectiveness of security assessments
What we offer
What we offer
  • Competitive compensation package and benefits
  • Stripe Equity compensation
  • Full medical coverage
  • Wellbeing stipend
  • Generous leave and sabbatical policies
  • Hybrid working environment
  • Smart, kind colleagues who’re invested in your growth
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Application Security Engineer for the Tech Foundations area at Alan. The mission...
Location
Location
Salary
Salary:
Not provided
alan.com Logo
Alan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong background in application and infrastructure security
  • Hands-on experience using Software Security, Application Security or Pentesting techniques to identify and mitigate security vulnerabilities in web and mobile applications
  • Experience in protecting organisations from cyber threats and have experience working with platforms to monitor, detect, and respond to security incidents
  • Familiarity with cloud security and modern web application security
  • Well-versed in Object Oriented Programming such as Python, Java, C#
  • Enthusiastic about web technologies such as modern Javascript
  • Willing to work in Python/JavaScript
  • Passionate about building products
  • Self-starting and entrepreneurial
  • Humble and still willing to grow
Job Responsibility
Job Responsibility
  • Strengthen our security posture across our engineering organization
What we offer
What we offer
  • Fair rewards with generous equity packages
  • Flexible Office with amazing office space at HQ, sponsored co-working hubs or a full-remote experience with home office equipment sponsorship
  • All the tools you need with top of the range equipment
  • Flexible vacation policy and flexible working hours
  • Delightful healthcare insurance
  • Country-specific commuter benefits
  • Learning & Training opportunities
  • Personal growth through coaching
  • Extended parental leave
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Be the spark that brightens days and ignite your career with TTEC’s award-winnin...
Location
Location
Mexico
Salary
Salary:
Not provided
ttec.com Logo
TTEC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or related field
  • 3+ years of experience in application security (cloud and on-premise)
  • Experience with penetration testing, risk assessments, and vulnerability management
  • Solid understanding of OWASP Top 10 and mitigation strategies
  • Proficiency in scripting or programming (Python, Java, or C#)
  • Familiarity with security testing tools and cloud platforms (AWS, Azure, GCP)
  • Excellent communication skills with global and cross-functional collaboration experience
Job Responsibility
Job Responsibility
  • Lead security assessments and code reviews across web, mobile, cloud, and on-prem applications
  • Guide development teams on secure coding practices and implement effective security controls
  • Evaluate threats, conduct risk assessments, and define mitigation strategies
  • Maintain documentation on architecture, incident response, and security procedures
  • Stay current on emerging threats and support incident response efforts when needed
  • Conduct vulnerability scans, penetration testing, and manage remediation processes
  • Use tools like SAST, DAST, and IAST to continuously monitor application security
  • Collaborate with DevOps to embed security in CI/CD pipelines
  • Deliver security training to developers and internal teams
  • Participate in cloud security reviews (AWS, Azure, GCP) and recommend improvements
What we offer
What we offer
  • Supportive of your career and professional development
  • An inclusive culture and community minded organization where giving back is encouraged
  • A global team of curious lifelong learners guided by our company values
  • Paid time off (PTO)
  • Wellness and healthcare benefits
  • Great compensation package and performance bonus opportunities
  • Tuition reimbursement
  • Fulltime
Read More
Arrow Right