Senior Mobile Security Engineer (AndroidiOS)
Kuala Lumpur - Malaysia
Job Summary
Key Responsibilities:
App Hardening: Implement and maintain RASP (Runtime Application Self-Protection)
Code Obfuscation (ProGuard/DexGuard) and Root/Jailbreak detection mechanisms.
Secure Connectivity: Enforce Certificate Pinning and secure TLS configurations to
prevent Man-in-the-Middle (MitM) attacks.
Data Protection: Ensure no sensitive data (PII Keys) is leaked in logs cache or
snapshots. Secure usage of Android Keystore and iOS Keychain.
Mobile Design Components: Deliver new security design patterns and components
for Mobile security. Create reusable libraries for biometric login secure storage and
device attestation that feature teams can easily drop into their code.
Pentesting: Regularly decompile and attack our own binaries to verify defenses.
Technical Requirements:
Deep knowledge of Android (Kotlin/Java) and iOS (Swift/Obj-C) internals.
Experience with mobile security frameworks (OWASP MASVS).
Hands-on experience with reverse engineering tools (Frida Ghidra MobSF).
Understanding of Biometric authentication flows (FaceID/TouchID implementation).
Required Experience:
Senior IC
About Company
As Encora Inc. expands its footprint in Latin America, its acquisition of Nearsoft provides our clients with a unique chance to Nearshore on a global scale.