Mobile Applications Security Test Engineer, Mid in Annapolis Junction, MD at Booz Allen Hamilton

Date Posted: 1/29/2018

Job Snapshot

Job Description

Job Number: R0000829

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.

Mobile Applications Security Test Engineer, Mid

Key Role:

Perform security testing on iOS and Android mobile applications for smart phones and tablets using a variety of custom and third party mobile security testing tools. Lead a small team of security analysts to drive mobile application security assessments for the premier enterprise provider within the DoD. Apply knowledge of USG security requirements to identify vulnerabilities and risk mitigations and document all findings in security test reports.


Basic Qualifications:

-3+ years of experience with software development and testing life cycle processes

-2+ years of experience with security and network analysis tools, including Wireshark or Burp Suite

-2+ years of experience with conducting statics and dynamic testing on mobile and desktop applications

-Experience with mobile end-point security, including various attack vectors, such as network, device, and apps

-Ability to monitor and capture mobile network traffic within a standardized process

-Ability to determine and document mobile application dependencies, including infrastructure, accounts, and test scenarios

-Secret clearance

-BA or BS degree


Additional Qualifications:

-Experience with the NIAP Protection Profile for application software and the application of it to mobile applications

-Experience with previous DoD guidance, including the Mobile App Security Requirements Guide (SRG)

-Experience with identifying and mitigating OWASP Mobile Top 10

-Experience with black box testing

-Experience with mobile device management and enterprise mobile management infrastructure

-Experience with mobile app and mobile OS penetration testing

-Experience with Mobile Application Management (MAM), Mobile Device Management (MDM), and Mobile Application Store (MAS) controls, security, and compliance and the distribution and monitoring of mobile applications and mobile devices

-Ability to present to senior–level clients

-Ability to reverse engineer binaries a plus

-Possession of excellent oral and written communication skills

-Security+ Certification a plus


Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.


Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.


We are proud of our diverse environment, EOE, M/F/Disability/Vet.

AFH26

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.