Passes logo

Passes

usUS

Sr Technical Security Engineer

full-timeRemote
mobile security
technical security
security engineer
application security
This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Sr Technical Security Engineer in the United States.
As a Senior Technical Security Engineer, you will play a pivotal role in securing desktop and mobile applications across complex environments. You will be responsible for implementing best-in-class security practices, ensuring applications are resilient against emerging threats, and guiding cross-functional teams on secure development standards. This role involves hands-on work with secure coding, cryptography, authentication protocols, and OS-level hardening techniques. You will also contribute to vulnerability remediation, incident response, and embedding security into the software development lifecycle. The ideal candidate will have deep expertise in thick client architectures, mobile security, and modern cryptography. This is a fully remote opportunity, offering the chance to shape the security posture of high-impact applications.

Accountabilities:

  • Implement and maintain robust security for desktop and mobile applications, covering thick client architectures and OS-level protections.
  • Conduct threat modeling, secure design reviews, code reviews, and vulnerability assessments throughout the software development lifecycle.
  • Embed secure coding practices across multiple programming languages and frameworks, including C++, Rust, Go, Kotlin, Swift, and C#.
  • Lead incident response efforts, managing vulnerability remediation and mitigation strategies.
  • Develop and maintain developer-facing security guidelines and best practices documentation.
  • Collaborate with cross-functional teams to ensure security requirements are integrated into product design and delivery.
  • Stay up-to-date with emerging security threats, cryptographic advances, and best practices for client application security.
Requirements:
  • 5+ years of experience in application or product security, with a strong track record in securing desktop and mobile applications.
  • Expertise in secure architecture for thick clients, local storage protection, inter-process communication, and web security standards (CSP, TLS/HTTPS, same-origin policy).
  • Hands-on experience with mobile (iOS/Android) and desktop (Windows/macOS/Linux) security models.
  • Proficiency in GenAI security, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling.
  • Knowledge of OS hardening techniques, sandboxing, privilege separation, and secure use of platform APIs.
  • Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering.
  • Strong cross-team communication and ability to write clear, actionable security guidelines for developers.
  • Experience embedding security into the software development lifecycle through threat modeling, secure design patterns, and code reviews.
    • Preferred Qualifications:
  • Contributions to open-source client frameworks, SDKs, or security tools.
  • Experience with offline-first applications, privacy-preserving designs, and anti-tampering/DRM techniques.
  • Deep knowledge of reverse engineering defenses (code obfuscation, anti-debugging, integrity checks).
  • Proven leadership in security architecture for client application launches at scale.
  • Advanced degree (MS/PhD) in Computer Science, Cybersecurity, or related field.
    • Benefits:
  • Fully remote work flexibility within the United States.
  • Competitive salary commensurate with experience.
  • Opportunity to work on cutting-edge application security projects.
  • Professional growth and exposure to advanced security technologies.
  • Collaborative environment with a focus on knowledge sharing and innovation.