Senior Cybersecurity Analyst

The primary responsibility of this role is to ensure the security of our Android applications through rigorous testing, risk assessment, and the implementation of robust security measures. The ideal candidate will have a strong background in Vulnerability Assessment and Penetration Testing (VAPT), along with extensive experience in API testing, code review, security automation, threat modelling, and Governance, Risk, and Compliance (GRC) practices. Additionally, the candidate should possess in-depth knowledge of best security practices for app development, AWS security, and endpoint security.

What will be your responsibilities?

1. Conduct thorough Vulnerability Assessment and Penetration Testing (VAPT) on Android applications to identify and exploit security vulnerabilities.
2. Perform risk assessments to evaluate the potential impact of identified vulnerabilities and provide recommendations for mitigation.
3. Conduct API testing to ensure the security of interfaces used by mobile applications.
4. Conduct code reviews to identify security flaws and weaknesses in Android application code.
5. Develop and implement security policies, procedures, and processes tailored to mobile application security requirements.
6. Automate security assessment tasks to improve efficiency and effectiveness.
7. Perform threat modelling to identify potential security threats and vulnerabilities in Android applications and develop mitigation strategies.
8. Collaborate with stakeholders to ensure compliance with Governance, Risk, and Compliance (GRC) requirements and standards.
9. Stay up to date with the latest security threats, vulnerabilities, and best practices related to mobile application security, AWS security, endpoint security, threat modelling, and GRC.
10. Collaborate with development teams to integrate security into the software development lifecycle (SDLC) and provide guidance on secure coding practices.
11. Supervise and guide the daily operations of the cybersecurity team.

What are we looking for and what does it require to be the right fit for this role?

• Bachelor's degree in Computer Science, Information Security, or a related field
• Minimum of 5 years of experience in cybersecurity, with a focus on mobile application security.
• Demonstrated experience in conducting VAPT on Android applications.
• Proficiency in API testing and code review techniques.
• Experience in developing security policies, processes, and procedures.
• Strong scripting skills with experience in Python, Shell scripting, or similar languages for security automation.
• In-depth knowledge of security best practices for app development, including secure coding practices, encryption techniques, and authentication mechanisms.
• Familiarity with AWS security best practices.
• Knowledge of endpoint security solutions and best practices.
• Experience with threat modelling methodologies and tools.
• Familiarity with Governance, Risk, and Compliance (GRC) practices and standards.
• CEH, OSCP, CISM or eCPPT certifications are preferred.

Why Join AIO?

Our mission is to revolutionise the US restaurant industry by providing a comprehensive and fully integrated solution that empowers restaurant owners to efficiently manage all aspects of their businesses. Our platform, designed to meet the unique challenges (post-COVID-19) faced by restaurants, combines our patented AI technology with unparalleled customer support to help owners increase revenue, reduce costs, and improve their overall profit margins.

We believe that restaurants should be able to focus on delivering exceptional dining experiences to their customers, without the added stress of managing complex and disparate systems. That's why we offer an all-in-one super app platform for all of their needs, from front-of-the-house operations like ordering, payment, marketing and rewards, to back-of-the-house management like inventory, staff, and financials.

We are laser-focused on becoming a significant player in the $55 billion worth restaurant tech SaaS market. You will be a part of a world-class Silicon Valley-funded startup.