Senior Security Analyst

We are Hiring ..

About Us:

Mobileum is a leading provider of Telecom analytics solutions for roaming, core network, security, risk management, domestic and international connectivity testing, and customer intelligence. More than 1,000 customers rely on its Active Intelligence platform, which provides advanced analytics solutions, allowing customers to connect deep network and operational intelligence with real-time actions that increase revenue, improve customer experience, and reduce costs. Know our story:

Headquartered in Silicon Valley, Mobileum has global offices in Australia, Dubai, Germany, Greece, India, Portugal, Singapore and UK with global HC of over 1800+.

Join Mobileum Team

At Mobileum we recognize that our team is the main reason for our success. What does work with us mean? Opportunities!

Position: Senior Security Analyst

About the Role

We are building a new central security team and seeking a Senior Security Analyst to drive AppSec practices, secure SDLC processes, and ISO27001-aligned security controls across Engineering. You will evaluate and implement security tools, lead vulnerability management, and ensure our products meet the highest security standards.

This role requires deep technical expertise - you'll be evaluating security tools, reviewing code, conducting threat modeling, and working closely with developers to embed security into the development lifecycle.

Roles & Responsibility:

• Drive AppSec practices and secure SDLC processes across Engineering
• Implement secure coding guidelines and architectural security patterns
• Evaluate and recommend security tools (SAST, DAST, SCA) to meet ISMS requirements
• Lead implementation of security tooling in CI/CD pipelines
• Maintain AppSec documentation (threat models, design reviews, secure coding standards)
• Support ISO documentation and controls related to SDLC and secure coding
• Manage the complete vulnerability lifecycle from identification through closure
• Lead threat modeling exercises for new features and architectures
• Perform secure code reviews and provide remediation guidance
• Generate technical evidence for audits (logs, pipeline runs, tool outputs)
• Triage security incidents and coordinate response activities
• Provide hands-on support to dev teams to adopt secure patterns and fix findings

Desired Profile: -

Technical Background (Essential)

• Strong software development background with proficiency in programming languages (Java, Python, JavaScript)
• Ability to read, review, and assess code for security vulnerabilities
• Deep understanding of web application architecture, REST APIs, and microservices
• Expertise in CI/CD pipelines and DevOps security integration

Security Expertise

• Expert understanding of OWASP Top 10, CWE/SANS Top 25, and common vulnerability classes
• Experience evaluating and recommending security tools (SAST, DAST, SCA)
• Hands-on experience with tools: Fortify, Checkmarx, SonarQube, Burp Suite, Snyk
• Deep understanding of threat modeling methodologies (STRIDE, PASTA)
• Experience with vulnerability management and remediation tracking

Compliance

• Familiarity with ISO27001 controls as they apply to application security
• Experience supporting audit evidence generation

Preferred Qualifications

• CEH, GPEN, GWAPT, OSCP, or equivalent certifications
• Experience with penetration testing (web applications, APIs, thick clients)
• Software product or SaaS company experience
• Knowledge of compliance frameworks (ISO27001, SOC2)
• Advanced scripting skills (Python, Bash, PowerShell)
• SIEM experience (Splunk, ELK)
• Bug bounty or CTF participation

Work Experience: 6 -12 years in information security, application security, or security operations

Educational Qualification: BE. / B.Tech., M.E./M. Tech. or M. Sc. in Computer Science or any related qualification.

Location: Bangalore

Know our story:

Follow us on:

LinkedIn:

Twitter: @MobileumInc