Android Penetration Tester

Pay: $65-70/hour W2. Our company offers our consultants a suite of benefits after a qualification period including health, vision, dental, life, and disability insurance. Hybrid role, must be onsite 3x/week in Mountain View, CA W2 Candidates only Manager Notes This role focuses on Pen Testing for Mobile Applications and Android APK Level. Previous interviews have been too focused on web applications and missing the Android component. Hybrid role – 3 days onsite. Must be able to read and understand Java & Python, as Java is the native language of Android. Responsibilities Develop expertise in our product solutions, deep diving into design/architecture, and execute white box and black box penetration scenarios. Plan, scope, and conduct vulnerability assessments and penetration tests on internal/external assets such as web applications, Android platforms, Android apps, backend APIs, and cloud services. Research and conduct adversary simulations for known security threats and identify client attack vectors to test system security readiness. Conduct threat modeling, threat intelligence, and scoping with stakeholders. Assist in creating and maintaining internal penetration testing practices within the QA team, managing vulnerabilities and tracking until closure. Build test harnesses and automation suites, and validate attack vectors in Threat Lab. Coordinate with program management and security architects at internal and offshore sites. Stay up to date on current tools, technologies, and vulnerabilities to incorporate into testing practices. Research and develop exploits for zero-day vulnerabilities. Conduct penetration tests on IoT and firmware devices. Requirements 5+ years of experience in penetration testing, including 2+ years in Android and 1+ year in web applications. Degree in cybersecurity or related security disciplines is a plus. Certifications in offensive security such as OSCP, OSWA, OSWE, CRTO, BSCP, or similar are a plus. Comprehensive knowledge of information security practices, malware, phishing attacks, attack vectors, and threat protection methods. Proficiency in Java, Python, or relevant programming languages. Malware development or reverse engineering experience is a plus. Who We Are The Fountain Group is a nationwide staffing firm with over 80 Fortune 100-500 clients. Since 2001, TFG has maintained a standard of excellence, recognized through numerous industry awards. Our success is a team effort. Visit our website for more information: The Fountain Group 3407 W Martin Luther King Jr. Dr. Tampa, FL 33607 “We work in Life Sciences, Clinical, Engineering, IT, and more. Above all, we specialize in people.” #J-18808-Ljbffr

Created: 2025-09-17