Principal Consultant

Atos

Atos is a global leader in digital transformation with 105,000 employees and annual revenue of c. € 11 billion.

Eviden, part of the Atos Group, with an annual revenue of circa € 5 billion is a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 47,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.

JOB DESCRIPTION FOR PRINCIPAL CONSULTANT

As a Principal Consultant, you will be responsible to provide expert cyber security technical advice, guide and support delivery consultants. A strategic thinker that has good people and time management skills to oversee and deploy security consultants tasked to projects.

Roles and Responsibilities

1. Understanding, assessing and providing expertise advice at technical and business process level.
2. Provide encouragement and leadership in mentoring consultants for their development and progression.
3. Evaluate and approve security plans and reports.

Skills and Experience

1. Over 8 years of security experience.
2. Bachelor Degree in Computer Science or equivalent.
3. OSCP, CRT, CCT, Other offensive security certificates an asset.
4. Strong experience performing compliance testing of mobile applications that meet certain Technology Security Standards and regulatory/industries requirements, eg MAS TRM, OWASP MSTG.
5. In-depth knowledge of iOS/android architecture and their underlying security mechanisms.
6. Experienced with performing secure code review of Swift / Kotlin/Objective-C and Java applications.
7. Proficient with various reverse engineering tools such as IDA Pro, Ghidra, as well as Frida.re hooking framework or equivalent.
8. Knowledge of RM architectures (armeabi-v7a, arm64-v8a, etc) as a plus.
9. Ideal candidate will also have experience bypassing various security mechanisms commonly present in mobile applications (SSL pinning, root/jailbreak detection, anti-tampering, in-app VPN, etc).
10. Ability to develop BURP extensions to aid with mobile and web application tests.
11. Knowledge of industry standards and best practices for IT management and cyber security.
12. Proficiency in written and spoken English.