Job Description
Note: The job is a remote job and is open to candidates in USA. Generis Tek Inc is seeking a Sr Technical Security Engineer for a contract role. The engineer will be responsible for securing desktop and mobile applications, managing incident response, and embedding security into the software development lifecycle. Responsibilities β’ 5+ years of experience in application or product security, with a track record of securing desktop and mobile applications. β’ Strong understanding of secure architecture for thick clients, including local storage protection, inter-process communication, JavaScript engines, OS-level security features, and web security standards (CSP, same-origin policy, TLS/HTTPS). β’ Experience with mobile (iOS/Android) and desktop (Windows/macOS/Linux) application security models. β’ Proficiency in GenAI security, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling. β’ Knowledge of OS-level hardening techniques, sandboxing, privilege separation, and secure use of platform APIs. β’ Hands-on experience with secure coding practices in at least one systems language (C++, Rust, Go) and one application language (Kotlin, Swift, C#). β’ Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering for client applications. β’ Experience embedding security into the software development lifecycle (threat modeling, code reviews, secure design patterns). β’ Ability to manage incident response and vulnerability remediation for thick client environments. β’ Strong cross-team communication skills and ability to write clear developer-facing security guidelines. β’ Contributions to open-source client frameworks, SDKs, or application security tools. β’ Prior work with secure local storage, anti-tampering, DRM, or obfuscation in client software. β’ Familiarity with offline-first application security challenges (sync, caching, data persistence). β’ Experience with privacy-preserving client design, including minimizing telemetry and preventing data leakage. β’ Deep understanding of reverse engineering techniques and defenses (e.g., code obfuscation, anti-debugging, integrity checks). β’ Experience leading security architecture for a thick client application launch at scale. Skills β’ 5+ years of experience in application or product security, with a track record of securing desktop and mobile applications. β’ Strong understanding of secure architecture for thick clients, including local storage protection, inter-process communication, JavaScript engines, OS-level security features, and web security standards (CSP, same-origin policy, TLS/HTTPS). β’ Experience with mobile (iOS/Android) and desktop (Windows/macOS/Linux) application security models. β’ Proficiency in GenAI security, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling. β’ Knowledge of OS-level hardening techniques, sandboxing, privilege separation, and secure use of platform APIs. β’ Hands-on experience with secure coding practices in at least one systems language (C++, Rust, Go) and one application language (Kotlin, Swift, C#). β’ Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering for client applications. β’ Experience embedding security into the software development lifecycle (threat modeling, code reviews, secure design patterns). β’ Ability to manage incident response and vulnerability remediation for thick client environments. β’ Strong cross-team communication skills and ability to write clear developer-facing security guidelines. β’ Contributions to open-source client frameworks, SDKs, or application security tools. β’ Prior work with secure local storage, anti-tampering, DRM, or obfuscation in client software. β’ Familiarity with offline-first application security challenges (sync, caching, data persistence). β’ Experience with privacy-preserving client design, including minimizing telemetry and preventing data leakage. β’ Deep understanding of reverse engineering techniques and defenses (e.g., code obfuscation, anti-debugging, integrity checks). β’ Experience leading security architecture for a thick client application launch at scale. β’ Advanced degree (MS/PhD) in Computer Science, Cybersecurity, or related field. Company Overview β’ GenerΓs Tek is an elite IT staffing firm headquartered in Chicago, IL offering long-term, short-term, temporary-to-permanent and direct placement staffing. It was founded in 2015, and is headquartered in Bloomingdale, IL, IL, with a workforce of 51-200 employees. Its website is Apply tot his job