NEWPosted 5 hours ago

Job ID: JOB_ID_4641

Role Overview

We are seeking a highly skilled and experienced Mobile Device Vulnerability Management & Configuration Compliance Engineer to join our team. This critical role will be responsible for leading vulnerability scanning, configuration compliance, and automation initiatives for enterprise-issued iOS/iPadOS and Android devices. You will design, validate, and operationalize robust mobile security controls, ensuring seamless integration with existing systems such as MDM, SIEM/SOAR, ITSM, and CMDB. The primary goal is to significantly improve the overall mobile endpoint security posture of the organization.

Key Responsibilities

  • Define the scope, success criteria, and detailed test plans for automated mobile vulnerability scanning solutions.
  • Evaluate and select candidate tools based on coverage, detection accuracy, scalability, privacy considerations, and reporting fidelity.
  • Execute pilot programs to validate vulnerability detection capabilities, including OS versions, CVEs, patch levels, and identification of risky applications.
  • Assess and validate configuration compliance against established security baselines (e.g., encryption, jailbreak/root detection, screen lock policies, OS hardening).
  • Produce comprehensive Proof of Technology (PoT) outcomes, including detailed findings, risk analysis, cost-benefit assessments, architectural decisions, and actionable recommendations.
  • Coordinate closely with InfoSec and Compliance teams to ensure adherence to regulatory requirements, such as NYDFS.
  • Develop, implement, and manage the end-to-end mobile vulnerability lifecycle processes: discovery, assessment, prioritization, remediation, validation, and reporting.
  • Develop and refine severity and risk scoring methodologies specifically tuned for mobile devices.
  • Coordinate remediation efforts with endpoint engineering, mobility administrators, application owners, and operations teams.
  • Validate the effectiveness of remediation actions through scanner re-runs and policy compliance checks.
  • Develop, deploy, and maintain baseline security configurations for both iOS/iPadOS and Android platforms.
  • Translate security requirements into enforceable security policies and configurations.
  • Implement continuous compliance monitoring and drift detection mechanisms, driving automated corrective actions where possible.
  • Build automation scripts and APIs to normalize and enrich vulnerability findings from various sources.
  • Provide support for change management processes and deliver training to operations teams.
  • Deliver comprehensive documentation, including PoT plans, architecture diagrams, operational runbooks, and audit evidence.

Required Skills and Experience

  • Mobile OS Security: In-depth knowledge of iOS/iPadOS and Android security models, patching mechanisms, application ecosystems, and jailbreak/root detection techniques.
  • Vulnerability Management: Strong understanding of the CVE/patch lifecycle, risk prioritization, Service Level Agreements (SLAs), and key performance metrics.
  • Configuration Compliance: Expertise in baseline hardening, policy enforcement, continuous monitoring, and remediation of configuration drift.
  • Mobility Scanning Tools: Hands-on experience with tools such as Qualys Mobile VMDR, Lookout, Workspace ONE + Microsoft Threat Defense, or equivalent.
  • MDM Experience: Proficiency with Mobile Device Management solutions like Microsoft Intune, Omnissa Workspace ONE, Jamf Pro, or equivalent.
  • Enterprise Integration: Experience with API integration, data normalization, and automation using SIEM/SOAR/ITSM platforms.
  • Identity & Access Management: Familiarity with conditional access, device compliance states, SSO, certificates, MFA, and posture-based access controls.
  • Scripting/Automation: Proficiency in scripting languages such as PowerShell or Python, with experience in REST APIs, JSON, OAuth, and secrets management.
  • Documentation: Proven ability to create clear and concise documentation, including PoT plans, architecture diagrams, and operational runbooks.
  • Strong analytical, problem-solving, and stakeholder management skills.
  • Ability to work independently and collaboratively across multifunctional teams.
  • Familiarity with security frameworks such as NIST, CIS Benchmarks, DISA STIG (mobile), and ISO 27001.

Educational Requirements

  • Bachelors degree in Cybersecurity, Information Systems, Computer Science, Engineering, or equivalent practical experience.

Certifications (Relevant / Preferred)

  • CompTIA Security+, CySA+
  • GIAC: GSEC, GMON
  • Qualys / Rapid7 / Tenable certifications (or equivalent)
  • CISSP, CISM, CCSP
  • ITIL Foundation (for ITSM integration)

Experience Level

  • 58+ years in cybersecurity/endpoint security.
  • 24+ years specifically in mobile/UEM security, vulnerability management, or compliance engineering.

Special Requirements

Visa constraints: None specified. Screening steps: None specified. Interview modes: Not specified. Domain restrictions: None specified. Regulatory requirements: NYDFS mentioned.

Compensation & Location

Salary: $70 – $90 per year

Location: Boston, MA

Recruiter / Company – Contact Information

Recruiter / Employer: Infosys

Email: .jain@vcentrixservices.com

Interested in this position?
Apply via Email

Recruiter Notice:
To remove this job posting, please send an email from
.jain@vcentrixservices.com with the subject:

DELETE_JOB_ID_4641

to delete@join-this.com.