[Remote] Sr. Application/Product Security Engineer | W2 Contract

Note: The job is a remote job and is open to candidates in USA. Infojini Inc is seeking a Sr. Application/Product Security Engineer to enhance the security of their applications. The role involves securing both desktop and mobile applications, managing incident responses, and embedding security into the software development lifecycle.

Responsibilities

• 5+ years of experience in application or product security, with a track record of securing desktop and mobile applications.
• Strong understanding of secure architecture for thick clients, including local storage protection, inter-process communication, JavaScript engines, OS-level security features, and web security standards (CSP, same-origin policy, TLS/HTTPS).
• Experience with mobile (iOS/Android) and desktop (Windows/macOS/Linux) application security models.
• Proficiency in GenAI security, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling.
• Knowledge of OS-level hardening techniques, sandboxing, privilege separation, and secure use of platform APIs.
• Hands-on experience with secure coding practices in at least one systems language (C++, Rust, Go) and one application language (Kotlin, Swift, C#).
• Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering for client applications.
• Experience embedding security into the software development lifecycle (threat modeling, code reviews, secure design patterns).
• Ability to manage incident response and vulnerability remediation for thick client environments.
• Strong cross-team communication skills and ability to write clear developer-facing security guidelines.

Skills

• 5+ years of experience in application or product security, with a track record of securing desktop and mobile applications.
• Strong understanding of secure architecture for thick clients, including local storage protection, inter-process communication, JavaScript engines, OS-level security features, and web security standards (CSP, same-origin policy, TLS/HTTPS).
• Experience with mobile (iOS/Android) and desktop (Windows/macOS/Linux) application security models.
• Proficiency in GenAI security, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling.
• Knowledge of OS-level hardening techniques, sandboxing, privilege separation, and secure use of platform APIs.
• Hands-on experience with secure coding practices in at least one systems language (C++, Rust, Go) and one application language (Kotlin, Swift, C#).
• Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering for client applications.
• Experience embedding security into the software development lifecycle (threat modeling, code reviews, secure design patterns).
• Ability to manage incident response and vulnerability remediation for thick client environments.
• Strong cross-team communication skills and ability to write clear developer-facing security guidelines.
• Contributions to open-source client frameworks, SDKs, or application security tools.
• Prior work with secure local storage, anti-tampering, DRM, or obfuscation in client software.
• Familiarity with offline-first application security challenges (sync, caching, data persistence).
• Experience with privacy-preserving client design, including minimizing telemetry and preventing data leakage.
• Deep understanding of reverse engineering techniques and defenses (e.g., code obfuscation, anti-debugging, integrity checks).
• Experience leading security architecture for a thick client application launch at scale.
• Advanced degree (MS/PhD) in Computer Science, Cybersecurity, or related field.

Company Overview

• Infojini Inc. delivers innovative IT Services and Solutions to empower startups, Fortune 500 companies, and global enterprises. It was founded in 2006, and is headquartered in Columbia, Maryland, USA, with a workforce of 501-1000 employees. Its website is http://www.infojiniconsulting.com/.

Company H1B Sponsorship

• Infojini Inc has a track record of offering H1B sponsorships, with 5 in 2025, 12 in 2024, 11 in 2023, 5 in 2022, 10 in 2021, 21 in 2020. Please note that this does not guarantee sponsorship for this specific role.

Apply tot his job Apply To this Job