Mobile Device Vulnerability Management & Configuration Compliance Engineer

Hiring: Mobile Device Vulnerability Management & Configuration Compliance Engineer

Work Location: Springfield, Boston, or New York/NJ (Onsite)
Duration: 12 Months Contract
Experience Required: 5–8+ Years
Domain: Cyber Security – Application Security

We are seeking a skilled Mobile Device Vulnerability Management & Configuration Compliance Engineer to lead the design and implementation of enterprise mobile security solutions. This role focuses on vulnerability scanning, compliance enforcement, and integration with enterprise security ecosystems.

Key Skills Required:

Strong understanding of iOS/iPadOS and Android security models
Experience in vulnerability management (CVE lifecycle, risk prioritization, remediation)
Hands-on experience with mobile security tools (Qualys, Lookout, Workspace ONE, Microsoft Defender or equivalent)
Experience with MDM tools (Microsoft Intune, Workspace ONE, Jamf Pro)
Knowledge of configuration compliance, baseline hardening, and policy enforcement
Experience with scripting (PowerShell/Python) and API integrations
Familiarity with SIEM/SOAR/ITSM tools (Splunk, Sentinel, QRadar, ServiceNow)

Key Responsibilities:

Lead proof-of-technology (PoT) activities including tool evaluation and pilot execution
Design and implement automated mobile vulnerability scanning solutions
Establish mobile vulnerability management lifecycle (discovery, assessment, remediation, validation)
Develop and enforce security configurations for mobile devices
Integrate mobile security tools with MDM, SIEM, ITSM, and CMDB platforms
Build automation workflows for compliance monitoring and remediation
Collaborate with InfoSec, Compliance, and Engineering teams for secure implementations
Deliver reporting, risk analysis, and continuous improvement in security posture

Additional Details:

Visa-independent candidates only
Interview Process: Minimum 2 rounds (Virtual)
Bachelor’s degree in Cybersecurity, Computer Science, or related field preferred
Relevant certifications such as Security+, CySA+, CISSP, or equivalent are a plus