Principal Mobile Application Penetration Tester
Offer summary

(Summary generated by AI based on the full job description)

The project focuses on penetration testing of iOS and Android mobile applications within a global cybersecurity organization. Requires 3–5 years of experience and knowledge of OWASP MASVS, MSTG, TCP/IP and manual and automated testing tools. Key responsibilities include leading end-to-end tests, evolving methodologies, reporting, and supporting vulnerability management. The offer includes medical care, Multisport card, insurance, and flexible cooperation models.

you can start ASAP

Principal Mobile Application Penetration Tester

Company: Mindbox Sp. z o.o.

from: 7 July 2026
to: 6 August 2026
160 - 210net (+ VAT)/ hr.B2B contract (full-time)
Offer parameters
level:senior
working mode:hybrid
location:Kraków, Lesser Poland
Kraków, Lesser Poland

Requirements

Expected technologies

iOS
Android

Optional technologies

Java
Swift
Objective-C
Kotlin
OAuth2
JWT

Operating system

Windows

Our requirements

  • 3–5 years in penetration testing with a strong focus on mobile application security
  • Hands-on experience testing iOS and Android apps, addressing platform-specific risks
  • Expertise in mobile security plus at least one additional domain (web apps or infrastructure)
  • Strong understanding of vulnerabilities, attack techniques, and security principles
  • Knowledge of TCP/IP fundamentals, network security, and OWASP mobile standards (MASVS, MSTG)
  • Experience with manual and automated testing tools
  • Strong problem-solving, analytical skills, and ability to communicate complex topics clearly
  • Familiarity with scripting or programming

Optional

  • Experience with Corellium platform, SAST/DAST/IAST tools, or secure SDLC
  • Code review experience in Java, Swift, Objective-C, or Kotlin
  • Understanding of OAuth2, JWT, biometrics, and SSL pinning
  • Familiarity with microservices, APIs, and cloud environments
  • Experience in financial or other regulated industries

Your responsibilities

  • Lead end-to-end mobile app penetration tests: scoping, planning, execution, and reporting
  • Deliver high-quality testing outputs with actionable remediation guidance
  • Serve as the escalation point for complex technical challenges and high-impact findings
  • Set and evolve mobile testing methodologies and frameworks across the organization
  • Collaborate with global penetration testing leads to ensure consistency across regions
  • Drive improvements in tooling, automation, and best practices for mobile security
  • Support vulnerability management lifecycle and incident response when needed
  • Stay ahead of emerging mobile attack vectors, tools, and security trends
  • Note: Detailed project information will be shared during the recruitment process.

About the project

We’re looking for a Principal Mobile Application Penetration Tester to join a global cyber security organization and raise the bar on how we test and protect mobile apps. This is a hands-on, principal role where you’ll lead complex mobile security assessments from start to finish, influence standards, and guide stakeholders in navigating an ever-evolving threat landscape.
You’ll work at the core of mobile security—testing iOS and Android applications, innovating on methodologies, and driving excellence across teams worldwide. If you’re passionate about being a trusted security leader, this role is for you!
Sounds like your kind of challenge?

This is how we organize our work

This is how we work

agile

This is how we work on a project

  • Continuous Deployment
  • Continuous Integration
  • test automation
  • testing environments
  • manual tests
Joining this project you’ll become part of Mindbox – a tech-driven company where consulting, engineering, and talent meet to build meaningful digital solutions. We’ll back you up every step of the way, accelerate your development, and ensure your skills make a difference.
Company

What we offer

  • Flexible cooperation model – choose the form that suits you best (B2B, employment contract, etc.).
  • Hybrid work setup – Kraków: 6 days/month on-site.
  • Collaborative team culture – work alongside experienced professionals eager to share knowledge.
  • Continuous development – access to training platforms and growth opportunities.
  • Comprehensive benefits – including Interpolska Health Care, Multisport card, Warta Insurance, and more.
  • High quality equipment – laptop and essential software provided.

Benefits

  • sharing the costs of sports activities
  • private medical care
  • sharing the costs of professional training & courses
  • life insurance

Mindbox Sp. z o.o.

At Mindbox, we connect top IT talents with technology projects for leading enterprises across Europe.
Our focus is on matching your skills with work that matters – projects that use modern tech stacks, solve real business challenges, and give you space to grow. By joining us, you’ll deliver technology solutions for well-known brands, supported by the Mindbox team that values knowledge-sharing and continuous development. We make sure you have the tools, flexibility, and guidance to do your best work – and to keep moving forward in your career.
Principal Mobile Application Penetration Tester
160–210 zł / hr. (B2B)
I apply to:
Mindbox Sp. z o.o.
Kraków, Lesser Poland
Pracodawca zbiera zgłoszenia przez swój system.
Przejdziesz na zewnętrzny formularz.

By clicking "Aplikuj" you confirm that you've read and accepted our Terms and Conditions.


This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Need more information?

  • Make sure the body of the offer doesn’t already include what you’re looking for.
  • Ask a question if you need more information you’re interested in.
  • We’ll forward your question to the employer and aim to provide a response within 3 business days.

Share this offer