Head of Application Security

We are looking for a Head of Application Security to lead our Application Security Team; which provides intelligence on hacking of M-KOPA devices that in turn helps us strengthen and expand the digital and financial inclusion of our customers.

As the Head of Department, you will primarily be leading your team in doing vulnerability testing of M-KOPA mobiles, IoT and automotive devices.  Conducting hardware hacking and red teaming exercises; particularly against mobile phones and Azure cloud infrastructure and leading internal penetration testing and red teaming engagements against Azure cloud applications and Windows environments.

Overview

This role would involve conducting in-depth hardware penetration testing / research, particularly against Android mobiles and embedded systems

Additionally, you would be leading the identification and discovery of hardware zero-day vulnerabilities in a range of mobile devices, applications, and the underlying kernels through hardware fuzzing, software fuzzing, and low-level reverse engineering.

Expertise

Our expectation is that you have a leadership background leading a security team and having senior level experience doing penetration testing of Android applications, IoT devices and mobile phones, with a love for leading hardware hacking teams and performing low level vulnerability research

Additionally, if you regularly develop your own tools, e.g., fuzzers and decompilers, written in Java, C or Python and want to develop an internal penetration testing team, a robust red team simulation capability, and cutting-edge vulnerability research lab then this might just be the role for you.

We are particularly interested in a background / experience conducting hardware hacking and red teaming exercises. Particularly against mobile phones and Azure cloud infrastructure

Why M-KOPA

We are a diverse and inclusive company that empowers our people to own their careers through diverse development programs, coaching partnerships, and on-the-job training. We support individual journeys with family-friendly policies, prioritize well-being, and embrace flexibility.

This role is fully remote, within the following time zone (UTC -1 / UTC+3). Our engineers work remotely from locations such as the UK, Europe and Africa. You will be reporting to the Director of Security and working with a diverse team from across the globe.

If the above is of interest to you, please apply and join us in shaping the future of M-KOPA as we grow together. Explore more at m-kopa.com.

Recognized twice by the Financial Times as one Africa's fastest growing company (2022 and 2023) and by TIME100 Most influential companies in the world 2023 , we've served over 3 million customers, unlocking $1 billion in cumulative credit for the unbanked across Africa.