Senior Mobile Security Engineer (SDE III)

About the Team

Navi's Security Engineering team is responsible for safeguarding our financial ecosystem that powers millions of users across lending, payments, insurance, investments, and UPI. We work closely with product, engineering, fraud prevention, and infrastructure teams to ensure the integrity of mobile devices, applications, and transactions.

Given the critical nature of fintech platforms, our security engineers proactively simulate real-world attack scenarios, build advanced detection systems, and strengthen mobile runtime protections. The team focuses heavily on mobile runtime security, device integrity, anti-tampering systems, and adversarial threat modelling.

About the Role

As a Senior Mobile Security Engineer, you will be responsible for strengthening the mobile security posture of our Android and iOS applications. This role requires a deep understanding of both offensive (red team) and defensive (blue team) mobile security techniques.

You will actively analyze how mobile applications and devices can be compromised including rooted/jailbroken devices, emulators, hooking frameworks, runtime manipulation, and reverse engineering and design strong countermeasures using runtime protection, device intelligence, and behavioral detection.

You will collaborate closely with engineering, fraud prevention, and platform teams to continuously improve device risk detection and runtime security.

Key Responsibilities

• Design and implement mobile runtime security controls to protect Android and iOS applications.
• Identify and mitigate threats such as rooted and jailbroken devices, emulators and virtual environments, hooking frameworks (Frida, Xposed, Substrate), runtime tampering, and code injection.
• Develop and improve device integrity detection mechanisms using system signals, kernel indicators, file system checks, hardware signals, and behavioral telemetry.
• Perform red-team style mobile attack simulations to identify weaknesses in application security.
• Build defensive systems to detect and prevent runtime tampering, binary modification, dynamic instrumentation, screen overlay attacks, and OTP/SMS interception techniques.
• Work closely with fraud prevention and backend risk systems to convert device signals into actionable risk controls.
• Conduct mobile application security assessments and penetration testing.
• Collaborate with mobile engineering teams to embed security best practices into the application lifecycle.
• Investigate production security incidents related to device compromise, reverse engineering, or mobile fraud.
• Continuously research new attack vectors and improve detection mechanisms against evolving threats.

Must Haves

• 4+ years of experience designing and building mobile RASP (Runtime Application Self-Protection) capabilities for Android and/or iOS applications.
• Deep understanding of device compromise techniques including rooting, jailbreaking, emulator environments, hooking frameworks, and runtime instrumentation.
• Hands-on experience with tools such as Frida, Objection, Xposed/LSPosed, Burp Suite, JADX, Ghidra, IDA, MobSF or similar tools.
• Experience implementing or working with mobile RASP or mobile threat defense solutions.
• Strong understanding of mobile application reverse engineering techniques.
• Ability to work across both offensive (red) and defensive (blue) security domains.
• Programming experience in Java/Kotlin, Swift/Objective-C, or similar languages.
• Experience in fintech, payments, or banking security environments, with prior experience working with or integrating mobile RASP / mobile threat defense platforms,

About Navi

We are on a mission to make finance simple, accessible and affordable for a billion Indians. Guided by a strong customer-first approach, we are building tech-first solutions that work at scale. Our offerings include a range of financial products and services across Loans, Insurance, Mutual Funds, Digital Gold and UPI.

Founded by Sachin Bansal & Ankit Agarwal in 2018, we are one of India's fastest-growing financial services organisations. But we're just getting started!

Our Culture

At Navi, we're a place where ambition meets opportunity and ideas turn into impact quickly. We empower people with high ownership from the start, encouraging them to solve meaningful problems and build with excellence. Teams here work in an environment that values speed, collaboration and craftsmanship, while celebrating learning, growth and shared wins along the way. Whether you're shaping the future of fintech products or driving innovation behind the scenes, life at Navi means being part of a high-energy, talent-driven workplace where your contributions truly make a difference.

We're guided by our own operating system - The Navi OS - a set of principles that shape how we work and win together. You can explore them at navi.com/our-values to see what drives us every day.

If this feels like you, Navi is the place to grow, thrive and make a real impact.