Mobile & SAP Security Review

@farooqtahir2013

Having spent over a decade in the information technology and services industry, my skillset aligns perfectly with your requirement. I have a clear understanding of network security and have worked with various renowned vendors. My expertise extends to areas like wireless, VOIP, virtualization, cloud computing, and system administration which give me a comprehensive understanding of how different systems interact within an infrastructure. In the realm of security, I am well-versed with platform-specific assessments as well as network shielding. Mobile security assessments encompassing static and dynamic testing (SAST/DAST) are not new to me. In fact, I have analytically dissected mobile codebases for weaknesses mentioned in OWASP MASVS standards. Considering these facts,I believe that my solid expertise in network security aligned with my commitment for seamless project delivery,great communication skills,coupled with my experience conducting similar types of assessments qualifies me to provide you the level of service you're seeking.I am keen on starting this project soon to ensure top-notch security measures for your organisation's applications. Looking forward to discussing the scope and timeline with you. Let's get in touch!

@harixhere

Hi, I have heard you are looking for seasoned application-security professional. I’m an application-security specialist with hands-on experience securing customer-facing mobile apps (iOS & Android) and complex enterprise backends, including SAP landscapes. Recently, I’ve led end-to-end mobile SAST/DAST engagements aligned with OWASP MASVS, uncovering issues such as insecure data storage, weak auth flows, token misuse, improper API authorization, and certificate-pinning gaps. My approach combines source-code review, runtime testing, API abuse scenarios, and real-world CVE mapping—not just checklist scanning. On the SAP side, I’ve performed deep reviews of roles, authorizations, RFC/API exposure, OAuth/SAML flows, and integration security, focusing on least-privilege enforcement, privilege escalation paths, and misconfigured trust relationships. I’m comfortable working across SAP, mobile, and middleware layers to validate end-to-end identity and access flows. You’ll receive two clear deliverables: an executive-level risk summary for leadership and a developer-focused report with reproducible PoCs, severity ratings, and actionable remediation guidance. I also actively collaborate with SOC, DevOps, and audit teams to retest fixes and formally close findings—no loose ends. Once scope, access, and timelines are confirmed, I can start immediately and drive this engagement to a clean, verifiable re-test with all critical and high-risk issues resolved.

@Android69

Hello, I’m confident in delivering a comprehensive security assessment for your mobile apps and SAP landscape as outlined. With many years of experience in mobile SAST/DAST and SAP security evaluations, I’ve conducted thorough reviews aligned with OWASP MASVS, CVE trends, and SAP best practices, delivering actionable findings and risk mitigation strategies. Clear and audience-specific reporting, including management summaries and developer-focused remediation guidance, has been a key aspect of my work. I can start immediately and ensure precise, high-quality results tailored to your objectives.

@Venkatesan03

Hi There, I have 6 plus years of experience in application security across mobile, web, and enterprise platforms. I lead full scope security assessments to identify real world vulnerabilities, validate existing controls, and measure actual risk. My work aligns with OWASP MASVS, OWASP Top 10, NIST SP 800 115, and current CVE trends. For this engagement, I will conduct static and dynamic testing of both mobile codebases and perform a deep technical review of your SAP landscape. This includes SAP roles and authorizations, token handling, exposed APIs, and identity integrations to confirm least privilege and correct trust boundaries. I will also review network and configuration controls such as encryption in transit, logging coverage, container and runtime settings, and integration points between mobile apps and SAP services. Testing combines manual validation with targeted automation to focus on exploitable impact. You will receive two clear reports. One for management with risk summaries and business impact. One for developers with detailed findings, severity ratings, PoC evidence, and precise remediation steps. I work closely with SOC, DevOps, and audit teams during remediation and re testing to ensure critical and high risk issues are fully closed. I am comfortable working with shared source code, test credentials, and architecture diagrams once scope and timeline are confirmed. Thanks, Venkatesan

@Petadot

Hello, We have experienced Application Security professionals with strong expertise in mobile app SAST/DAST for iOS and Android and SAP security assessments. We have conducted in-depth testing aligned with OWASP MASVS, OWASP Top 10, and CVE trends, covering authentication, authorization, APIs, encryption, and secure configurations. Our SAP reviews include roles, authorizations, tokens, integrations, and least-privilege validation, along with network and configuration hardening checks. We provide clear executive and technical reports, PoC screenshots, remediation guidance, and perform re-testing to ensure closure of all critical and high-risk issues. We are comfortable working with source code, test credentials, and architecture diagrams, and collaborating with SOC and DevOps teams. Looking forward to discussing scope and timelines. Best regards, Petdaot Team

@AashuPathak231

Having spent significant time in the software development and testing space, I believe my skill set aligns perfectly with your unique requirements. With a core proficiency in both functional and automation testing of web and mobile applications, I am well-versed in the demands of security assessments like the one you need to conduct. Moreover, my extensive experience in test planning, execution suite creation, and issue analysis has honed my ability to dive deep into complex systems like your SAP landscape and authentically assess them for weaknesses. My work is thorough and meticulous, ensuring no stone is left unturned when it comes to identifying risk points or potential security lapses. A noteworthy feather in my cap is my proficiency with OWASP MASVS and understanding of common CVE trends which will allow me to effectively apply static and dynamic testing techniques to your two mobile codebases. Communication being another strength of mine, I can craft audience-specific reports that will be clear yet comprehensive; precise enough for developers to understand all findings clearly and remove them meticulously yet strategic enough for higher management to grasp the essence. In addition to this, I am comfortable working collaboratively with various teams such as SOC, DevOps, and internal audit for iterative follow up and final resolution of issues.