IT Security Specialist for BankID Login Review

Avaron AB

Stockholms län, Stockholm

Previous experience is desired

~51 800 kr / per month ->
Fixed monthly, weekly, or hourly salary

Published 2025-03-30 Permanent employment Full time

25 days left
to apply for the job

About the Company

Avaron AB is an IT consulting company that helps businesses and organizations strengthen their digital environment. We strive to always deliver high quality and sustainable solutions. Our focus is on creating security and safety for our clients through our expertise and innovation capabilities.

Job Responsibilities

In this role, you will conduct a comprehensive security review for a client's new login flow in a mobile application. Your assignment includes, among other things:

Identifying potential threats within authentication and API calls, particularly focusing on OpenID Connect/OAuth
Analyzing whether session management can be reused incorrectly
Ensuring that transactions in the login flow are properly protected and do not contain integrity flaws
Reviewing only the code relevant to the login flow and associated APIs
Working with both schematic system diagrams and source code to assess potential vulnerabilities
Conducting tests, partially remotely, using a specially configured laptop from the client and performing an initial setup on-site in Stockholm

You will have the opportunity to use your expertise in penetration testing and security assessments to deliver well-founded recommendations. The role involves close collaboration with the client's technical team.

Qualifications (Must-Haves)

Solid experience in penetration testing and security reviews
In-depth knowledge of OpenID Connect/OAuth
Practical understanding of how authentication flows and APIs should be designed from a security perspective
Ability to work partially on-site in Stockholm for initial configuration

Preferred Qualifications (Nice to Have)

Experience with BankID solutions
Familiarity with managing session reuse and associated risks
Knowledge of best practices for vulnerability assessment in mobile applications

Application

Our positions may be filled before the application deadline, as we handle applications on an ongoing basis. We therefore recommend that you submit your application as soon as possible.

Email your cover letter and CV to jobb@avaron.se and mark the email with:

”IT Security Specialist for BankID Login Review (13032)”.

We look forward to your application!