Information Security Senior Analyst, Application Security

Description:
Job Description:

Overview

The successful candidate will be responsible for identifying vulnerabilities in applications that handle sensitive data. This includes applying a security risk rating and providing guidance on remediation efforts.

Duties and Responsibilities

• Perform static and dynamic application security testing using commercial, open-source, and manual methods.
• Conduct application security risk and compliance reviews to identify and mitigate security risks.
• Promote application security best practices and standards through consultation and participation in the software development lifecycle.

Requirements

• Strong understanding of application security and information security best practices.
• Effective written and oral communication skills.
• Hands-on experience with static and dynamic application security testing tools.
• Ability to learn new skills and adapt to evolving business needs.

Experience and Education

• College degree or equivalent experience in information security with a minimum 5 years of current/recent application security experience.
• Active CISSP or CSSLP certification preferred.
• Foundational experience with host operating systems, networking principles, web application firewalls, and associated security controls.