APPLICATION SECURITY LEAD ANALYST

Description

Responsibilities:


* Conduct comprehensive security assessments of applications to identify vulnerabilities and weaknesses.


* Perform penetration testing, code reviews, and vulnerability scanning to ensure the security of web and mobile applications.


* Collaborate with development teams to provide guidance on secure coding practices and assist in the remediation of identified security issues.


* Develop and maintain security standards, policies, and procedures related to application security.


* Stay current with the latest security trends, threats, and vulnerabilities affecting application security.


* Participate in incident response and security incident investigations related to application security.


* Utilize and manage security tools such as Snyk, OWASP ZAP, and custom php tools

Qualifications:


* Bachelor's degree in Computer Science, Information Security, or related field or 5 years of cyber security experience.


* 2 years of Azure (or AWS) security experience, identity and access, applications, and networking


* Knowledge of Azure functions a plus


* Microsoft Power Platform experience, Power App development experience a plus


* Knowledge of WAF solutions such as Cloudflare, Akamai, etc.


* Familiarity with security assessment tools such as Snyk, OWASP ZAP, etc.


* Familiarity with programming/scripting skills in languages such as php, Python, Java, or similar.


* Knowledge of application security assessments, vulnerability testing, and secure code reviews.


* Knowledge of web application security vulnerabilities and common attack vectors (e.g., OWASP Top 10).


* Familiarity with programming/scripting skills in languages like Java, Python, Ruby, or similar.


* Knowledge of the roles, processes, and tools to enable a high-performing DevOps practice.


* Relevant certifications such as Azure Security, CISSP, CEH, CompTIA Security , are a plus.


* Excellent problem-solving and analytical skills, along with effective communication and teamwork abilities.


* Knowledge of Atlassian tools such as Jira and Confluence.


* Knowledge of DNS and IP management

Qualifications:


* Bachelor's degree in Computer Science, Information Security, or related field or 5 years of cyber security experience.


* 2 years of Azure (or AWS) security experience, identity and access, applications, and networking


* Knowledge of Azure functions a plus


* Microsoft Power Platform experience, Power App development experience a plus


* Knowledge of WAF solutions such as Cloudflare, Akamai, etc.


* Familiarity with security assessment tools such as Snyk, OWASP ZAP, etc.


* Familiarity with programming/scripting skills in languages such as php, Python, Java, or similar.


* Knowledge of application security assessments, vulnerability testing, and secure code reviews.


* Knowledge of web application security vulnerabilities and common ...