Application Security Analyst

  • location: Carlstadt, NJ
  • type: Permanent
  • salary: $100,000 per year
easy apply

job description

Application Security Analyst

job summary:
The successful individual will leverage their proficiency in Information Security to...

  • Evaluating application environments to ensure they are being designed and deployed in compliance with InfoSec standards and industry best practices. This includes performing security assessments, conducting risk analysis, reporting security findings and recommending corrective actions for the relevant operational teams.
  • He/or She will work with developers, architects, project leads/managers, business analysts, and others, in determining security requirements for projects and ensures that these requirements are met as part of the software development lifecycle.
  • He/or She will work alongside IT partners such as developers, architects, project leads/managers, business analysts, and act as the "go to" individual for all security questions, concerns, and guidance. Develop and present training material on security-related topics, and develop application security-related development standards & control alongside other governance and architecture teams.
  • The analyst will be granted access to industry leading security tools and among other Infosec members will be responsible for the administration and maintenance.
  • The ideal candidate must be able to work independently and have solid project management skills.
The key responsibilities of the role are:

  • Serve as a Subject Matter Expert (SME) in the field of application security
  • Conducting dynamic & Static code reviews
  • Act to integrate application/software security tools within existing development processes
  • Assist with the planning and execution of application penetration tests
  • Identify and help resolve false positive findings in security assessment results
  • Generate reports on assessment findings and help guide and track remediation tasks
  • Assist with formulation and distribution of security metrics that demonstrate assessment coverage and remediation effectiveness
Required Skills:

  • Solid understanding of secure coding principles (OWASP Top 10)
  • 2-4 years experience with Application Security Tools like IBM AppScan, Metaspolit, WebInspect, Burp, Veracode, Checkmarx, etc.
  • Familiarity with widely used application development tools & languages (ex. .Net, JAVA, XCode, etc.)
  • Strong critical thinking and problem solving skills
  • Excellent written and oral communications skills
  • Ability to understand business needs and commitment to delivering high-quality, prompt, and efficient service to the business
Typical Education and Experience:

  • BS in Computer Science, Information Security, or a related field
  • 2-4 years of past experience in information security, especially in an analyst role
  • Industry Certifications such as CISSP, CISM, CISA, CEH are considered a plus
 
location: Carlstadt, New Jersey
job type: Permanent
work hours: 9 to 5
education: No Degree Required
 
responsibilities:
  • Evaluating application environments to ensure they are being designed and deployed in compliance with InfoSec standards and industry best practices. This includes performing security assessments, conducting risk analysis, reporting security findings and recommending corrective actions for the relevant operational teams.
  • He/or She will work with developers, architects, project leads/managers, business analysts, and others, in determining security requirements for projects and ensures that these requirements are met as part of the software development lifecycle.
  • He/or She will work alongside IT partners such as developers, architects, project leads/managers, business analysts, and act as the "go to" individual for all security questions, concerns, and guidance. Develop and present training material on security-related topics, and develop application security-related development standards & control alongside other governance and architecture teams.
  • The analyst will be granted access to industry leading security tools and among other Infosec members will be responsible for the administration and maintenance.
  • The ideal candidate must be able to work independently and have solid project management skills.
 
qualifications:
The key responsibilities of the role are:

  • Serve as a Subject Matter Expert (SME) in the field of application security
  • Conducting dynamic & Static code reviews
  • Act to integrate application/software security tools within existing development processes
  • Assist with the planning and execution of application penetration tests
  • Identify and help resolve false positive findings in security assessment results
  • Generate reports on assessment findings and help guide and track remediation tasks
  • Assist with formulation and distribution of security metrics that demonstrate assessment coverage and remediation effectiveness
 
skills: Typical Education and Experience:

  • BS in Computer Science, Information Security, or a related field
  • 2-4 years of past experience in information security, especially in an analyst role
  • Industry Certifications such as CISSP, CISM, CISA, CEH are considered a plus

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

easy apply

get jobs in your inbox.

sign up
{{returnMsg}}

related jobs

    Security Analyst

  • location: Newark, NJ
  • job type: Contract
  • salary: $45 - $56 per hour
  • date posted: 12/5/2018