Description

Job Summary:

•          The Application Security Analyst will embed security into every phase of the software development lifecycle for our client.

•          This role focuses on threat modelling, vulnerability assessments, SAST/DAST scanning, CI/CD security integration, and compliance with major security frameworks while using industry-leading security tools.

Required Qualifications:

•          8+ years of experience in Application Security & Industry Standards (OWASP, NIST)

•          8+ years of experience in Secured Software Development Life Cycle (SSDLC)

•          8+ years of experience in Threat Modelling & Risk Assessments

•          5+ years of experience in Application Scanning for Vulnerabilities (SAST, DAST)

•          8+ years of experience in Integration of Security in CI/CD Pipeline, DevOps, DevSecOps

•          8+ years of experience in Security Frameworks (NIST, ISO 27001, PCI-DSS, SOC 2, HIPAA, GDPR, FedRAMP)

•          8+ years of experience in Vulnerability Management & Penetration Testing

•          8+ years of experience in Incident Response & Security Operations

•          8+ years with Security Tools: VERACODE, IBM Appscan, SD Elements, Burp Suite

Preferred Skills:

•          Experience with container security (Docker, Kubernetes security scanning)

•          Knowledge of infrastructure as code security (Terraform, CloudFormation)

•          Familiarity with cloud security posture management (CSPM) tools

•          Certifications such as CISSP, CSSLP, CEH, or GWAPT   Skills: Security Analyst

Key Skills

Education

Any Graduate