QUALIFICATIONS
- 2+ years of experience in a similar information security role
- Understanding of DevSecOps principles, integrating security into CI/CD pipelines & Familiarity with Policy as Code
- Experience with security concepts, technologies and tooling, e.g. vulnerability management tools, SCA, SAST, DAST, RASP, IAM
- Experience of conducting risk assessments, threat modeling and information security reviews
- Excellent problem solving, organizational skills, and attention to detail
- Strong written and verbal communication
WHO YOU'LL WORK WITH
The Product Security team is looking for a Security Analyst to help in reviewing secure development practices within a fast-paced, agile environment.
Sitting within the CyberSecurity Services area, you will establish security requirements & help Security managers in driving adoption strategies, perform threat modeling, risk assessments, and conduct secure architecture reviews. By following a shift-left approach, you will work closely with security engineering teams to integrate security early in the development process. The ideal candidate is a security expert aspirant who can effectively collaborate with stakeholders to enhance the overall security posture of our products.
WHAT YOU'LL DO
As a Security Analyst you will be responsible for conducting Security Assessments on new or existing products and architecture by reviewing security questionnaires.
You will perform threat modeling & security assessments for products, analyze security issues and coordinate triage, tracking and remediation, provide consultation and educate developers in cyber security, and partner with security engineering, product teams and SRE to integrate secure development practices in software development.
