Application Security Analyst I - Hybrid Position
Job Description
Application Security Analyst I - Hybrid Position
Location: Grapevine, TX
Job Details
The role of the Application Security Analyst is to work closely with product design and development staff to build security into web applications. As an analyst, you will be responsible for maintaining secure development standards, performing penetration tests and documenting remediation steps for developed applications, participating in hands-on training with development staff, and maintaining products and internally developed applications used by the application security team.
RESPONSIBILITIES
Understand how to identify, exploit, and remediate common application vulnerabilities through use of tools and code review
Use penetration testing skills, tools, and methodology to test new applications and services
Enforce secure development standards and requirements
Contribute to application security development projects and discussions as needed
Utilize SAST/DAST and other products to identify security vulnerabilities
Develop and participate in security focused training for the development team
Perform research on new security trends, tools, and techniques to improve existing processes
Prioritize and track assigned security issues
Maintain a professional working relationship with other departments through clear communication
Help new team members acclimate to job role and responsibilities
Ability to work flexible hours, including weekends and evenings if needed
Availability to respond to emergency situations as required
Perform additional duties and assignments as requested
Education:
Bachelors Degree Required
High School graduate required
Required Experience:
Passionate about information security
1+ years of development experience
Strong knowledge of web application vulnerabilities, exploits, and remediation techniques
Excellent communication skills
Familiar with dynamic and static testing tools and techniques
Familiar with secure coding principles and architecture
Ability to work as part of a larger team to find solutions
Preferred Experience:
3+ years of secure development experience
Strong knowledge of secure development and secure architecture
CSSLP, CISSP, GWAPT, CEH, or other applicable certifications