Team Remotely Inc · 2 days ago

Application Security Analyst

New York, NY

Full-time

Onsite

Entry, Mid Level

$59K/yr - $69K/yr

1+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Staffing and Recruiting

Insider Connection @Team Remotely Inc

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Application Security: Manage the division-level application security program. Manage security posture for existing divisional applications and establish a prioritized backlog of projects to ensure policy compliance.

Stakeholder Management: Work with divisional business, IS&T team members, and technical stakeholders to ensure new projects/applications conform to the application security policy. Act as a Divisional single point of contact for applications security and secure development program.

Threat & Risk Assessment: Assess changes for technical vulnerabilities, and threat models, assess security risk exposure, and identify appropriate controls to bring the risk within tolerance.

Patching Program: Manage Applications security Patching Program. Keep track of all divisional applications' security and their security patching version vs status.

Continuous Improvement: Work closely with all areas of Security to provide continuous improvement of the advice provided from knowledge gained from analyzing and resolving information security incidents.

Compliance & Testing: Work closely with specialists in Security Operations to build operational use cases for detection and response capabilities.

Safety First: Demonstrate 100% commitment to our zero-harm behaviors in support of our drive toward developing a world-class safety culture.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Cloud MigrationApplication SecurityDevSecOps PrinciplesAutomationSecurity Architecture ModelingAzureAWSRisk MethodologySaaS ImplementationsProblem-SolvingCommunicationStakeholder ManagementThreat ModelingRisk AssessmentControl ImplementationAgile DeliveryWaterfall DeliveryCISSPCCSPCISMPCSA CCSK

Required

Understanding of Cloud migration and Application Security development lifecycle and DevSecOps principles, automation, and familiarity with security architecture modeling

Knowledge and experience securing Azure and/or AWS

Knowledge and experience using at least one risk methodology

Security Software as a Service implementations

Strong stakeholder management and communication skills and a proven track record of working with businesses to meet strategic objectives