ICONMA
Our Client, a Commercial Financing company, is looking for an Application Security Analyst for their Remote location.
Responsibilities
Manage new API security intake requests, ensuring proper documentation and risk assessment.
Coordinate with development teams to gather additional technical details for security reviews.
Track and ensure timely responses between security and development teams for remediation and clarifications.
Maintain and optimize application security scanning schedules for APIs, containers, and applications.
Perform and validate DAST (Dynamic Application Security Testing) and SAST (Static Application Security Testing) scans, analyze results, and drive remediation.
Oversee container security assessments, ensuring compliance with organizational standards.
Document findings, create actionable reports, and communicate risks effectively to technical and non-technical stakeholders.
Support knowledge transfer from outgoing consultants and ensure continuity of security processes.
Requirements
Hands-on experience with API security testing and vulnerability management.
Strong knowledge of DAST and SAST tools (e.g., Burp Suite, OWASP ZAP, Veracode, Checkmarx, Fortify).
Familiarity with container security (e.g., Docker, Kubernetes, image scanning tools like Anchore or Trivy).
Proven ability to manage security intake processes and coordinate across multiple development teams.
Solid understanding of secure coding practices, OWASP Top 10, and API-specific security risks.
Excellent communication and stakeholder management skills for cross-team collaboration.
Ability to work independently and hit the ground running in a fast-paced environment.
Experience with CI/CD pipeline integration for security tools.
Knowledge of cloud-native security (AWS, Azure, GCP) and API gateways.
Familiarity with threat modeling and risk assessment methodologies.
Exposure to DevSecOps practices and automation of security testing.
Certifications such as CSSLP, GWAPT, or API Security Specialist.
Why Should You Apply?
Health Benefits
Referral Program
Excellent growth and advancement opportunities
As an equal opportunity employer, ICONMA provides an employment environment that supports and encourages the abilities of all persons without regard to race, color, religion, gender, sexual orientation, gender identity or express, ethnicity, national origin, age, disability status, political affiliation, genetics, marital status, protected veteran status, or any other characteristic protected by federal, state, or local laws.
#J-18808-Ljbffr
Responsibilities
Manage new API security intake requests, ensuring proper documentation and risk assessment.
Coordinate with development teams to gather additional technical details for security reviews.
Track and ensure timely responses between security and development teams for remediation and clarifications.
Maintain and optimize application security scanning schedules for APIs, containers, and applications.
Perform and validate DAST (Dynamic Application Security Testing) and SAST (Static Application Security Testing) scans, analyze results, and drive remediation.
Oversee container security assessments, ensuring compliance with organizational standards.
Document findings, create actionable reports, and communicate risks effectively to technical and non-technical stakeholders.
Support knowledge transfer from outgoing consultants and ensure continuity of security processes.
Requirements
Hands-on experience with API security testing and vulnerability management.
Strong knowledge of DAST and SAST tools (e.g., Burp Suite, OWASP ZAP, Veracode, Checkmarx, Fortify).
Familiarity with container security (e.g., Docker, Kubernetes, image scanning tools like Anchore or Trivy).
Proven ability to manage security intake processes and coordinate across multiple development teams.
Solid understanding of secure coding practices, OWASP Top 10, and API-specific security risks.
Excellent communication and stakeholder management skills for cross-team collaboration.
Ability to work independently and hit the ground running in a fast-paced environment.
Experience with CI/CD pipeline integration for security tools.
Knowledge of cloud-native security (AWS, Azure, GCP) and API gateways.
Familiarity with threat modeling and risk assessment methodologies.
Exposure to DevSecOps practices and automation of security testing.
Certifications such as CSSLP, GWAPT, or API Security Specialist.
Why Should You Apply?
Health Benefits
Referral Program
Excellent growth and advancement opportunities
As an equal opportunity employer, ICONMA provides an employment environment that supports and encourages the abilities of all persons without regard to race, color, religion, gender, sexual orientation, gender identity or express, ethnicity, national origin, age, disability status, political affiliation, genetics, marital status, protected veteran status, or any other characteristic protected by federal, state, or local laws.
#J-18808-Ljbffr