Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

Junior AppSec Security Analyst

J

Jobs for Humanity

Junior AppSec Security Analyst

Jacksonville, FL
Full Time
Paid
Similar Jobs
  • Responsibilities

    Job Description

    POSITION TYPE :

    Full time

    TYPE OF HIRE :

    Experienced (relevant combo of work and education)

    EDUCATION DESIRED :

    Bachelor of Computer Science

    TRAVEL PERCENTAGE :

    5 - 10%

    JOB DESCRIPTION

    Are you curious, motivated, and forward-thinking? At FIS you’ll have the opportunity to work on some of the most challenging and relevant issues in financial services and technology. Our talented people empower us, and we believe in being part of a team that is open, collaborative, entrepreneurial, passionate and above all fun.

    ABOUT THE TEAM: Application Security Group focus heavily on supporting development teams to secure the applications. A key part of the role will be integrating with the development teams and ensuring they fully integrate the Secure Software Development Lifecycle into their development process, with a focus on secure design and coding, threat modelling, static and dynamic code analysis, and developer training. The role will involve working with developers located in multiple other countries. The ability to at times be flexible with working hours to accommodate the hours of the developers across different time zone will also be required.

    WHAT YOU WILL BE DOING:

    The IT Security Analyst Specialist will be responsible for application security across all FIS developed applications. The role covers both existing applications and the design and implementation of new or amended applications solutions.

    MAIN DUTIES AND RESPONSIBILITIES OF THE ROLE :

    • Triage flaws found in SAST and DAST scanner
    • Perform Threat Modeling
    • Perform DAST scans
    • Support dev teams to fix the security vulnerabilities
    • Co-ordinate with the vendors to resolve the issues faced by the SAST tool users.

    WHAT YOU BRING:

    • At least 3 years development experience, ideally in Java or .NET or any other programing language.
    • Knowledge of security technologies (encryption, data protection, design, privilege access, etc.)
    • Strong knowledge of development and application security.
    • Hands-on experience performing application penetration and static and dynamic security assessments with tools such as: Burpsuite, OWASP ZAP, AppScan, WebInspect, Fortify, Veracode, Checkmarx, etc.
    • Knowledge of OWASP Top 10/ SANS Top 25, identify vulnerabilities via manual and automated testing methods and how to effectively remediate vulnerabilities associated.
    • Experience conducting risk assessments and performing threat modeling of applications
     

    ADDED BONUS IF YOU HAVE:

    • Knowledge of penetrating testing methodologies and security functional testing

    • Hands-on experience on SCA scans

    • Experience in security compliance

    WHAT WE OFFER YOU:

    • A multifaceted job with a high degree of responsibility and a broad spectrum of opportunities
    • The chance to work on some of the most challenging, relevant issues in financial services & technology
    • A work environment built on collaboration, flexibility and respect

    .

    PRIVACY STATEMENT

    FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

    EEOC STATEMENT

    FIS is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, genetic information, national origin, disability, veteran status, and other protected characteristics. The EEO is the Law poster is available here supplement document available here

    For positions located in the US, the following conditions apply. If you are made a conditional offer of employment, you will be required to undergo a drug test. ADA Disclaimer: In developing this job description care was taken to include all competencies needed to successfully perform in this position. However, for Americans with Disabilities Act (ADA) purposes, the essential functions of the job may or may not have been described for purposes of ADA reasonable accommodation. All reasonable accommodation requests will be reviewed and evaluated on a case-by-case basis.

    SOURCING MODEL

    Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

    #pridepass