GCyber is hiring a Senior Application Security Analyst, for high profile government contract. As a Senior Application Security Analyst, you will,
- Identify unsecure transactions between components, risky management, and porous defenses as well as compliance with existing federal or customer-specific policy and regulations.
- Work with the Customer to develop a secure code policy that ensures the health, security, and compliance of the application portfolio and for leading the establishment of a plan for automated code analysis that incorporates security code scanning throughout the development lifecycle
- Apply your expertise in application security to perform application security testing on portfolio of cloud applications (e.g., static / dynamic)
- Evaluate existing application security policies and toolsets
- Provide recommendations to improve efficiency through simplified processes and increased automation.
- Work with the Cloud Architect and enterprise applications team to build automated code analysis and testing into the CI/CD pipeline.
- Review code repository for vulnerabilities and provide impact to the organization with solutions where possible
- Conduct risk evaluations on open-source software and provide impact from risks
- Work with software developers to address high risk findings and provide recommended solutions
Minimum Qualifications and Experience:
- Active TS/SCI clearance
- BA/BS Degree in Information Technology, Cybersecurity, or a related field (6 years additional experience may be substituted for a degree)
- 7+ years of experience including hands on knowledge and experience performing application security assessments.
- DoD 8570 IAT II Certification (Security+, CySA+, CCNA-Security, CND, GICSP, GSEC, SSCP)
- Excellent verbal and written communication skills.
- Experience drafting and/or supporting the development of cybersecurity policies in Federal Government environments.
- Proactive and solutions-oriented, willing to take initiative to recommend and collaborate across functional teams execute improvements
GCyber is an Equal Opportunity Employer. This means you don't have to worry about whether your application process will be fair. We consider all applicants without regard to race, color, religion, age, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, veteran status, or disability. For future job notifications please follow GCyber on LinkedIn.