The API Application Security Analyst will be responsible for ensuring the security of our applications by maintaining and tuning security mitigation tools, investigating security alerts, and identifying vulnerabilities and weaknesses in application security. The role involves working across various levels of application security testing, from infrastructure to source code, to ensure robust defense against cyber threats.
Key Responsibilities:
Maintain and Tune Security Tools:
- Administer and optimize application security mitigation tools, including web application firewalls (WAFs) and API security solutions.
- Ensure tools are configured correctly and operating efficiently to provide maximum protection.
Investigate Security Alerts:
- Monitor, analyze, and respond to application security-related alerts.
- Perform in-depth analysis of security incidents to determine root causes and implement corrective actions.
Identify Security Weaknesses:
- Conduct thorough testing to identify application security weaknesses, including vulnerabilities, insecure coding practices, logic flaws, and other security issues.
- Utilize a variety of testing methodologies and tools to uncover potential threats and risks.
Maintain and Review Security Tools:
- Regularly review and update application security tools to ensure they are effective in detecting and mitigating cyber threats.
- Stay up-to-date with the latest security tools, trends, and technologies.
Application Security Testing:
- Perform comprehensive application security testing across all levels, including infrastructure, application layers, logic flows, interfaces, and source code.
- Develop and implement testing strategies and methodologies to uncover security vulnerabilities and ensure the robustness of applications.
Qualifications and Experience:
- Proven experience in performing application security testing across multiple levels (infrastructure, application, logic flow, interface, and source code).
- Strong understanding of web application firewalls, API security solutions, and other security mitigation tools.
- Ability to investigate and respond to security alerts and incidents effectively.
- Proficiency in identifying application security weaknesses and vulnerabilities through various testing methods.
- Up-to-date knowledge of current security trends, tools, and best practices.
Skills and Competencies:
- Analytical and problem-solving skills with a keen eye for detail.
- Strong communication skills to effectively convey security findings and recommendations.
- Ability to work independently and collaboratively within a team environment.
- Proficiency in using security testing tools and methodologies.
- Knowledge of secure coding practices and common security flaws.
Educational Requirements:
- Bachelor's degree in Computer Science, Information Security, or a related field is preferred.
- Relevant certifications in application security (e.g., CEH, OSCP, CISSP) are a plus.
To apply please click the Apply button or send us your updated profile to [email protected]
EA Licence No.:18S9405 / EA Reg. No.:R1330864
Percept Solutions is undergoing a growth phase and are on the lookout for talent. Applicants are encouraged to follow Percept Solutions on LinkedIn @ https://www.linkedin.com/company/percept-solutions/ to stay up to date on our upcoming roles and events.