Security Analyst

Posted 7hrs ago

Employment Information

Education
Salary
Experience
Job Type

Report this job

Job expired or something wrong with this job?

Job Description

Security Analyst for Infios focusing on application and AI security in supply chain software solutions. Collaborating with product teams to build robust security measures.

Responsibilities:

  • Scan vulnerabilities using industry-leading tools in applications and infrastructure
  • Conduct and manage DAST, SAST, and software composition analysis (SCA) activities
  • Analyze vulnerability scan results, validate findings, reduce false positives, and prioritize risk
  • Collaborate directly with development teams to assess identified vulnerabilities and deliver precise, actionable remediation recommendations
  • Track vulnerabilities through remediation and verify fixes
  • Act as a trusted AppSec advisor to engineering and product teams
  • Use expertise in OWASP Top 10 and common web application and API attack methods
  • Support secure development practices, threat modeling, and design reviews
  • Contribute to secure coding guidance, patterns, and best practices
  • Leverage AI-powered tools to improve vulnerability analysis, accelerate triage and reporting, and enhance testing efficiency
  • Identify opportunities to automate repetitive security tasks and workflows
  • Lead and support security testing of AI and LLM-powered features across the organization
  • Assess and test for risks outlined in the OWASP Top 10 for LLM Applications
  • Help define and operationalize AI security testing strategies within the SDLC

Requirements:

  • 5+ years of experience in Application Security, Product Security, or Vulnerability Management
  • Experience with cloud platforms like AWS, Azure, and OCI and CSPM tools (WIZ)
  • Strong hands-on experience with DAST and SAST tools, Web Application and API Security Testing
  • Deep understanding of OWASP Top 10 and Secure SDLC principles
  • Excellent documentation and communication skills (both verbal and written)
  • Analytical problem-solving skills and knowledge of application security architecture
  • Experience working directly with software development teams on remediation
  • Solid understanding of modern application architectures (REST APIs, microservices, cloud)
  • Familiarity with OWASP Top 10 for LLMs

Benefits:

  • Health insurance
  • Paid time off
  • Flexible work arrangements
  • Professional development