Application Security Advisory Analyst

Job Description:

We are hiring a highly analytical and detail-oriented Application Security Advisory Analyst to assess, monitor, and enhance the security posture of enterprise applications. The ideal candidate will work closely with development, DevOps, and IT teams to identify vulnerabilities, implement secure coding practices, and ensure compliance with security standards.

Key Responsibilities:

Conduct application security assessments using manual and automated tools to identify vulnerabilities

Collaborate with development teams to implement secure coding practices and resolve security flaws

Perform threat modeling, risk assessments, and security reviews of application architectures

Advise stakeholders on mitigation strategies and security best practices throughout the software development lifecycle (SDLC)

Monitor and respond to application-layer security incidents and threats

Develop and enforce security policies, procedures, and documentation

Stay updated on emerging threats, vulnerabilities, and compliance regulations such as OWASP, NIST, and GDPR

Support security awareness and training initiatives for engineering teams

Provide guidance during security tool evaluations, integrations, and audits

Requirements:

Bachelors degree in Cybersecurity, Computer Science, or related field

Experience in application security testing, including static and dynamic analysis tools (e.g., SAST, DAST)

Knowledge of common vulnerabilities such as SQL injection, XSS, CSRF, and authentication flaws

Familiarity with secure SDLC practices and DevSecOps environments

Strong understanding of security frameworks and compliance standards

Excellent communication and analytical skills

Certifications such as CEH, OSCP, CISSP, or CSSLP are a plus