Application Vulnerability Assessments Analyst (VP)

Application Vulnerability Assessments Analyst (VP)

22 Jun 2024
Texas, Irving, 75039 Irving USA

Application Vulnerability Assessments Analyst (VP)

Vacancy expired!

The Agile Application Vulnerability Assessments Analyst provides application security services to Citi businesses early in the Software Development Life Cycle (SDLC). Candidate needs to work closely with development teams on latest tools and processes to integrate security testing.

Responsibilities:
Manage and execute security assessments for multiple agile projects simultaneously and ensure project timelines are met.
Perform application security testing on various types of applications such as web, APIs (REST/SOAP/Micro services), thick clients, mobile, etc., inclusive of the supporting infrastructure components.
Utilize Static Application Security Testing (SAST), Interactive Application Security Testing (IAST), and Component Vulnerability Management (CVM) tools such as Checkmarx, Contrast, and Black Duck to uncover additional vulnerabilities during Dynamic Application Security Testing (DAST).
Analyze SAST, IAST, CVM, and DAST tool results to eliminate false positives.
Leverage application artifacts such as business requirements, user stories, design documents, architecture documents, and others to understand the scope of the agile review. Create targeted security user stories and misuse cases to execute during the agile review by performing threat modeling.
Collaborate with application teams to ensure that any identified security vulnerabilities are remediated in a timely manner.
Have the ability to read and understand application source code in order to provide specific recommendations for the identified vulnerabilities to application teams.
Have strong technical writing and presentation skills to report and articulate security vulnerabilities to technical and non-technical audiences.

Qualifications:
6+ years of experience in security testing performing:
o Application penetration testing including Web, Desktop, API, Mobile
o Source code review preferably in Java or .NET programming languages
o Threat modeling
A good understanding of enterprise application development using programming languages such as Java or .NET.
Working experience in agile environments as part of the DevOps team with a very good understanding of the CI/CD pipeline.
Good understanding of the SAST Tools such as Fortify, Checkmarx and DAST tools such as Burp, AppScan.
Excellent communication skills (written and verbal) and the ability to communicate with all levels of staff and management are also essential.
Must have a strong understanding of ethical hacking methodologies, frameworks, and industry resources, e.g. OWASP, OSSTMM, NIST publications, SANS/CWE, among others.

Education:
Bachelors degree (in Computer Science, Information Systems Management, or related field), or equivalent work experience.
Industry-accredited security certifications will be required. The candidate must have or be willing to obtain certifications from the following industry recognized organizations: Offensive Security, GIAC, ISC2, EC-Council, ISACA, etc.
-
Job Family Group:
Technology-
Job Family:
Information Security
Time Type:
Full time
Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.
View the EEO Policy Statement.
View the Pay Transparency Posting

Related jobs

  • Bring your heart to CVS Health. Every one of us at CVS Health shares a single, clear purpose: Bringing our heart to every moment of your health. This purpose guides our commitment to deliver enhanced human-centric health care for a rapidly changing world. Anchored in our brand — with heart at its center — our purpose sends a personal message that how we deliver our services is just as important as what we deliver. Our Heart At Work Behaviors™ support this purpose. We want everyone who works at CVS Health to feel empowered by the role they play in transforming our culture and accelerating our ability to innovate and deliver solutions to make health care more personal, convenient and affordable.

  • The Development Business Analyst is responsible for being the liaison between stakeholders and works to identify gaps in system functionality for new and existing clients, providing their findings as problem/solution specifications to the Custom Report Development team to create one-off client solutions. They will also be responsible for communicating those solutions to the product group for potential enhancements to the platform.

  • Career Area:

  • Career Area:

  • Overview Who we are Imagine working in a place where continuous improvement and innovation is celebrated and rewarded; where fast-paced, high-impact teams come together to positively drive results for one of the largest & most iconic brands in the world. As the only rapidly growing retailer, you may know us as your friendly neighborhood store. You probably know our familiar name, have seen our pervasive logo, and have tried our highly sought-after products, such as Slurpee® and Big Bite®. “Brain Freeze” is a 7-Eleven registered trademark for our 53-year old Slurpee® and with over 77,000 stores globally (more than any other retailer or food service provider), we sell over 14 million a month. But there’s a lot more to our story and much more left to be written. We are transforming our business, ensuring we are customer obsessed and digitally enabled to seamlessly link our brick and mortar stores with digital products and services. At 7-Eleven the entrepreneurial spirit is in our DNA and has been ever since our inception 90+ years ago. It’s what drove us to invent the convenience industry in 1927 by envisioning how a simple ice dock could provide household staples such as milk and eggs to better serve the needs of our customers. Today we are redefining convenience and the customer experience in big wayswe are fundamentally changing our culture and we want talented, innovative, customer obsessed, and entrepreneurial people like you to come make history with us. How we lead At 7-Eleven we are guided by our Leadership Principles. Be Customer Obsessed Be Courageous with Your Point of View Challenge the Status Quo Act Like an Entrepreneur Have an “It Can Be Done” Attitude Do the Right Thing Be Accountable Each principle has a defined set of behaviors which help guide the 7-Eleven team to Serve Customers and Support Stores. About This Opportunity Responsibilities This role is responsible for the timely preparation, filing, and payment of corporate sales, use, meals, and other transaction tax returns on a semi-monthly, monthly, quarterly and/or annual basis including associated general ledger account reconciliations. Includes research and resolution of tax issues resulting from tax jurisdiction notices, accounting customer service inquiries, and/or inquiries from 7-Eleven internal departments. Timely prepare, file, and pay corporate sales, use, meals, and other transaction tax returns and reconcile general ledger accounts for assigned jurisdictions adhering to strict deadlines. Ensure Account reconciliation items are fully documented and resolved in a timely manner. Research and stay current on changes to tax laws and other compliance related requirements for assigned jurisdictions. Resolve tax related issues resulting from jurisdictional notices, accounting customer service inquiries, and/or inquiries from Company personnel (operations, legal, etc). Perform required maintenance and enhancements to tax software applications including configuration and required periodic updates of OneSource sales tax compliance solution. Assist with special projects and implementation of process improvement initiatives as required in alignment with Department and Company initiatives. Qualifications EDUCATION & EXPERIENCE: Bachelors/4 Year degree 3+ years of multi-state work experience CPA/CPA eligible and/or CMI preferred SPECIFIC KNOWLEDGE & SKILLS Sales tax compliance, general ledger account reconciliation. Strong computer skills - OneSource (preferred) or other sales tax compliance software, MS Office (Excel, etc.) Alteryx & Power BI a plus. Strong analytical, critical thinking, and problem-solving skills with a desire to execute. Effective communicator.

  • Description About the Role

  • Bring your heart to CVS Health. Every one of us at CVS Health shares a single, clear purpose: Bringing our heart to every moment of your health. This purpose guides our commitment to deliver enhanced human-centric health care for a rapidly changing world. Anchored in our brand — with heart at its center — our purpose sends a personal message that how we deliver our services is just as important as what we deliver. Our Heart At Work Behaviors™ support this purpose. We want everyone who works at CVS Health to feel empowered by the role they play in transforming our culture and accelerating our ability to innovate and deliver solutions to make health care more personal, convenient and affordable.

Job Details

  • ID
    JC15729798
  • State
  • City
  • Job type
    Permanent
  • Salary
    N/A
  • Hiring Company
    Citi
  • Date
    2021-06-21
  • Deadline
    2021-08-20
  • Category

Jocancy Online Job Portal by jobSearchi.