Information Security Technology Senior Analyst

About The Position

Requirements

• Bachelor's degree, or foreign equivalent, in Computer Science, Computer Engineering, Cyber Security, Information Security, or a related field.
• One (1) year of experience in the job offered or in a related IT occupation.
• Experience proposing mitigating controls to reduce the attack surface of identified security weaknesses.
• Experience providing specific recommendations to fully remediate and close out identified security gaps.
• Experience working with applications leveraging different technologies including Java/J2EE, Python, HTML, XML, XSL, and JavaScript.
• Experience leveraging HTTP proxy tools including Burp Proxy and OWASP ZAP.
• Experience utilizing dynamic testing scanning tools including AppScan, WebInspect, and Fiddler.

Responsibilities

• Conduct vulnerability assessments on various Citi applications.
• Identify, research, validate, and exploit application security vulnerabilities.
• Use commercial and open-source vulnerability assessment tools.
• Communicate with the application development team through formal security assessment reports.
• Drive remediation by outlining a defense-in-depth approach.
• Provide strategic solutions to developers on effective security controls and countermeasures.

Benefits

• Medical, dental & vision coverage
• 401(k)
• Life, accident, and disability insurance
• Wellness programs
• Paid time off packages including planned time off (vacation), unplanned time off (sick leave), and paid holidays