Application Security Analyst

About us:

Accenture Cyber Fusion Center in Prague is unique group of more than 250+ people passionate about Information Security. We are looking for enthusiastic individual with a foundation in security, eager to learn and grow in the space of Information Security as Application Security Delivery Analyst.

Role Summary:

As our next Security Analyst, you will operate a Threat Exposure Management program, which may involve vulnerability scans on various technologies and platforms, care for timely and accurate analysis, reporting, support technical threat and vulnerability assessments, create customized vulnerability notifications/tickets and perform other advisory tasks to our clients. Further, you will support vulnerability/asset owners or engineering teams in remediation and mitigation activities and support in processes such as false positives investigation and exceptions handling.

Essential requirements:

We expect you to have a genuine interest in securing our clients’ systems and networks from attacks. More specifically, we are looking for:

• Experience with application development in variety of programming and scripting languages (e.g., Java, Python, .NET).
• Practical experience with application vulnerability scanning techniques, tools and automation (e.g., SAST, DAST, SCA, IaC).
• Knowledge of cyber security principles, common application vulnerabilities and weaknesses, experience with infrastructure and cloud security.
• Efficient communication skills, both spoken and written English, and ability to create and deliver reports in written and verbal forms (presentations).
• Willingness to learn and grow.

Nice to have skills:

• Proficient in Linux administration.
• Expert programming/scripting skills (e.g., Java, JavaScript, Python, .NET).
• Experience with setup and security of cloud (e.g., Azure, AWS, GCP).
• Hands-on design, development, and deployment of custom unified reporting solutions.
• Relevant IT security certifications (e.g., OSCP, CISSP, CSSLP, CompTIA Sec+, GSEC).
• Knowledge of security standards and regulations (e.g., ISO 27001, SOX, PCI, NIST).
• Genuine passion for self-education and keeping up with the industry.

We offer:

• Opportunity to work on complex projects for some of the biggest companies in the world.
• Chance to become a key member of delivery teams within managed security services.
• Strong potential for growth and acceptance of added responsibilities.
• Work in well-established international company with clear career growth possibilities.
• Trainings, self-development and certification programs.