Global Junior Security Product Analyst
Image Icon Colombia · Colombia
Category IT & Security
Requisiton 1625
Full time

What We’re Looking for ⬇️

Why TP?

We are experts in global digital business services in 100 countries with nearly 500,000 Teleperformers around the world! Great Place To Work® has certified us as one of the best places to work in Colombia and the world. We don't stop innovating and we always go beyond.

Make a difference with the TOP Team!

What you’ll do as a Global Junior Security Product Analyst:

  • Recommend security requirements controls for applications.
  • Use hypothetical scenarios, systems diagrams and testing to bring recommendations to secure systems and data: Threat modeling.
  • Work with developers to refine security checkpoints in the SDLC that are based on OWASP TOP 10 and other industry-accepted doctrine such as NIST SP 800-115 and/or ISO security standards.
  • Use automated DAST and SAST tools to perform source code security analyses to identify vulnerabilities and attack vectors in web, mobile, desktop applications and API, as well as utilize hacking and pen-testing techniques to target Web, Mobile, Desktop apps, infrastructure, and API test their security.
  • Write, review, and communicate reports of security testing to different areas of the organization.
  • Work towards security maturity of SDLC.
  • Manage and conduct incident analysis to remediate unidentified vulnerabilities and find solution with other areas team members.
  • Have knowledge of the DevSecOps culture and principles.
  • Develop secure coding standards that are based on industry-accepted best practices such as OWASP Guide, SANS CWE Top 25, or CERT Secure Coding to address common coding vulnerabilities.
  • Automate security controls and development pipelines with security steps.
  • Participate in the construction of a “security culture” within the company by supporting the various teams and customers in the implementation of good security practices.

This is what you need to be a part of the TOP Team:

  • An English level between 80% and 90%.
  • To be an electronic, telecommunications, telematics or system engineer, preferably.
  • 1 year of previous experience in application security and in application development and/or cybersecurity.
  • To have familiarity with: C/C++, JavaScript, Python, C#, Angular, Typescript and most common programming languages.
  • To have an approach of Application Security from the perspective of risk management.
  • Knowledge of the OWASP Top 10 and CWE 25 and be able to communicate those needs to any audience.

Discover TP's perks:

  • Volunteer programs.
  • Career plan.
  • Employee fund with TOP benefits.

Join the TOP Team and connect the world to the most recognized brands in 170 markets.