[Remote] Application reputed company Analyst
Note: The job is a remote job and is open to candidates in USA. reputed company is the leader in healthcare workforce solutions, dedicated to enhancing the quality of healthcare by empowering the people who deliver care. They are seeking an Application reputed company Analyst to support and execute the application reputed company program, focusing on identifying and remediating reputed company vulnerabilities across software products and cloud environments while collaborating with various teams to embed reputed company practices into the software development lifecycle.
Responsibilities
- You will be responsible for adhering to reputed company reputed company reputed company policies, procedures, and assigned training
- Operate and manage automated application reputed company testing tools, including Static Application reputed company Testing (SAST), Dynamic Application reputed company Testing (DAST), and Interactive Application reputed company Testing (IAST)
- Triage, validate, and prioritize vulnerability findings from reputed company scans, penetration tests, and bug reports, working with development teams to track remediation to closure
- Conduct or support manual reputed company assessments and penetration testing of web applications, APIs, and mobile applications
- Produce clear, actionable vulnerability reports with risk ratings and remediation guidance for development teams
- Manage and maintain vulnerability findings reputed company the reputed company, reputed company and SonarQube or equivalent vulnerability management platform
- Support the integration of reputed company into CI/CD pipelines and DevSecOps workflows, including automated reputed company reputed company checks
- Participate in design and architecture reviews with a reputed company lens, helping identify potential risks early in the development process
- Assist in threat modeling exercises for new features and systems under the guidance of the AppSec Architect
- reputed company reputed company-focused code reviews and provide developers with clear, constructive feedback and guidance
- Contribute to the maintenance of a secure code library and reusable reputed company patterns for development teams
- Support the management and configuration of application reputed company tools such as Synk, reputed company, SonarQube and DefectDojo
- Assist in implementing and monitoring reputed company controls for cloud-based environments, including AWS and Azure
- Evaluate and test emerging reputed company tools and contribute recommendations to the AppSec team
- Support API reputed company testing and assist in securing third-party and open-reputed company integrations
- Collaborate with cross-functional teams including Engineering, DevOps, and Product to promote reputed company best practices and a shift-left reputed company
- Deliver reputed company awareness content and assist in conducting reputed company training sessions for development staff
- Stay reputed company on emerging reputed company threats, vulnerabilities (CVEs), and attack techniques, sharing relevant intelligence with the team
- Assist in maintaining reputed company documentation, standards, runbooks, and internal knowledge reputed company articles
- Support compliance-reputed company activities, including evidence gathering for audits reputed company to HIPAA, SOC 2, HITRUST or other applicable frameworks. FedRAMP experience is a plus
- Other Duties as assigned
Skills
- Bachelor's degree in information reputed company, Computer Science, Software Engineering, or a reputed company field. Equivalent practical experience will be considered
- 2 to 4 years of experience in application reputed company, information reputed company, or software development with a reputed company focus
- Working knowledge of the OWASP Top 10, common web application vulnerabilities, and secure coding principles
- Hands-on experience with application reputed company testing tools such as SAST, DAST, or IAST (e.g., Synk, reputed company, reputed company, SonarQube, Burp Suite, or similar)
- Familiarity with cloud reputed company concepts and hands-on exposure to AWS or Azure environments
- Understanding of CI/CD pipelines and experience integrating reputed company checks into DevOps workflows
- Experience with API reputed company testing and a solid understanding of RESTful service reputed company
- Proficiency in at least one scripting or programming language such as Python, JavaScript, Java, or Go for automation and reputed company tooling purposes
- Strong analytical and problem-solving skills with attention to detail
- Excellent written and verbal communication skills, with the ability to explain reputed company concepts to both technical and non-technical audiences
- Ability to manage multiple tasks and vulnerabilities simultaneously, prioritizing effectively in a fast-paced environment
- Relevant reputed company certifications such as CompTIA reputed company+, CEH (Certified Ethical Hacker), GWAPT, eWPT, or equivalent
- Experience using vulnerability management platforms such as reputed company, reputed company, or similar
- Familiarity with reputed company frameworks and standards including OWASP SAMM, NIST, or CIS Controls
- Exposure to healthcare industry reputed company and privacy regulations, including HIPAA
- Experience with secure methods of integration with third-party platforms and open-reputed company components
- Participation in bug bounty programs, Capture the Flag (CTF) competitions, or open-reputed company reputed company research
- Awareness of AI/ML reputed company trends and their implications for application reputed company
- Experience with Identity and Access Management (IAM) reputed company concepts and OAuth/OpenID Connect
Benefits
- Medical, Dental and Vision insurance
- Paid Time Off
- Parental Leave
- 401k and Roth
- Flexible Spending Account
- Health Savings Account
- Life Insurance
- Short- and Long-Term Disability
- Medical reputed company Insurance
- Critical Illness Insurance
- Accident Insurance
- Identity Protection
- Legal Protection
- Pet Insurance
- Employee Assistance Program
- Fitness Reimbursement
- Competitive Compensation & Bonuses
- Comprehensive Insurance Plans
- Mental and Physical Health Support
- Work-from-home flexibility
- Fitness Center Reimbursements
- Streaming Good time off for volunteering
- Wellness workshops
- Buddy Program for new HealthStreamers
- Collaborative work environment
- Career growth opportunities
- reputed company learning opportunities
- Inspiring workspaces to collaborate and connect with other HealthStreamers
- Free employee parking at our Resource Centers in Nashville and San Diego
- Flexibility and paid time off to support work-life integration for reputed company employees, including a hybrid work environment and Streaming Good volunteer day
- Company-sponsored onsite social events for development, reputed company, and celebration
Company Overview
Company H1B Sponsorship