Senior Security Analyst

Why We Work at Dun & Bradstreet

We are at a transformational moment in our company journey – and we’re so excited about it. Each day, we are finding new ways to strengthen our award-winning culture, and to accelerate creativity, innovation and growth. Our purpose is to help customers improve business performance with Dun & Bradstreet’s Data Cloud and Live Business Identity, and we’re wildly passionate and committed to this purpose. So, if you’re looking to make an immediate impact at a company that welcomes bold and diverse thinking, come join us!

The Role

Application Security Analyst will be part of D&B’s application security team that consists of software security professionals. In this role the individual would be responsible for ensuring secure software delivery of the D&B products. The position would be responsible for architecting, developing and deploying application security tools and technologies in the SDLC

The individual (SME) would closely work with the technology teams and provide guidance on tools and remediation.

This role can be located in Austin, TX/Center Valley, PA or Short Hills, NJ. It also offers some work from home flexibility once offices reopen.

Responsibilities

Develop SecDevOps practices by implementing key controls (SAST/DAST/SCA) in the SDLC

Work with the team on developing the appsec roadmap for the firm

Perform Static Scanning (SAST) and advise development teams on vulnerability remediations

Conduct and perform vulnerability analyses on web and mobile applications.

Perform dynamic application security testing (DAST) before applications are deployed in production.

Configure appsec tools to enable workflow automation and integration with devops tools e.g. Jenkins, JIRA

Review application incidents and work closely with the DevOps team in any follow up investigation or remediation.

Manage external independent Application Security Testing and ensure timely remediation of issues.

Identify all vulnerabilities originating from third party dependencies and ensuring timely remediation.

Identify and develop KPIs to show the progress of overall application security program and identify opportunities for improvement.

Develop best coding practices to enable development teams.

Be able to pivot onto ad-hoc assignments as necessary, with a range from architecture review to network assessment to audit/compliance projects.

Qualifications

Bachelors Degree

5-7 years of working experience in technology, with 3-5 years in cyber security (specifically application testing and vulnerability assessment)

Strong technical acumen, communication and influence skills to demonstrate effectiveness of different application security initiatives

Proficiency in understanding of: OWASP Top 10, NVD, CVSS scoring, application assessments

Advanced proficiency in at least one programming language (python preferred)

Experience with at least one of the software security tools (SAST, OSS/SCA, DAST etc)

Experience with project development, management, and tracking software (JIRA, Confluence, BitBucket, GitHub, etc)

Proficient with standard security tools such as Burp Suite, OWASP ZAP, CheckMarx, Snyk etc

Dun & Bradstreet is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, age, national origin, citizenship status, disability status, sexual orientation, gender identity or expression, pregnancy, genetic information, protected military and veteran status, ancestry, marital status, medical condition (cancer and genetic characteristics) or any other characteristic protected by law.

We are committed to Equal Employment Opportunity and providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with Dun & Bradstreet and need special assistance or an accommodation to use our website or to apply for a position, please send an e-mail with your request to TalentAcquisitionTeam@dnb.com. Determination on requests for reasonable accommodation are made on a case-by-case basis.

Please note that all Dun & Bradstreet job postings can be found at https://dnb.wd1.myworkdayjobs.com/Careers and all communication from Dun & Bradstreet will come from an email address ending in @dnb.com.