Apply now »

Security Analyst

Custom Field 1: Project Development

Custom Field 3: Project Development

Country/Region: CR

Date: Apr 12, 2024

Location:

Heredia, CR, 40101

Working place: Remote

Job Description:

About the role:

Responsible for ensuring that vulnerability disclosure program requirements are followed and adhered to on client applications and system topologies. You will collaborate with security, application, infrastructure and DevSecOps teams to ensure vulnerabilities are identified and managed. You will work proactively with those teams to drive remediation efforts, providing guidance and background information as needed. You will gather and monitor progress on remediation plans. You will collect and report pertinent metrics to your business partners to establish priorities and identify trends.

A day in this role:

Prioritize newly identified vulnerabilities based upon severity, potential operational impact, exploitation, and other factors to assess risk to.
Engage with infrastructure and application partners to ensure vulnerability management strategy is understood, agreed to and implemented.
Support delivery of policy metrics for the vulnerability disclosure program.
Review vulnerability metrics associated with affected and non-compliant infrastructure and applications, identifying trends and tracking remediation.
Utilize tracking tools/capabilities in a vulnerability management system to report vulnerability mitigation and remediation progress.
Act as advisor for secure system implementation and threat mitigation.
Provide guidance and educate business partners in risk management principles and practices.
Educate business partners in the need to remove vulnerabilities from the client assets and applications.
Identify opportunities to enhance existing processes, especially where automation can be applied.
Drive innovation targeting ongoing reductions in vulnerabilities.
Proactively review policy to identify enhancement opportunities.

The expertise requested:

Bachelor’s degree in Computer Sciences or related field or equivalent experience. Candidates with cybersecurity certifications such as CISSP, GSEC, Security+, etc. are preferred.
Minimum 2-3 years working experience in the related field.
Experience with vulnerability disclosure programs and processes.
Candidates with HackerOne and/or Bugcrowd experience are preferred.
Experience performing risk assessments and vulnerability analysis to advise business on remediation.
Passion to work on newer technologies and explore the security domain.
Excellent problem-solving capabilities.
Strong written and verbal communication skills.

Our Core values are focus to inclusion and diversity, all qualified applicants will be considered for employment and will go thru a fair recruitment process regardless of their race, religion, gender identity, sexual orientation, national origin or disability status.

Your journey with us begin begins here!!

About Us

We show commitment to our investors and stand for solid, long-term growth performance. Founded in Germany in 1987 and in American territory since 2008, GFT expanded globally to over 10,000 experts. And to more than 15 markets to ensure proximity to clients. With new opportunities from Asia to Brazil, the international growth story continues. We are committed to grow tech talents worldwide. Because our team’s strong consulting and development skills across legacy and pioneering technologies, like GreenCoding, underpin success. We maintain a family atmosphere in an inclusive work environment.

Why Choose GFT?

Competitive Compensation
Benefits package including comprehensive medical, dental, vision and others
Company Culture based on our Core Values
Professional Development Training with Individual Development Plans to map out your career growth
Opportunity to work in a global environment with diverse teams built with colleagues from around the world
Opportunity to work with technology industry leaders in the financial services industry
Opportunity to work for big name clients in capital markets, banking and other industries

Not Ready To Apply?

Stay connected! Enter your e-mail and we will keep you informed about upcoming events and opportunities that match your interests.

Apply now »

Provider	Description	Enabled
AddThis	Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Cookie Information Privacy Policy Terms and Conditions
LinkedIn	LinkedIn is an employment-oriented social networking service. We use the Apply with LinkedIn feature to allow you to apply for jobs using your LinkedIn profile. Opting out of LinkedIn cookies will disable your ability to use Apply with LinkedIn. Cookie Policy Cookie Table Privacy Policy Terms and Conditions