Security Analyst - McKinsey & Company
San Jose, CA 95101
About the Job
QUALIFICATIONS2+ years of experience in a similar information security roleUnderstanding of DevSecOps principles, integrating security into CI/CD pipelines & Familiarity with Policy as CodeExperience with security concepts, technologies and tooling, e.g.
vulnerability management tools, SCA, SAST, DAST, RASP, IAM Experience of conducting risk assessments, threat modeling and information security reviewsExcellent problem solving, organizational skills, and attention to detailStrong written and verbal communicationWHO YOU'LL WORK WITHThe Product Security team is looking for a Security Analyst to help in reviewing secure development practices within a fast-paced, agile environment.
Sitting within the CyberSecurity Services area, you will establish security requirements & help Security managers in driving adoption strategies, perform threat modeling, risk assessments, and conduct secure architecture reviews.
By following a shift-left approach, you will work closely with security engineering teams to integrate security early in the development process.
The ideal candidate is a security expert aspirant who can effectively collaborate with stakeholders to enhance the overall security posture of our products.WHAT YOU'LL DOAs a Security Analyst you will be responsible for conducting Security Assessments on new or existing products and architecture by reviewing security questionnaires. You will perform threat modeling & security assessments for products, analyze security issues and coordinate triage, tracking and remediation, provide consultation and educate developers in cyber security, and partner with security engineering, product teams and SRE to integrate secure development practices in software development.
vulnerability management tools, SCA, SAST, DAST, RASP, IAM Experience of conducting risk assessments, threat modeling and information security reviewsExcellent problem solving, organizational skills, and attention to detailStrong written and verbal communicationWHO YOU'LL WORK WITHThe Product Security team is looking for a Security Analyst to help in reviewing secure development practices within a fast-paced, agile environment.
Sitting within the CyberSecurity Services area, you will establish security requirements & help Security managers in driving adoption strategies, perform threat modeling, risk assessments, and conduct secure architecture reviews.
By following a shift-left approach, you will work closely with security engineering teams to integrate security early in the development process.
The ideal candidate is a security expert aspirant who can effectively collaborate with stakeholders to enhance the overall security posture of our products.WHAT YOU'LL DOAs a Security Analyst you will be responsible for conducting Security Assessments on new or existing products and architecture by reviewing security questionnaires. You will perform threat modeling & security assessments for products, analyze security issues and coordinate triage, tracking and remediation, provide consultation and educate developers in cyber security, and partner with security engineering, product teams and SRE to integrate secure development practices in software development.
Source : McKinsey & Company