Paycom Online - Oklahoma City, OK

posted 27 days ago

Full-time
Oklahoma City, OK

About the position

The Application Security Analyst I position at Paycom is designed to enhance and protect the security posture of the Paycom application. This role involves conducting web application penetration testing, performing code reviews, utilizing security tools, and engaging in various security assessments. The analyst will also contribute to the development and improvement of security projects and provide user education on security best practices.

Responsibilities

  • Perform web penetration test assessments and manual code review.
  • Utilize security scanners and other automation technology to assess the security posture of the Paycom application and document findings.
  • Research 3rd party tools, software libraries, APIs, and other incoming technology for security viability and document any concerns prior to application integration.
  • Advise and provide technical guidance to software development teams over security findings and remediation.
  • Analyze security findings and escalate complex or recurring issues to other Application Security teams for further research as needed.
  • Attend trainings, pursue certifications, and research vulnerabilities, remediations, and new technology to learn and stay up to date on security best practices.
  • Contribute to the creation, maintenance, and improvement of documentation around security, policies, standards, guides, and procedures where applicable.

Requirements

  • Bachelors or Master's Degree in Management Information Systems, Computer Science or Cyber Security.
  • Basic understanding of the OWASP Top 10 vulnerabilities.
  • General knowledge of information security principles and practices.
  • Basic understanding of web server architecture and relevant concepts: HTTP, TLS, DNS, WAF, etc.
  • Experience with one or more programming/scripting languages highly recommended: PHP, Python, C#, Java, C++, C, JavaScript, React.
  • Basic experience with SQL (MySQL/MSSQL/Postgres), NoSQL, HTML, CSS is recommended but not required.
  • Basic experience with Linux distributions (Ubuntu, Kali Linux, Debian, Red Hat), iOS, Android OS, macOS is recommended but not required.
  • Strong analytical and problem-solving skills.
  • Strong verbal and written communication skills.

Nice-to-haves

  • Industry Certification (GWAPT, GCIH, Security+, Pentest+, Burp Suite Certified Practitioner, etc.) preferred.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service