Yardi Systems - Tustin, CA
posted about 2 months ago
The Development Security Operations Analyst will play a crucial role in integrating security practices into our development and operations processes. This position will work closely with the development, operations, and security teams to ensure the continuous integration and continuous delivery (CI/CD) pipelines are secure, efficient, and compliant with industry standards and best practices. The ideal candidate will have a rich background in designing and implementing secure coding practices, understanding threats, and developing strategies to mitigate potential risks. In this role, the analyst will embed security controls and practices into the CI/CD pipeline, collaborating with development teams to integrate security tools and processes into the development lifecycle. It is essential that security is considered at every stage of the software development process, from design to deployment. The analyst will conduct regular security assessments and vulnerability scans of applications and infrastructure, monitor and address security vulnerabilities, and implement automated security testing tools and processes. Additionally, the analyst will assist in the development and execution of incident response plans, investigate and respond to security incidents and breaches, and perform root cause analysis while recommending corrective actions. Compliance with relevant security standards and regulations such as ISO 27001, NIST, and GDPR is critical, as is staying up-to-date with the latest security trends, threats, and technologies. The analyst will advocate for and implement security best practices across development and operations teams, working closely with cross-functional teams to promote a security-first culture and providing security training and awareness programs for development and operations teams.