Application Security Analyst at Conclase Consulting

At Conclase Consulting, we provide top notch IT solutions and support services to help you transform your business into an Intelligent Enterprise, redefine the customer experience, deliver a step change in productivity, and inspire total workforce engagement to achieve game-changing outcomes.

We are recruiting to fill the position below:

Job Title: Application Security Analyst

Location: Lagos

Responsibilities
The Applications & Mobile Solution Security Analysts is responsible for the following:

• Perform static application security testing (SAST), dynamic application security testing (DAST), and manual code reviews to identify vulnerabilities.
• Collaborate with development teams to ensure secure coding practices are followed and security is embedded into the software development lifecycle (SDLC).
• Integrate security tools into CI/CD pipelines to automate testing and enforce policies.
• Review and update security configuration baselines for applications & databases in alignment with leading practice and changes to business and technology environment
• Create corrective action plans for non-compliant items and work with application development and database teams to close the issues
• Stay updated on the latest application security threats, tools, and techniques.
• Collaborate with relevant teams to ensure that secure service posture from design to implementation are maintained for all cloud services.
• Support and consult with product and development teams in application security, including threat modeling and application security reviews.
• Ensure that all new IT and e-business projects, products and services are effectively assessed and certified okaybefore Go-Live.
• Perform periodic vulnerability assessments and provide reports to management review and corrective actions
• Ensure application security practices align with regulatory requirements and industry standards like OWASP, ISO 27001, and PCI DSS.

Key Performance Indicators

• Complete security testing on all applications with a turnaround time (TAT) of less than 10 days, achieving a defect detection rate of at least 95%
• VAPT on all critical applications at least once a year
• Achieve a 100% completion rate for secure code reviews for all code changes in critical applications before merging into the main codebase
• Zero incident in a year due to false negative or no VAPT

Skillset & Qualification

• B.Sc Degree Computer Science, Information Technology, or a related field. 
• Fintech or banking experience is a plus
• 3-5 years experience needed
• Oral and verbal communication
• CISSP/CEH
• Breach & attack simulation
• Understanding of bank’s digital operations
• Strong analytical and problem-solving skills.

Application Closing Date
Not Specified.

Method of Application
Interested and qualified candidates should forward their Resume to: careers@conclaseint.com using the Job Title as the subject of the mail.