
Senior Application Security Analyst
Global Relayabout 3 hours ago
Responsibilities
- Lead advanced security testing of critical applications and services.
- Own threat modeling using structured frameworks.
- Support and engage in the penetration testing programme.
- Design security test strategies for new products and major changes.
- Act as subject-matter expert and primary point of contact for engineering.
- Provide oversight of scanning-tool usage and KPIs in the CI/CD pipeline.
- Own the triage, escalation, and evidence-quality framework across testing streams.
- Track and report key security testing metrics to senior stakeholders.
- Build and maintain advanced test cases and automation frameworks.
- Own the security release process, including remediation verification.
- Mentor and coach analysts and specialists.
- Provide expert-level root-cause analysis and remediation guidance.
- Develop and maintain process documentation and testing standards.
Requirements
- 5–8 years' hands-on experience in application security testing.
- Advanced knowledge of internet and network technologies.
- Expert understanding of web and API technologies and common vulnerabilities.
- Advanced mobile security testing skills for Android/iOS.
- Advanced knowledge of container orchestration and Kubernetes security.
- Expert understanding of security controls and their effectiveness.
- Strong offensive security skillset in manual web and API testing.
- Ability to build and own automation using scripting languages.
- Excellent communication skills to influence stakeholders.
- Recognised advanced certifications preferred (e.g. OSCP, OSWE).