Location/Office Policy:
Leopardstown, Dublin 18 / Hybrid
What is the Role:
As a Senior Offensive Security Analyst, you will be responsible for ensuring the security and resilience of AIB's applications by performing comprehensive security assessments across web, API, and mobile platforms. You will utilise both manual and automated testing techniques, working with state-of-the-art tools to identify vulnerabilities and provide mitigation strategies.
This role requires a hands-on, detail-oriented professional who is eager to collaborate with development and operations teams to embed security throughout the software development lifecycle. You will play a key role in the vulnerability management process, helping to enhance security posture and reduce risk across various environments.
Key Accountabilities:
1. Conduct security assessments on web applications, APIs, and mobile applications using manual and automated testing techniques. Utilise security tools like Nessus, Burp Suite, and OWASP ZAP to identify and analyse vulnerabilities.
2. Perform both SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing). Collaborate with cross-functional teams to communicate findings and provide recommendations for remediation.
3. Vulnerability management, including tracking, categorizing, and validating reported security issues. Co-ordinate security assessment with partners and colleagues.
4. Facilitate re-testing to verify that vulnerabilities have been mitigated effectively. Stay informed on the latest security trends, threats, and tools to continuously improve testing methodologies.
5. Engage in threat modelling and risk assessment to identify potential risks and areas for improvement.
Minimum Criteria:
1. 5+ years of experience in security testing, particularly in web, API, and mobile applications.
2. Strong experience with security testing tools such as Nessus, Burp Suite, and OWASP ZAP.
3. Familiarity with SAST/DAST tools and methodologies to identify and assess vulnerabilities.
4. A strong understanding of common vulnerability frameworks like OWASP Top 10 and CWE Top 25.
5. Experience with vulnerability management processes and tools.
6. Knowledge of best practices in application security, including secure coding, authentication, encryption, and session management.
Why Work for AIB:
We are committed to offering our colleagues choice and flexibility in how we work and live and our hybrid working model enables our people to balance their time between working from home and their designated office, subject to their role, the needs of our customers and business requirements.
Some of our benefits include;
* Market leading Pension Scheme
* Healthcare Scheme
* Variable Pay
* Employee Assistance Programme
* Family leave options
* Two volunteer days per year
Closing Date: Thursday, 14th November 2024
Disclaimer:
Unsolicited CV's sent to AIB by Recruitment Agencies will not be accepted for this position. AIB operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our recruitment partners. #J-18808-Ljbffr