Application Security Analyst

Avanade is seeking an Application Security Analyst to join our Security team.

Role Overview

As a Junior Application Security Analyst, you will be responsible for software security, ensuring applications are robust, vulnerability-free, and protected against cyberattacks.

Skills and Experience

• Knowledge of web technologies: understanding communication protocols, web architectures, and development technologies (e.g., HTTP, HTTPS, REST, SOAP).
• Familiarity with programming languages: Java, Python, C#, JavaScript, Ruby, or PHP for source code analysis and vulnerability identification.
• Understanding common vulnerabilities: SQL injection, XSS, authentication flaws, sensitive data exposure.
• Knowledge of security best practices: secure development frameworks (OWASP), session management, data encryption, input validation, secure authentication.
• Effective communication skills: clearly articulating vulnerabilities to development teams and stakeholders.
• Curiosity and commitment: eagerness to learn and improve security skills continually.

About You

• Proficiency with security tools: static and dynamic code analysis tools (SonarQube, Fortify), vulnerability scanners, etc.
• Knowledge of Azure cloud resources and security tools like Defender for Cloud.
• Experience with Web Application Firewalls (WAF), API Management, and Application Gateway.
• Understanding of SecDevOps and CI/CD pipeline security integration (SAST, DAST).
• English language proficiency.

Responsibilities

• Implement security best practices in application development, including access controls, session management, data encryption.
• Identify and resolve security vulnerabilities through code analysis and risk assessment.
• Conduct security testing such as penetration tests, static and dynamic code analysis.
• Train developers and stakeholders on application security and risk mitigation.

Learn more

• Avanade Security - Are you Doing Enough?
• EDF Client Story | Avanade
• Zurich Client Story | Avanade
• A Catastrophic Cyber Event. Are You Ready?
• The New World of Decentralized Identity

Additionally, explore our blogs: Avanade Insights and Inside Avanade.

Why Join Us

• Work with Microsoft’s Global Alliance Partner of the Year, with extensive training and certification opportunities.
• Access to global technical resources and a dedicated career advisor.
• Collaborative, supportive work environment fostering growth and diversity.

Learn more about our benefits and culture on our website. We foster an inclusive environment, encouraging innovation, learning, and community engagement.