At a Glance
- Tasks: Join us as a Software Security Analyst L1 to test and secure our software!
- Company: Global Relay leads in cloud archiving and compliance solutions for top firms.
- Benefits: Enjoy flexible work hours, hybrid work options, and a supportive culture.
- Why this job: Make an impact by enhancing software security while learning from experienced professionals.
- Qualifications: Knowledge of network technologies and security tools; scripting skills in Python or PowerShell preferred.
- Other info: We're committed to diversity and inclusion, ensuring a balanced work/life environment.
The predicted salary is between 30000 - 42000 £ per year.
For over 20 years, Global Relay has set the standard in enterprise information archiving with industry-leading cloud archiving, surveillance, eDiscovery, and analytics solutions. We securely capture and preserve the communications data of the world’s most highly regulated firms, giving them greater visibility and control over their information and ensuring compliance with stringent regulations.
The Software Security Analyst L1 is responsible for facilitating and conducting automated and manual security testing of Global Relay software. This position identifies, assesses, and follows up on remediation activities associated with application vulnerabilities.
Your responsibilities:
- Identify and document security vulnerabilities.
- Investigate security issues in order to determine specific steps for reproduction and scope.
- Create, maintain, and execute manual security test cases.
- Execute and analyze security scans using appropriate scanning tools (e.g. HP WebInspect).
- Provide reporting on the outcome of security testing.
- Document verification of security fixes.
- Develop competency in the OWASP Top 10 and derive new test methodologies based on Global Relay applications.
- Learn appropriate security tools (e.g. ZAP) that allow for manual and automated testing.
- Work with intermediate and senior software security team members to identify areas where security test coverage is lacking, and work to improve the security test coverage.
- Assist the intermediate and senior software security team members with assessment and test planning for upcoming releases.
- Assist the intermediate and senior software security team members with communication of new security testing initiatives to the development teams and work with the teams to finish them (e.g. test case reviews, presentations of new content).
- Improve test case documentation and grouping.
- Provide suggestions on improvements and see these through to completion.
About you:
- Knowledge of internet and network technologies; specifically TCP/IP, UDP, SMTP, HTTP, HTTPS, FTP, SFTP and FTPS; any other Internet and network technologies would be an asset.
- Good understanding of and exposure to security tools such as firewalls, IDS/IPS, anti-virus, anti-spam, and server and network device hardening.
- Ability to write and modify scripts and/or program in various languages, such as Python and PowerShell.
- Working knowledge of software security in general and of OWASP Top 10.
- Proven competence using MS Office and other desktop applications.
- Previous experience in software security testing or quality assurance methodology.
- Excellent verbal and written communication skills.
- Attention to detail and follow-up.
- Methodical and creative approach to problem-solving.
- Recognized security industry certifications, such as CompTIA Security+.
Working Conditions:
Availability after hours for escalations.
Global Relay is an equal-opportunity employer committed to diversity, equity, and inclusion.
We seek to ensure reasonable adjustments, accommodations, and personal time are tailored to meet the unique needs of every individual.
We understand flexible work arrangements are important, and we encourage that in our work culture. Whether it’s flexibility around work hours, workstyle, or lifestyle, we want to ensure our employees have a healthy work/life balance. We support and value a hybrid work model that blends collaboration with the team in the office and focus time from the comfort of your home.
#J-18808-Ljbffr
Software Security Analyst - L1 employer: GlobalRelay
Contact Detail:
GlobalRelay Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Software Security Analyst - L1
✨Tip Number 1
Familiarize yourself with the OWASP Top 10 vulnerabilities. Understanding these common security issues will not only help you in your role but also demonstrate your proactive approach to potential employers.
✨Tip Number 2
Gain hands-on experience with security tools like ZAP and HP WebInspect. Being able to showcase your practical skills with these tools during interviews can set you apart from other candidates.
✨Tip Number 3
Network with professionals in the software security field. Attend industry meetups or webinars to connect with others, which can lead to valuable insights and potential job referrals.
✨Tip Number 4
Stay updated on the latest trends and threats in cybersecurity. Following relevant blogs, podcasts, or news sources will help you speak knowledgeably about current issues during your interview.
We think you need these skills to ace Software Security Analyst - L1
Some tips for your application 🫡
Understand the Role: Make sure you fully understand the responsibilities of a Software Security Analyst L1. Familiarize yourself with security testing methodologies, tools like HP WebInspect and ZAP, and the OWASP Top 10.
Tailor Your Resume: Highlight your relevant experience in software security testing, knowledge of network technologies, and any programming skills you possess, especially in Python and PowerShell. Make sure to include any recognized security certifications.
Craft a Strong Cover Letter: In your cover letter, express your enthusiasm for the role and how your skills align with Global Relay's mission. Mention specific experiences that demonstrate your problem-solving abilities and attention to detail.
Proofread Your Application: Before submitting, carefully proofread your resume and cover letter for any errors. Clear communication is key, so ensure your documents are well-organized and free of typos.
How to prepare for a job interview at GlobalRelay
✨Understand Security Fundamentals
Make sure you have a solid grasp of internet and network technologies, especially TCP/IP, HTTP, and HTTPS. Familiarize yourself with security tools like firewalls and IDS/IPS, as these will likely come up during your interview.
✨Familiarize with OWASP Top 10
Since the role emphasizes knowledge of the OWASP Top 10, be prepared to discuss each vulnerability in detail. Think about how you would identify and mitigate these vulnerabilities in real-world applications.
✨Showcase Your Problem-Solving Skills
Prepare examples that demonstrate your methodical and creative approach to problem-solving. Discuss past experiences where you identified security issues and the steps you took to resolve them.
✨Communicate Effectively
Excellent verbal and written communication skills are crucial for this role. Practice explaining complex security concepts in simple terms, as you may need to communicate findings to development teams.