Application Security Analyst Ii

Detalhes da Vaga

We are looking for an Application Security Analyst to help us actively defend EA's products, data, and players. This remote-friendly role will report to the Senior Manager of the Verification and Pentest (VAP) team within the Secure Product Engineering and Anti-cheat Response (SPEAR) organization. You will work with a diverse set of timezones working most closely with an North American-based counterpart.

***

**Responsibilities**
- You will triage and investigate cases reported through our Coordinated Vulnerability Disclosure (CVD) program and partner with developers to guide remediations
- You will investigate daily alerts, search logs for Indicators of Compromise (IoCs) and create or enhance detections
- You will identify systemic vulnerability trends and patterns, and engage EA security teams to prevent these at scale
- You will correctly rate the security impact of discovered vulnerabilities, articulate remediation steps to product teams, and report impact to leadership
- You will deliver talks and presentations within EA, including internal conferences

**Qualifications**
- At least three years hands-on experience of full stack Application Security reviews that span multiple platforms and programming languages
- Experience discovering and remediating CWE Top 25 and OWASP Top 10 vulnerabilities
- Experience querying logs and setting up detections through a log aggregation platform, such as Grafana
- Experience handling coordinated vulnerability disclosure programs
- Hands-on experience with security assessment tools and understanding of their applicability and limitations in different assessment scenarios
- Knowledge in multiple of the following domains and expertise in at least one: Networking, OS Internals, Cloud Architecture, Web Frameworks, or Mobile Architecture
- Knowledge of best practices and common pitfalls in one or more of: cryptography, authentication mechanisms, authorization controls and network configurations
- Knowledge of multiple of the following exploitation techniques and expertise in at least one: XSS, SQLi, IDOR, MitM, DoS, BOF, or ROP
- Excellent verbal and written English skills
- Bachelor's degree or Master's Degree in Computer Science or Information Security, or equivalent industry experience

Electronic Arts creates next-level entertainment experiences that inspire players and fans around the world. Here, everyone is part of the story. Part of a community that connects across the globe. A place where creativity thrives, new perspectives are invited, and ideas matter. A team where everyone makes play happen.


Salário Nominal: A acordar

Fonte: Whatjobs_Ppc

Função de trabalho:

Requisitos

Analista De Suporte

Descrição da oferta: Empresa de Tecnologia da Informação admite Analista de Suporte em Porto Velho. Principais Responsabilidades: Monitorar e gerenciar inc...


Empresa De Tecnologia Da Informação - Rondônia

Publicado 9 days ago

Engenheiro De Software

Descrição da oferta: Empresa de desenvolvimento de software admite Engenheiro de Software em Porto Velho. Principais Responsabilidades: Compreensão clara d...


Empresa De Desenvolvimento De Software - Rondônia

Publicado 9 days ago

Operador De Suporte Ao Cliente

Descrição da oferta: Consultoria de terceirização e offshoring admite Operador de Suporte ao Cliente em Porto Velho. Principais Responsabilidades: Efetuar ...


Consultoria De Terceirização E Offshoring - Rondônia

Publicado 9 days ago

Administrador De Sistemas

Descrição da oferta: Empresa de Tecnologia admite Administrador de Sistemas em Porto Velho. Principais Responsabilidades: Instalar e configurar servidores ...


Empresa De Tecnologia - Rondônia

Publicado 9 days ago

Built at: 2024-12-25T02:14:18.245Z