Information / Cyber Security Analyst

Support the deployment of robust application security testing tooling in support of the application lifecycle of PTC products.

Maintain and improve the application security testing suite to reduce vulnerabilities introduced into the PTC production environment.

Support the expanding bug bounty and application penetration testing efforts across PTC.

Participate in activities to support the integration of security controls throughout the SDLC.

Assist in the process of reviewing designs of new applications and products.

Participate in the security testing efforts against our applications, including code reviews, black / white box testing of applications, and maintaining a continuous testing methodology.

The qualifications below are ideal, but not all are required. We encourage candidates to apply if they satisfy some, but not all, qualifications.

3-5 years of experience in information security or equivalent experience

2-3 years of experience in hands-on application and product security disciplines or equivalent experience

Experience with cloud technologies (i.e., AWS, Azure, Salesforce)

Experience working with Salesforce Lighting, Salesforce Customer 360, or Salesforce field service products.

Experience with threat modeling, systems analysis, and security design reviews

Familiarity with SAST, DAST, SCA, and penetration testing methodologies

Good written and verbal communication skills

Understanding of application and product architectures, scripting-based programming languages, web application stacks, and general approaches to implementation of an SDLC

Ability to prioritize security efforts to mitigate the appropriate risks

Ability to identify, analyze, and explain the present or future needs for proposed security initiatives to team leads

Ability to influence with empathy and compassion

Bonus : Experience with CI / CD practices and platform tools (Jenkins, Travis, GitHub, etc.)

Bonus : Background with containers and orchestration technologies (Docker, Kubernetes, Helm)

Ideal candidates will thrive in our culture if they have a passion for :

Building quality products with a mindset on safety and security

Operating in a fast-moving and high-growth environment

Working as a team player with an entrepreneurial work ethic

Security, learning, and continuous improvement

Skills Required

Github, White Box Testing, Information Security, Penetration Testing, Application Security Testing, Sdlc