| Auckland Jobs |
| Canterbury Jobs |
| Northland Jobs |
| Otago Jobs |
| Southland Jobs |
| Tasman Jobs |
| Wellington Jobs |
| West Coast Jobs |
| Auckland Jobs |
| Canterbury Jobs |
| Northland Jobs |
| Otago Jobs |
| Southland Jobs |
| Tasman Jobs |
| Wellington Jobs |
| West Coast Jobs |
| Oil & Gas Jobs |
| Banking Jobs |
| Construction Jobs |
| Top Management Jobs |
| IT - Software Jobs |
| Medical Healthcare Jobs |
| Purchase / Logistics Jobs |
| Sales |
| Ajax Jobs |
| Designing Jobs |
| ASP .NET Jobs |
| Java Jobs |
| MySQL Jobs |
| Sap hr Jobs |
| Software Testing Jobs |
| Html Jobs |
| Job Location | Regina |
| Education | Not Mentioned |
| Salary | Not Mentioned |
| Industry | Not Mentioned |
| Functional Area | Not Mentioned |
| Job Type | Permanent |
Role: Application Security Analyst Location: Regina, SK-Onsite/Hybrid (1st preference Onsite then hybrid) Duration: 1 Year (Extended for 3 Years) A. THE DELIVERABLES 1.1 Background Enterprise Security is responsible for all aspects of security within the organization including cyber, physical and personnel security. We operate with our partners in the SCADA and Automations teams to provide security to the Industrial Control Systems. Network along with our partners in Information Systems to secure the corporate IT infrastructure. SaskEnergy Enterprise Security department continues to expand its scope of practice. 1.2 Description of Requirements SaskEnergy is seeking one (1) Application Security Analyst with broad technical and security-based backgrounds to join the Enterprise Security Team. Typical activities in this role include but not limited to: 1. Recommend and test security controls within applications using both automated and manual techniques 2. Perform web application vulnerability assessments and penetration testing 3. Perform Cloud security testing and configuration validation across major cloud platforms including Azure, Oracle Cloud Infrastructure and AWS 4. Conduct security testing for mobile operating systems and applications 5. Perform security testing on web services and Application Programming Interface (APIs) 6. Conduct code reviews and support secure code repositories 7. Test and valid configurations of web applications behind Web Application Firewalls (WAF) 8. Promote visibility into applications with security tools such as SIEM 9. Perform Cyber Incident monitoring and security incident response 10. Perform Threat Risk Assessments The successful Application Security Analyst will have: 1. 5+ years of Application Development and/or Web Application Security experience testing and mitigating risks related to web applications and websites development in private and/or public sectors 2. Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), CEH, GIAC GWEB and/or Cloud certifications such as Azure Microsoft Certified Azure Developer Associate would be considered beneficial 3. Experience with web protocols including HTTP, HTTPS, and SOAP 4. Experience with programming technologies such as Python, .Net, JavaScript, AJAX, JSON, and REST 5. Experience with cybersecurity standards such as CIS Open Web Application Security Project (OWASP) Application Security Testing and NIST 800-95 Standards 6. Experience in static and dynamic application security testing using SAST/DAST tools and manual techniques 7. Experience evaluating security controls in SDLC and DevSecOps programs 8. Experience with cloud security and cloud- deployment models 9. Experience with Authentication Protocols such as SAML