Senior Risk Analyst - Application Security (Remote, United States)

Waltham, MA, United States

Dynatrace

Innovate faster, operate more efficiently, and drive better business outcomes with observability, AI, automation, and application security in one platform.

View all jobs at Dynatrace

Company Description

Dynatrace exists to make software work perfectly. Our platform combines broad and deep observability and continuous runtime application security with advanced AIOps to provide answers and intelligent automation from data. This enables innovators to modernize and automate cloud operations, deliver software faster and more securely, and ensure flawless digital experiences.

Job Description

  • Serve as a bridge between the Dynatrace business units and the Security Risk Management organization to promote and facilitate the adaptation and involvement with the Dynatrace Risk Management Framework
  • Create, conduct, and report on security assessments for all systems applications.
  • Train and coordinate with systems application owners, data custodians, technical leads, and business impact analysts on security standards, guidelines, and vendor risk management of the systems within the organization and sub organizations
  • Provide guidance and support over the teams and ensure they can meet risk management requirements and industry control frameworks for their systems/applications.
  • Contribute to the development and implementation of security policies, procedures, and controls.

Candidates will be required to work EST hours for this role. 

Qualifications

Minimum Requirements:

  • 2+ years experience with Governance, Risk and Compliance (GRC) tools (preferred: OneTrust)
  • HS Diploma or GED required

Preferred Requirements: 

  • AGILE, preferably Atlassian/Jira
  • Understanding of Application Security (OWASP Top 10)
  • Knowledge of programming languages and technologies used in web development.
  • Proficiency in using security assessment tools and techniques.
  • Understanding of legal and regulatory obligations related to information security.
  • Applying risk management frameworks and methodologies
  • Performing data classification
  • Conducting security risk reviews
  • Risk analysis and mitigation of potential vulnerabilities
  • Identifying potential security vulnerabilities, risks and their potential impact to the organization
  • Control framework implementation, such as NIST 800-53, ISO 27001, Fed Ramp and NIST CSF
  • Knowledge in penetration tests on web applications and tools.
  • Maintaining systems/applications records status for reporting and alerts
  • Providing advice and guidance in implementing IT security policies and procedures to reduce risk.
  • Stay current with emerging threats, vulnerabilities, and security technologies.

Additional Information

  • Dynatrace is a leader in unified observability and security. 
  • We provide a culture of excellence with competitive compensation packages designed to recognize and reward performance. 
  • Our employees work with the largest cloud providers, including AWS, Microsoft, and Google Cloud, and other leading partners worldwide to create strategic alliances. 
  • The Dynatrace platform uses cutting-edge technologies, including our own Davis hypermodal AI, to help our customers modernize and automate cloud operations, deliver software faster and more securely, and enable flawless digital experiences.
  • Over 50% of the Fortune 100 companies are current customers of Dynatrace.

DOE, salary $110K - $135K, plus Health, Dental, Life, STD, LTD, 401K, PTO. Total compensation may vary depending on candidate experience/education and location. 

All your information will be kept confidential according to EEO guidelines.

We offer competitive compensation, company-sponsored premium benefits, medical, dental, vacation/holidays, company matching 401(k) Plan, etc. Dynatrace is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, sex, color, gender identity, religion, national origin, ancestry, citizenship, physical abilities, age, sexual orientation, creed, disability status, veteran status, pregnancy, genetic status, or any other characteristic protected by law.  If your disability makes it difficult for you to use this site, please contact careers@dynatrace.com. Dynatrace participates in E-Verify, participant information in English and Spanish. Right to work information in English and Spanish. EEO is the Law/EEO is the Law Supplement. To be considered for this position, please upload your resume/CV.

 

Job stats:  10  3  1

Tags: Agile Application security Automation AWS Cloud Compliance GCP Governance ISO 27001 Jira NIST NIST 800-53 OWASP Risk analysis Risk management RMF Security assessment Vulnerabilities

Perks/benefits: 401(k) matching Competitive pay Health care

Regions: Remote/Anywhere North America
Country: United States

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.