Cyber Security Application Analyst
Glasgow (Glasgow City) IT development
Job description
Cyber Security Application Analyst
The Software Security Assurance Program (SSAP) Static Scanning team is responsible for scanning for cyber security vulnerabilities in JPM developed source code. This involves running over 10,000 scans per month on the code base of over 3400 applications. The static scanning engine covers most languages used in the bank including, Cobol, Java, C#. Cyber security is an exciting growth area for the firm and for the industry. The successful candidate will have the opportunity to join an established and growing team as they mature their firm-wide scanning offering.
In the role of “Static Code Analysis L3/4 Application Support Analyst”, you will be responsible to operationally support a static scanning engine across all Lines of Business using a combination of vendor tools and in-house software.
Responsibilities shall include but not be limited to:
· Provide Level 3/4 support for a unique portfolio of static scanning tooling.
· Work with Line of Business AD teams to trouble shoot their scanning issues.
· Schedule and roll out product upgrades
· Create processes and tooling to improve operational efficiency
· Automate manual procedures using scripting languages
· Perform controlled resolution of incidents and problems including prioritization and escalation when appropriate
· Work with vendors in problem isolation and resolution
· Ensure security compliance with JPMC IT control policies in each messaging implementation
· Conduct routine hardware and software audits to ensure compliance with established standards, policies, and configuration guidelines
· Monitor capacity
· Develop and promote standard operating procedures
· Ensure high availability and resiliency across the system
· Ensure solid implementation of the product by performing rigorous integration testing of the entire application
· Installation, configure and support of build farms using CI tools such as Jenkins
· Assist with infrastructure requirements such as provisioning new servers, DBs, NAS
About You
· In-depth experience of .NET tools such as MSBuild/Visual Studio.
· Understanding of C# and other .NET technologies.
· Proficiency in scripting languages.
· Interested in providing focused L3/4 support of our system to the internal AD community.
· Cyber security experience not required.