Senior Product Security Analyst

About Cyber Focus AI

Cyber Focus AI is dedicated to connecting cybersecurity professionals with cutting-edge opportunities. We are not a staffing firm; instead, we leverage advanced technology to locate and verify roles from actual employers, ensuring a fair, transparent, and secure hiring environment.

Why Join This Opportunity?

• Secure long-term employment with significant professional growth through training and courses.
• Engage with cutting-edge technology products that are making a global impact.
• Benefit from a fixed compensation structure that includes vacation days.
• Work in a collaborative and supportive environment alongside proficient colleagues.
• Access modern equipment, including top-tier Apple gear, to facilitate your work.

Job Responsibilities for a Senior Product Security Analyst

• Act as the primary application and product security partner for specific products, leading end-to-end security reviews.
• Conduct thorough application-focused security assessments, including threat modeling and secure design validation.
• Take ownership of vulnerability triage and prioritize findings based on their exploitability and business impact.
• Collaborate effectively with engineering and platform teams to embed secure practices directly into the software development lifecycle (SDLC).
• Support the alignment of security practices with critical industry frameworks such as PCI DSS and GDPR.

Required Qualifications

• A minimum of 5 years of experience in application security, product security, or a closely related field.
• A strong understanding of secure SDLC principles, core application security concepts, and effective vulnerability management.
• Demonstrated experience in conducting comprehensive end-to-end security reviews and contributing to release decisions.
• Familiarity with various application security testing methodologies and experience within cloud-native SaaS environments, particularly AWS.
• Excellent communication skills, enabling effective engagement with both technical and non-technical stakeholders.

Preferred Qualifications to Stand Out

• A Bachelor's or Master's degree in Computer Science, Information Security, or a relevant technical discipline.
• Possession of pertinent certifications like CCSP, CSSLP, or AWS Certified Security.
• Hands-on experience with manual application security testing and secure design reviews.
• Exposure to customer-facing SaaS platforms, especially those with regulatory compliance requirements.
• A background in organizations known for rapidly scaling and maturing their security practices.

Key skills/competency

• Application Security
• Product Security
• Secure SDLC
• Vulnerability Management
• Threat Modeling
• Security Assessments
• Cloud Security (AWS)
• GDPR Compliance
• PCI DSS
• Stakeholder Communication