Security Analyst 2
PHL - Quezon City - Chateau Ridiculous
TaskUs
TaskUs, a digital solutions provider, combines expert teammates and cutting-edge technology to solve customer challenges, protect users, and drive growth.About TaskUs: TaskUs is a provider of outsourced digital services and next-generation customer experience to fast-growing technology companies, helping its clients represent, protect and grow their brands. Leveraging a cloud-based infrastructure, TaskUs serves clients in the fastest-growing sectors, including social media, e-commerce, gaming, streaming media, food delivery, ride-sharing, HiTech, FinTech, and HealthTech.
The People First culture at TaskUs has enabled the company to expand its workforce to approximately 45,000 employees globally. Presently, we have a presence in twenty-three locations across twelve countries, which include the Philippines, India, and the United States.
It started with one ridiculously good idea to create a different breed of Business Processing Outsourcing (BPO)! We at TaskUs understand that achieving growth for our partners requires a culture of constant motion, exploring new technologies, being ready to handle any challenge at a moment’s notice, and mastering consistency in an ever-changing world.
What We Offer: At TaskUs, we prioritize our employees' well-being by offering competitive industry salaries and comprehensive benefits packages. Our commitment to a People First culture is reflected in the various departments we have established, including Total Rewards, Wellness, HR, and Diversity. We take pride in our inclusive environment and positive impact on the community. Moreover, we actively encourage internal mobility and professional growth at all stages of an employee's career within TaskUs. Join our team today and experience firsthand our dedication to supporting People First.
Think of yourself as someone with hands-on experience with Security Compliance. As part of TaskUs' transformational security organization, we are looking for talented, experienced individual performers to help develop, and implement these foundational programs. As a hands-on security analyst, you will be responsible for identifying, assessing, tracking, and managing security risks in our third-party and internal security review programs.
This role requires hands-on experience with assessing security risks, especially with specific security programs. You must be able to solve challenging security issues at scale and work collaboratively with all stakeholders. Additionally, you should be comfortable with incomplete requirements and a fast paced environment.
Key Responsibilities:
Among the responsibilities include but not limited to:
Review third-party submitted applications for security due diligence.
Review Technical Design Documents submitted by application developers.
Conduct regular security assessments on third-parties and internal stakeholders on requirements and standards.
Collaborate with internal stakeholders on assessments and identify risks and track them.
Consult with internal stakeholders on security standards and best practices to protect TaskUs' data and systems.
Follow up with internal stakeholders and third-parties on remediation to ensure security risks are tracked and closed.
Required Qualifications:
At least 3 years experience specifically in a security role.
Hands-on experience conducting security assessments on infrastructure and/or applications.
Prior experience working in third-party risk management, enterprise risk management, or security compliance teams.
Understanding of application security risks and vulnerabilities.
Exceptional verbal and written communication skills necessary to effectively collaborate with peers, and to present and explain highly technical information to stakeholders who may have limited technical knowledge.
Preferred Qualifications:
Burp suite experience is great to have but any testing experience with tools that allow you to proxy.
Familiarity with tools that allow you to proxy.
Burp is a very familiar known tool / similar tools are good too.
Nice-to-have tools/experience are web app testing / mobile app testing.
Familiarity with top 10 framework - OWASP framework to test any form of mobile/app ... familiarity with the top 10 is great!
Testing STK for security is a nice-to-have experience to have.
Education / Certifications:
Bachelor's degree in IT Security, Computer Science, or equivalent; or an additional 4 years of relevant IT experience.
Work Schedule:
Work from Home (Night Shift)
How We Partner To Protect You: TaskUs will neither solicit money from you during your application process nor require any form of payment in order to proceed with your application. Kindly ensure that you are always in communication with only authorized recruiters of TaskUs.
DEI: In TaskUs we believe that innovation and higher performance are brought by people from all walks of life. We welcome applicants of different backgrounds, demographics, and circumstances. Inclusive and equitable practices are our responsibility as a business. TaskUs is committed to providing equal access to opportunities. If you need reasonable accommodations in any part of the hiring process, please let us know.
We invite you to explore all TaskUs career opportunities and apply through the provided URL https://www.taskus.com/careers/.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Burp Suite Cloud Compliance Computer Science E-commerce FinTech OWASP Risk management Security assessment Vulnerabilities
Perks/benefits: Career development
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.