Information/Cyber Security Analyst

Our world is transforming, and PTC is leading the way. Our software brings the physical and digital worlds together, enabling companies to improve operations, create better products, and empower people in all aspects of their business. 

Our people make all the difference in our success. Today, we are a global team of nearly 7,000 and our main objective is to create opportunities for our team members to explore, learn, and grow – all while seeing their ideas come to life and celebrating the differences that make us who we are and the work we do possible.  

Responsibilities:
•    Support the deployment of robust application security testing tooling in support of the application lifecycle of PTC products.
•    Maintain and improve the application security testing suite to reduce vulnerabilities introduced into the PTC production environment.
•    Support the expanding bug bounty and application penetration testing efforts across PTC.
•    Participate in activities to support the integration of security controls throughout the SDLC.
•    Assist in the process of reviewing designs of new applications and products.
•    Participate in the security testing efforts against our applications, including code reviews, black/white box testing of applications, and maintaining a continuous testing methodology.
 

The qualifications below are ideal, but not all are required. We encourage candidates to apply if they satisfy some, but not all, qualifications.

3-5 years of experience in information security or equivalent experience
2-3 years of experience in hands-on application and product security disciplines or equivalent experience
Experience with cloud technologies (i.e., AWS, Azure, Salesforce)
Experience working with Salesforce Lighting, Salesforce Customer 360, or Salesforce field service products.
Experience with threat modeling, systems analysis, and security design reviews
Familiarity with SAST, DAST, SCA, and penetration testing methodologies
Good written and verbal communication skills
Understanding of application and product architectures, scripting-based programming languages, web application stacks, and general approaches to implementation of an SDLC
Ability to prioritize security efforts to mitigate the appropriate risks
Ability to identify, analyze, and explain the present or future needs for proposed security initiatives to team leads
Ability to influence with empathy and compassion
Bonus: Experience with CI/CD practices and platform tools (Jenkins, Travis, GitHub, etc.)
Bonus: Background with containers and orchestration technologies (Docker, Kubernetes, Helm) 

Ideal candidates will thrive in our culture if they have a passion for:

Building quality products with a mindset on safety and security
Operating in a fast-moving and high-growth environment
Working as a team player with an entrepreneurial work ethic
Security, learning, and continuous improvement

Life at PTC is about more than working with today’s most cutting-edge technologies to transform the physical world. It’s about showing up as you are and working alongside some of today’s most talented industry leaders to transform the world around you. 

If you share our passion for problem-solving through innovation, you’ll likely become just as passionate about the PTC experience as we are. Are you ready to explore your next career move with us?

We respect the privacy rights of individuals and are committed to handling Personal Information responsibly and in accordance with all applicable privacy and data protection laws. Review our Privacy Policy here."