Analyst Application Security
Analyst Application Security
cybersecurity Security Analysis and Design
QP Code
SSC/Q0903
NSQF Level
5
Brief Job Description
Individuals at this job are responsible for vulnerability assessment for applications, performing source code review, testing the source code, suggesting remediation actions, perform hardening and monitor organizations traffic and logs for threats.
Personal Attributes
This job may require the individual to work independently and take decisions for his/her own area of work. The individual should be result oriented and have a high attention for detail. The individual should also be able to demonstrate communication skills, logical thinking along with willingness to undertake desk-based job with long hours.
Role Map
Technology
Cybersecurity
Job Category
Security Analysis and Design
Job Track
App Security
Roles
Analyst Application Security
NSQF Level: 7
Technical Competencies
Key job task/function that an individual has to perform as a part of the job. These are also known as National Occupational Standards (NOS).
7
7 Compulsory
Identify exposures and weaknesses in applications and their deployments
This unit is about performing application vulnerability assessment.
Harden application and deployment configurations for minimizing exposure and vulnerabilities
This unit is about performing hardening activities such as secure configurations, removing unauthorized applications and updating authorized patches, etc. in order to minimize exposure and vulnerabilities.
Monitor applications and solutions deployed their security for possible breaches and compromises
This unit is about monitoring the events in application consoles and raising incidents based on the 1st level analysis and following up to ensure response within agreed timelines
Manage your work to meet requirements
This unit is about planning and organizing your work in order to complete it to the required standards on time.
Work effectively with colleagues
This unit is about working effectively with colleagues, either in your own work group or in other work groups within your organization.
Provide information in standard formats
This unit is about providing specified data/information related to your work in templates or other standard formats.
Maintain an inclusive, environmentally sustainable workplace
The unit is about implementing and improving diversity equality and inclusion in a sustainable and environment friendly workplace
Supplementary Topics
Advanced topics that will help you excel in this role
Cryptography
Data Privacy Safeguards
Cloud Workload Protection
SaaS and API Security
Popular Tools Used by Analyst Application Security
Open Source Scanning & Monitoring tools
SQL map
Nessus
Nmap
Metasploit
Prometheus
Nagios
Icinga
Open Source Code Scanning tools
Gosec
Agnitio
Checkmarx
Fortify Statis Code Analyser
Penetration Testing tools
Netsparker
Wireshark
SqlMap
Netsparker
Burp Suite
Nessus
Canvas
Firewall Management tools
Redseal
Tufin
AlgoSec
Patch Management software
Solar Winds Patch Manager
ManageEnginer
SIEM tools
Apache Metron
Alien Vault
Snort
Log analysis tools
Nagios
ELK Stack
Graylog
Programming and Scripting Tools
Java
JavaScript
Perl
Ruby
Python
PHP