Analyst, Application Security

B19010 - Digital Technology
Analyst, Application Security

The Analyst, Application Security will work as a member of a team supporting IT Security at Putnam, which includes:

  • Web Application Security
  • Secure Software Development, DevOps
  • Intrusion Detection and Incident Response
  • Log Analytics, Threat Hunting Dashboarding
  • Anti-malware solutions
  • Identity and Access Management
  • Email, Server, Desktop, Web, Network, and Application Security
  • Encryption
  • Data Loss Prevention
  • Cloud Security

The primary role will be to lead the Web Application Security & Secure Software Development program at Putnam. In this role the individual will manage our SAST, DAST, IAST and RASP product portfolio, work with software development teams to remediate identified vulnerabilities; develop, educate, promote and monitor the use of secure software development practices. As a member of the larger security organization, the individual will have additional responsibilities including providing full lifecycle support for security technologies, and conducting security assessments of both Putnam built and commercial applications.  Putnam’s IT Security team is located in both Andover and Boston, this role will be based at our Andover location with travel to the Boston location as needed.  During parts of the system life cycle, weekend and after-hours work will be required. 

  • A minimum of 6+ months of IT Security experience
  • Bachelor’s Degree with focus in Computer Science, MIS, or Engineering
  • Experience with Java is required. Familiarity with other languages like Python is also desirable.
  • Effective communication skills, independent thinking and the ability to develop concise and easily digestible documentation that is targeted for teams across the technology organization
  • Ability to multi-task in an extremely fast paced environment and the initiative to skill up on new technologies quickly
  • Familiarity with vulnerability scanning tools like Nexpose; with Web Application scanning tools like Burpsuite, and PEN testing tools like Metasploit. Experience with these specific named tools is not necessary.
  • Familiarity with OWASP Top 10, identifying and remediating vulnerabilities.
  • Experience developing web services, Spring Boot, Mashery, Kubernetes, Rancher and Harness are all desired
  • Experience working on Linux systems, and familiarity with SQL
  • Able to work within the overall standards set by Putnam for application development
  • Team oriented; flexible (having the willingness and ability to readily respond to changing circumstances)
  • Very responsive and a high-level commitment to assigned tasks
  • Helpful, positive attitude
  • Strong interpersonal skills

At Putnam we are committed to a diverse workforce and take positive steps to ensure equal opportunity in our recruitment process. We also undertake to hire, develop and retain the most talented individuals by valuing the varied skills that you bring.

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions