Vulnerability Analyst I

Job Description

Dynamic Yield, a Mastercard company, is a global technology company focused on connecting and powering an inclusive digital economy. Our mission is to make transactions safe, simple, smart, and accessible for everyone, everywhere. Our culture, driven by our decency quotient (DQ), fosters an environment where innovation and passion unlock priceless possibilities. The Vulnerability Management team is a dedicated group of experts responsible for conducting security testing of Mastercard applications and networks. This team comprises network and application security professionals skilled in penetration testing of web applications, mobile applications, APIs, cloud-hosted applications, containers, and on-premises data centers. As a Vulnerability Analyst I , you will be a hands-on professional in application security testing, delivering on individual assignments and collaborating within a multi-location team environment. The Role As a Vulnerability Analyst I, you will: Security Testing Execution: Ensure all web and mobile application security tests are conducted within Mastercard's established framework. Tool & Case Utilization: Ensure all test cases and tools are used appropriately for testing various application types. Developer Guidance: Provide comprehensive help and guidance to development teams on identified vulnerabilities in their applications during security testing. Continuous Improvement: Identify improvement areas within the security testing domain and implement learnings for the globally located team. Stakeholder Coordination: Coordinate effectively with application development teams regarding their demands for security testing, providing a seamless experience with testing and reporting of penetration tests. Global Collaboration: Be ready to work collaboratively with a global team spread across different time zones and geographies. All About You Application Security Testing: A proven record of successful delivery of application security testing projects, both as an individual contributor and potentially as a team leader. Communication & Collaboration: Excellent communicator and collaborator, capable of building strong rapport and relationships across teams. Problem Solving: Possess a proactive problem-solver and solution-seeking approach. SDLC Knowledge: Understand the full scope of the Secure Software Development Lifecycle (S-SDLC). Certifications (Preferred): Preferably a certified OSCP or SANS GMOB, ESCA , or equivalent certification is a must. Bonus Experience: Experience in cloud-based application testing or participation in Bug Bounty programs will be an added benefit.