Share this Job

Information Security Analyst

Date:  Jul 24, 2021

Pune, IN

Requisition ID:  29995

About Avaya

Businesses are built by the experiences they provide, and every day millions of those experiences are delivered by Avaya Holdings Corp. (NYSE: AVYA). Avaya is shaping what's next for the future of work, with innovation and partnerships that deliver game-changing business benefits. Our cloud communications solutions and multi-cloud application ecosystem power personalized, intelligent, and effortless customer and employee experiences to help achieve strategic ambitions and desired outcomes. Together, we are committed to help grow your business by delivering Experiences that Matter. Learn more at www.avaya.com.

About The Opportunity

The incumbent will share responsibility for a variety of aspects of application security globally and is responsible for improving the security of our IT, Cloud solutions environment and supporting technology platforms. Key responsibilities of this position include utilization of strong manual application penetration skills for the testing of application security, clouds security and network security of regulatory solution environments (PCI, HIPAA, SOC2),building partnerships with IT and engineering teams to be a source of expertise in application security best practices, performing threat modeling, architecture reviews, vulnerability assessment, penetration testing and application testing to ensure critical vulnerabilities are identified, communicated to team members, and driving delivery of mitigations/remediation, developing and delivering security training to software engineers, researching emerging technologies and maintain awareness of current security risks in support of security enhancement and development efforts, implementing tools to test and enforce application security policy as part of the DevSecOps pipeline, maintaining current situational awareness of trends in cybersecurity threats and specific Avaya organizational threats and able to communicate these issues effectively to Management, Security Operations and Development members, using appropriate interpersonal styles and subject matter knowledge to partner, gain trust and influence across the organization, delivering best in class customer service to both internal and external customers.

About The Responsibilities

  1. Conduct thorough vulnerability and penetration testing of Avaya Solution;
  2. Analytical skills with a proactive approach;
  3. Develop strong relationships with key developers across the region to ensure security initiatives are understood and are supportive of moving business forward in a secure and ethical manner.
  4. Liaise with all project, technical & development teams, both internal and 3rd party;
  5. Negotiate customer application security requirements;
  6. Ensure protection of Avaya applications and solutions through awareness, implementation of technology and application security principles relating to asset protection, information protection and data privacy;
  7. Provide ad-hoc knowledge and support on security related issues and requirements as they arise.

About The Requirements



Bachelor’s degree in computer engineering, computer science, or related field preferred.  5+ years’ experience in some combination of web application security, cloud security, infrastructure security, penetration testing, secure software development, security tools development, architecture review, with a total of seven or more years of information technology experience. Industry certification a plus (CEH, OCSP, CASE, CASS, GWEB. etc)  


Knowledge Skills and Abilities
The incumbent must: 

1.possess a solid grounding in information security principles and passion for security;
2.possess a deep understanding of manual web application security testing;
3.possess the Ability to perform technical analysis of complex software, systems, hardware, and network environments;
4.possess experience in some combination of web application security, cloud security, infrastructure security, penetration testing, secure software development, security tools development, architecture review;
5.Project management - ability to deliver to aggressive deadlines while working complex projects across multiple groups and geographies;
6.Excellent facilitation and communication skills ability to partner, gain trust, influence coordinate and motivate resources;
7.Experience using web application vulnerability scanning tools (Burp Suite Pro, ZAP Proxy, Netsparker, Qualys, Postman);
8.Experience with secure coding standards preferably with participation in open forums such as OWASP;
9.Experience securing Linux server and container orchestration environments (Kubernetes).
10.Experience securing cloud IAAS and PAAS environments (Azure, Google Cloud, AWS);
11.Experience integrating security into DevOps pipeline including static analysis, dependency scanning, dynamic testing
12.Previous experience establishing and utilizing measurements, processes, and metrics to manage support activities.
13.Experience with encryption technologies and methods.
14.Knowledge of mobile application and device security (iOS / Android)
15.Experience with C#, JavaScript and Node.js development
16.Strong scripting skills (Python, Powershell, shell script)
17.understand business processes; 
18.possess strong communication skills (both written and oral); 
19.demonstrate high levels of motivation and achieve success without task-by-task direction; 
20.act with the highest levels of professionalism and integrity; 
21.exhibit tact, discretion and diplomacy;be able to work and effectively interact with all levels of management; and treat others with respect.


8 - 12 Years of Experience


Bachelor degree or equivalent experience

Preferred Certifications


Avaya is an Equal Opportunity employer and a U.S. Federal Contractor. Our commitment to equality is a core value of Avaya. All qualified applicants and employees receive equal treatment without consideration for race, religion, sex, age, sexual orientation, gender identity, national origin, disability, status as a protected veteran or any other protected characteristic. In general, positions at Avaya require the ability to communicate and use office technology effectively. Physical requirements may vary by assigned work location. This job brief/description is subject to change. Nothing in this job description restricts Avaya right to alter the duties and responsibilities of this position at any time for any reason. You may also review the Avaya Global Privacy Policy (accessible at https://www.avaya.com/en/privacy/policy/) and applicable Privacy Statement relevant to this job posting (accessible at https://www.avaya.com/en/documents/info-applicants.pdf).