Information Security Analyst - Code and Vulnerability Analysis in Indiana

Information security analyst position that functions as primary security code auditor for the agency's primary application.

Key Responsibilities:

• Analyze code scan output from Veracode and SonarQube, along with remediation recommendations from these tools.
• Assess security risks associated with code vulnerabilities and develop a prioritization strategy that mitigates the most critical issues efficiently.
• Convert scan results and remediation recommendations into well-defined stories within Atlassian Jira, aligning with the Scaled Agile Framework (SAFe) for collaboration with development teams.
• Draft policies, procedures, and best practices for publication in Atlassian Confluence to ensure consistent security practices across the organization.
• Monitor and validate the completion of all remediation work through subsequent code scans.
• Provide regular progress updates to the information security manager.
• Collaborate...