Security Analyst
Monitoring, detecting, and responding to information security incidents
Stufe:
Security
18 Fähigkeiten · 90 Anforderungen| Fähigkeit | Junior | Middle | Senior | Lead | Principal |
|---|---|---|---|---|---|
| Application Security | |||||
| OWASP & Application Security | Awareness | Working | Advanced | Expert | Expert |
| Secure Coding Practices | Awareness | Working | Advanced | Expert | Expert |
| SAST/DAST | Awareness | Working | Advanced | Expert | Expert |
| Threat Modeling | Awareness | Working | Advanced | Expert | Expert |
| Dependency Vulnerability Scanning | Awareness | Working | Advanced | Expert | Expert |
| Infrastructure Security | |||||
| Secrets Management | Awareness | Working | Advanced | Expert | Expert |
| Network Security | Awareness | Working | Advanced | Expert | Expert |
| Cloud Security | Awareness | Working | Advanced | Expert | Expert |
| Kubernetes Security | Awareness | Working | Advanced | Expert | Expert |
| Authentication & Authorization | |||||
| JWT / OAuth2 / OIDC | Awareness | Working | Advanced | Expert | Expert |
| RBAC / ABAC Authorization | Awareness | Working | Advanced | Expert | Expert |
| Compliance | |||||
| GDPR / 152-FZ Compliance | Awareness | Working | Advanced | Expert | Expert |
| SOC2 Compliance | Awareness | Working | Advanced | Expert | Expert |
| PCI DSS | Awareness | Working | Advanced | Expert | Expert |
| Supply Chain Security | |||||
| Supply Chain Security | Awareness | Working | Advanced | Expert | Expert |
| Incident Response | |||||
| Incident Response Process | Awareness | Working | Advanced | Expert | Expert |
| Digital Forensics Basics | Awareness | Working | Advanced | Expert | Expert |
| Vulnerability Management | Awareness | Working | Advanced | Expert | Expert |