Security Analyst - DevSecOps
McKinsey & Company
IT
Bengaluru, Karnataka, India · Gurugram, Haryana, India
Posted on Mar 11, 2025
Security Analyst - DevSecOps
Job ID: 95962
Do you want to work on complex and pressing challenges—the kind that bring together curious, ambitious, and determined leaders who strive to become better every day? If this sounds like you, you’ve come to the right place.
Your Impact
As a Security Analyst you will be responsible for conducting Security Assessments on new or existing products and architecture by reviewing security questionnaires.
You will perform threat modeling & security assessments for products, analyze security issues and coordinate triage, tracking and remediation, provide consultation and educate developers in cyber security, and partner with security engineering, product teams and SRE to integrate secure development practices in software development.
Your Growth
The Product Security team is looking for a Security Analyst to help in reviewing secure development practices within a fast-paced, agile environment.
Sitting within the CyberSecurity Services area, you will establish security requirements & help Security managers in driving adoption strategies, perform threat modeling, risk assessments, and conduct secure architecture reviews. By following a shift-left approach, you will work closely with security engineering teams to integrate security early in the development process. The ideal candidate is a security expert aspirant who can effectively collaborate with stakeholders to enhance the overall security posture of our products.
Your qualifications and skills
- 2+ years of experience in a similar information security role
- Understanding of DevSecOps principles, integrating security into CI/CD pipelines & Familiarity with Policy as Code
- Experience with security concepts, technologies and tooling, e.g. vulnerability management tools, SCA, SAST, DAST, RASP, IAM
- Experience of conducting risk assessments, threat modeling and information security reviews
- Excellent problem solving, organizational skills, and attention to detail
- Strong written and verbal communication
Please review the additional requirements regarding essential job functions of McKinsey colleagues.
FOR U.S. APPLICANTS: McKinsey & Company is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by applicable law.
FOR NON-U.S. APPLICANTS: McKinsey & Company is an Equal Opportunity employer. For additional details regarding our global EEO policy and diversity initiatives, please visit our McKinsey Careers and Diversity & Inclusion sites.
share this job
Job Skill Group - CSSA
Job Skill Code - ISAN - Security Analyst
Function - Technology
Industry - High Tech
Post to LinkedIn - #LI-DNI
Posted to LinkedIn Date -
LinkedIn Posting City -
LinkedIn Posting State/Province -
LinkedIn Posting Country -
LinkedIn Job Title - Security Analyst - DevSecOps
LinkedIn Function -
LinkedIn Industry -
LinkedIn Seniority Level -
Job Skill Code - ISAN - Security Analyst
Function - Technology
Industry - High Tech
Post to LinkedIn - #LI-DNI
Posted to LinkedIn Date -
LinkedIn Posting City -
LinkedIn Posting State/Province -
LinkedIn Posting Country -
LinkedIn Job Title - Security Analyst - DevSecOps
LinkedIn Function -
LinkedIn Industry -
LinkedIn Seniority Level -