Vacancy expired!
- Focusing on enhancing the security of our applications
- Provide guidance to Engineering and Product teams
- Code scan to identify points of intrusion
- Financial Services industry experience a huge plus
- Serve as a SME for Application Security, providing guidance to Engineering and Product teams
- Design and lead the implementation of security related SDLC practices including code reviews, static/dynamic code analysis and vulnerability assessments
- Maintain awareness of known vulnerabilities in application technologies
- Lead research into suspected application vulnerabilities
- Lead efforts around secure development training for our Engineers
- Resolve security events, incidents, or conduct security assessments using penetration tests, ethical hacking tools, or risk mitigation methodologies to evaluate vulnerabilities
- Classify, store, and handle data in accordance with policy or best practices
- Work cross-functionally with other internal business units, such as, compliance and operations
- Help track and provide metrics, status updates and reports for security related projects
- Build processes supporting secure service delivery, supporting our DevOps teams.
- Bachelor's Degree in Computer Science, Software/Computing Engineering, Applied Mathematics, or related field
- 5 - 7 years of applicable experience
- Possess IT skills, security skills, analytics skills, and knowledge of the Financial Services Industry
- Prior experience securing large-scale web/mobile applications, including performing security code reviews, vulnerability assessments, and manual testing for logic flaws
- Familiarity with dynamic and static application security tools
- Experience performing thorough threat modeling of web applications
- The ability to effectively partner and communicate with Engineering and Product teams
- Experience assessing Node.js, Java, React, iOS and/or Android
- Intellectual curiosity to find new and unusual ways of how to solve cyber security issues
- Ability to approach cyber security challenges while keeping an eye on what is important
- Experience designing, building, and maintaining systems
- Ability to work with both IT and business units in integrating security principles with business operations
- Capable of creating and maintaining respectful, strong working relationships with business units from non-technical users to technical leads on projects to developers
- Strong verbal and written communication skills (English is the primary language)
- Knowledge of ITIL/ITSM Foundational practices and framework preferred