Application Security EngineerBAMM USA • New York, NY, United States
Application Security Engineer
BAMM USA • New York, NY, United States
24 days ago
Job type
- Full-time
Job description7+ years of experience as a developer with strong focus on Application Security. Development background with one or more of programming languages, C#, C++, Java, Python, .Net bility to read and understand code deficiencies - Required. bility to write code fixes for stakeholders and create automation scripts to support internal cybersecurity projects. Experience in developing and maturing CI / CD pipeline w.r.t code quality and detecting vulnerabilities. 4+ years of experience with Static Application Security Testing (SAST) or Dynamic App Security Testing (DAST) 2+ years of experience with container security issues and container technologies Through understanding of the components of the Secure Software Development Lifecycle Strong knowledge of OWASP Top 10 or CWE Understanding of common software threats and mitigations Must be process and detail oriented, ability to create detailed process documentation. Experience with Jira / Confluence Bug Bounty and / or penetration testing experience a bonus.
Hybrid : 2-3 days onsite in NYC
Role Description :
This role is part of a team responsible for administering security projects designed to safeguard Capital Market's information systems. The Senior Application Security Engineer focuses on working closely with development community to ensure any code being developed follows the prescribed SSDLC process and enterprise policies. Acts as a subject matter expert who uses expertise to resolve complex problems in consideration of established policies, guidelines or processes. Reports to Head of Cyber Security of Capital Markets with reporting lines into the regional CISO of Americas Division as well Capital Markets' COO.
The Senior Application Security Engineer will be responsible for ensuring that all code scanning vulnerabilities follow organizational policies and work closely with developers to ensure issues are fixed before releasing code to production. This candidate will have a strong development background and the ability to read and explain code deficiencies to stakeholders in various programming and scripting languages.
Role Objectives :
- Strong ability to work with stakeholders and being able to explain code issues and fixes to development community.
- You will work very closely with developers on day-to-day basis to ensure all projects follow the SDLC process and all code in the environment is scanned and reported focusing on SAST, SCA and Container Security issues.
- You will be responsible for managing respective code scanning tools in the stack and day to day operational management of the tools.
- Interface with development and security architecture teams on topics related to application security for example vulnerability remediation, best practices, threat modeling, etc.
- Interface with the vulnerability management team to ensure vulnerabilities identified are reported and validated according to SLA's
- Development of KPIs and metrics related to application security risk working closely with the Americas Division Application Security and Testing teams
- Publish and present high level management reports on State of AppSec Program within Capital Markets and Nikko entities.
- Some manual testing activities validate vulnerability or penetration testing findings
- Weekend and night work may be needed at times based on project, support, and business needs.
Qualifications and Skills :
Create a job alert for this search
Application Security Engineer • New York, NY, United States
Related jobs
A financial firm is looking for an.Perform Application Security scans (e.DAST and SCA) on applications and APIs to identify security vulnerabilities and weaknesses.
Triage security findings and coll...Show more
Perform comprehensive cybersecurity risk analysis, identifying and prioritizing risks specifically.Develop, socialize, and implement security strategies to address vulnerabilities in web.Track and ...Show more
We are seeking a highly motivated.Senior Application Security Engineer.Integral Ad Science (IAS) applications and products.
As a vital member of the Application Security team, you will collaborate w...Show more
The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City.
From delivering affordable broadb...Show more
Versana is an industry-backed fintech on a mission to make the syndicated loan market better.By digitally capturing agent banks' data on a real-time basis, Versana provides unprecedented transparen...Show more
Finance is the engine of the global economy.It decides which ideas get built, which companies rise, and how resources are allocated.
Yet it runs on slow tools and outdated technology.Our mission is ...Show more
At Apollo, we're a global team of alternative investment managers passionate about delivering uncommon value to our investors and shareholders.
With over 30 years of proven expertise across Private ...Show more
Are you interested in being part of Application Security efforts at Moveworks? Do you enjoy collaborating closely with engineers to develop secure solutions from the ground up and ensure they remai...Show more
Grade Level (for internal use) : .The Role : Cloud & Application Security Engineer.NY or NJ (hybrid 2 days onsite).Part of the SPGE Technology Security team accountable for the overall cyber security ...Show more
As a Senior Security Engineer within Platform Security at Datadog, you will play a vital role in securing our infrastructure for agentic applications.
This role will be critical in establishing and ...Show more
Senior Application Security Engineer.Location : Middletown, NJ (F2F Required, Onsite from Day.We are looking for a Senior Application Security Engineer to join our growing team and play a hands-on r...Show more
Brex is the AI-powered spend platform.We help companies spend with confidence with integrated corporate cards, banking, and global payments, plus intuitive software for travel and expenses.Tens of ...Show more
Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity.
The Security team protects OpenAI's technology, people, and products.We are...Show more
We are a specialized technology staffing agency supporting professional and financial services companies.Why do we stand out in technology staffing? We listen and act as advisors for our candidates...Show more
Lead Application Security Engineer.We are seeking a highly skilled and experienced Lead Application Security Engineer to join our Global Information Security team.
You will play a critical role in i...Show more
The Lead Application Security Engineer will partner with Security Engineering Enablement and Security Architecture to design and ship secure software : secure code reviews and help define requiremen...Show more
Job title : Senior Application Security Engineer.Corporate Title : Vice President.The pay range for this position at commencement of employment is expected to be between $145,000 and $175,00 / / year •.N...Show more
The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City.
From delivering affordable broadb...Show more
Application Security Engineer
Open Systems Technologies • New York, NY, United States
Full-time
Last updated: 3 days ago • Promoted
Senior Application Security Engineer
Network Temp Inc • New York, NY, United States
Full-time
Last updated: 24 days ago • Promoted
Senior Application Security Engineer
Integral Ad Science • New York, NY, United States
Full-time
Last updated: 3 days ago • Promoted
Senior Application Security Engineer
CITY OF NEW YORK INC • Brooklyn, NY, United States
Full-time
Last updated: 3 days ago • Promoted
Application Security Engineer
Versana • New York, NY, United States
Full-time
Last updated: 2 days ago • Promoted
Security Engineer, Application Security
Rogo • New York, NY, United States
Full-time
Last updated: 16 days ago • Promoted
Lead Application Security Engineer
Apollo Inc • New York, NY, United States
Full-time
Last updated: 3 days ago • Promoted
Application Security Engineer
MoveWorks, Inc. • New York, NY, United States
Full-time
Last updated: 30+ days ago • Promoted
Cloud & Application Security Engineer
S&P Global • New York, NY, United States
Full-time
Last updated: 3 days ago • Promoted
Senior Application Security Engineer
Datadog • New York, NY, United States
Full-time
Last updated: 3 days ago • Promoted
Senior Application Security Engineer
Yantran LLC • Middletown, NJ, United States
Full-time
Last updated: 24 days ago • Promoted
Senior Application Security Engineer
Brex • New York, NY, United States
Full-time
Last updated: 3 days ago • Promoted
Security Engineer, Application Security
OpenAI • New York, NY, United States
Full-time
Last updated: 16 days ago • Promoted
Lead Application Security Engineer
Eleven Recruiting • New York, NY, United States
Full-time
Last updated: 24 days ago • Promoted
Lead Application Security Engineer
Point72 • New York, NY, United States
Full-time
Last updated: 24 days ago • Promoted
Lead Application Security Engineer
Cox • Long Island City, NY, United States
Full-time
Last updated: 2 days ago • Promoted
Senior Application Security Engineer
Nomura International • New York, NY, United States
Full-time
Last updated: 3 days ago • Promoted
Senior Application Security Engineer
City of New York • New York, NY, United States
Full-time
Last updated: 24 days ago • Promoted