Talent.com
Senior Application Security Engineer
Senior Application Security EngineerUpbound Group • Draper, UT
Senior Application Security Engineer

Senior Application Security Engineer

Upbound Group • Draper, UT
30+ days ago
Job type
  • Full-time
Job description

Job Description

Senior Application Security Engineer

(Draper, Utah In-Office)

As a Senior Application Security Engineer for Upbound Group, you will work to support the various processes and procedures related to application security and gather information from product engineering teams related to these activities. You will make a difference in promoting a culture of security inside the engineering organization and work with engineers to produce more secure applications. You will work to both collect and disseminate information throughout the business to ensure processes and procedures are operating efficiently and effectively. You will support the developers in their efforts to secure our applications and assist in the documentation and tracking of various application security and cloud.

About Upbound

Upbound Group, Inc. (effective February 27, 2023 : NASDAQ : UPBD) is an omni-channel platform company committed to elevating financial opportunity for all through innovative, inclusive, and technology-driven financial solutions that address the evolving needs and aspirations of consumers. The Company’s customer-facing operating units include industry-leading brands such as Rent-A-Center and Acima that facilitate consumer transactions across a wide range of store-based and digital retail channels, including over 2,400 company branded retail units across the United States, Mexico and Puerto Rico. Upbound Group, Inc. is headquartered in Plano, Texas. Acima is headquartered in Draper Utah.

What You Will Do

  • Collaborate with engineers, consultants, and leadership to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC)
  • Build automated code scanning tools to identify security vulnerabilities in application code and infrastructure code using both open source and commercial tools Integrating open-source and / or commercial static application code scanning tools with the CI / CD Pipeline
  • Enable secure-by-default best practices by developing libraries and frameworks to prevent future vulnerabilities
  • Operate at enterprise scale by building and managing tools that help test, monitor, and improve application security
  • Develop security standards, preferred implementation patterns, secure common frameworks, and developer documentation and educational materials
  • Provide secure developer training to software engineers on how to write secure code and follow best practices
  • Conduct web app penetration testing, code scanning, dependency scanning that can be incorporated into SDLC process and CI / CD pipeline
  • Work closely and together with the development team to provide guidance and mitigate security vulnerabilities
  • Perform security architecture and design reviews of all systems and applications developed at Acima
  • Provide a leadership role in the development, implementation and maintenance of consistent application and infrastructure architecture security programs

Qualifications

  • 3+ years of experience working in an application security role
  • You have a background in web application development and / or code auditing and can get deep into the code to find and resolve security problems
  • You have experience with static and dynamic code analyzers
  • You have experience with software composition analysis tools
  • Web application penetration testing and source code vulnerability analysis skills
  • Extensive knowledge of internet security issues, cloud architectures, and threat landscape
  • General understanding of application and cloud security threats and vulnerabilities, including OWASP top 10, SANS top 25 etc.
  • Professional security certification : CISSP, GIAC, GWEB, GWAP or other similar credentials.
  • Experience with BurpSuite, Zed Attack Proxy (ZAP), or similar dynamic testing tool
  • Knowledge of current development practices, including containerized applications, microservice architectures, serverless architectures, native mobile applications, responsive web applications, etc. a plus

    • Benefits / Compensation

  • DTO (discretionary time off).
  • Medical insurance with United Healthcare (IHC network)
  • Health Savings Account (HSA) with company contribution.
  • Dental insurance (Cigna) and Vision insurance (United Healthcare)
  • Paid holidays
  • 401K match 6% / 3%
  • Free Dev lunches every Friday for locals
  • Fully stocked snack bar with beverages
  • Onsite gym and bike locker
  • College tuition reimbursement program (STEM)
  • Free car charging

    • #LI-RF1

    Create a job alert for this search

    Application Security Engineer • Draper, UT

    Similar jobs
    Cybersecurity Analyst

    Cybersecurity Analyst

    Unisys Corporation • Salt Lake City, UT, United States
    Full-time
    What success looks like in this role : .Performs a broad range of basic Cybersecurity Analysis tasks within an assigned organization or functional area. Monitors, analyzes, investigates and responds t...Show more
    Last updated: 30+ days ago • Promoted
    Sr. Security Analyst

    Sr. Security Analyst

    Lightspeed DMS • South Jordan, UT, US
    Full-time
    Lightspeed is a leading provider of cloud-based software for dealerships and Original Equipment Manufacturers (OEMs), serving the Powersport, Marine, RV, Trailer, Outdoor Power Equipment, and Golf ...Show more
    Last updated: 30+ days ago • Promoted
    Remote Investment Analyst – AI Trainer ($50-$60 / hour)

    Remote Investment Analyst – AI Trainer ($50-$60 / hour)

    Data Annotation • Lehi, Utah
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show more
    Last updated: 30+ days ago • Promoted
    Security Engineer

    Security Engineer

    BambooHR • Draper, UT, US
    Full-time
    Please Note : This is a Utah-based hybrid position which will require some regular in-office days each week.Additionally, employment with BambooHR is contingent on passing both a background and cred...Show more
    Last updated: 30+ days ago • Promoted
    Senior Networking Engineer (Rust / Systems-Level / Security)

    Senior Networking Engineer (Rust / Systems-Level / Security)

    Outcode Software • Draper, UT, US
    Full-time
    We’re seeking a seasoned.This role involves deep systems-level programming, protocol design, and secure data transport — all within a high-stakes, security-critical environment.You&rsqu...Show more
    Last updated: 30+ days ago • Promoted
    Senior SOC Analyst

    Senior SOC Analyst

    Sorenson • Salt Lake City, UT, US
    Full-time
    As a Senior SOC Analyst, you will serve as a senior lead responsible for monitoring, investigating, and responding to security threats. This role will focus on leading security investigations, incid...Show more
    Last updated: 30+ days ago • Promoted
    Sr. Solutions Engineer Prompt Security

    Sr. Solutions Engineer Prompt Security

    SentinelOne • Salt Lake, Utah, USA
    Full-time
    Solutions Engineer to join our United States go-to-market team focused on our Prompt Security business line.Youll be navigating an exciting landscape where innovation is constant and the ability to...Show more
    Last updated: 23 days ago • Promoted
    Information Security Analysts

    Information Security Analysts

    University of Utah • Salt Lake City, UT, US
    Full-time +1
    Information Security Analysts Job Summary Information Security Analysts The incumbent will play a critical role in safeguarding regulated data across the enterprise by monitoring and analyzing the ...Show more
    Last updated: 2 days ago • Promoted
    Data Center Technician 1

    Data Center Technician 1

    DataBank Holdings, Ltd. • Bluffdale, UT, United States
    Full-time
    DataBank's managed data center services are anchored in world-class facilities.Our customized technology solutions are designed to help customers effectively manage risk, improve technology perform...Show more
    Last updated: 30+ days ago • Promoted
    Lead Security Engineer - Cyber Security

    Lead Security Engineer - Cyber Security

    Relativity • Salt Lake City, UT, United States
    Full-time
    As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...Show more
    Last updated: 30+ days ago • Promoted
    Senior Manager Cyber Security – Defensive

    Senior Manager Cyber Security – Defensive

    Zions Bancorporation • Midvale, Utah, United States
    Full-time
    Senior Manager Cyber Security – Defensive Zions Bancorporation’s Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution.We provide our com...Show more
    Last updated: 7 days ago • Promoted
    GENERAL APPLICATION

    GENERAL APPLICATION

    HOGAN & ASSOCIATES CONSTRUCTION INC • Centerville, UT, US
    Full-time
    At Hogan & Associates Construction, we are always on the lookout for talented individuals to join our team, even if we’re not actively hiring for many positions at the moment.By submittin...Show more
    Last updated: 30+ days ago • Promoted
    Senior Security Engineer

    Senior Security Engineer

    GoodLeap • Lehi, UT, US
    Full-time
    GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, w...Show more
    Last updated: 30+ days ago • Promoted
    Cybersecurity Risk Assessor Senior

    Cybersecurity Risk Assessor Senior

    New Jersey Staffing • West Valley City, UT, US
    Full-time
    Intermountain Cybersecurity Program.The Intermountain Cybersecurity Program is broken into four distinct functions : Governance Risk and Compliance, Cyber Solutions, Cyber Advisory, and the Cyber Fu...Show more
    Last updated: 22 hours ago • Promoted • New!
    Cybersecurity Risk Assessor Senior

    Cybersecurity Risk Assessor Senior

    Columbus Staffing • West Valley City, UT, US
    Full-time
    Intermountain Cybersecurity Program.The Intermountain Cybersecurity Program is broken into four distinct functions : Governance Risk and Compliance, Cyber Solutions, Cyber Advisory, and the Cyber Fu...Show more
    Last updated: 1 day ago • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    KBR • Clearfield, Utah, USA
    Full-time
    KBR is Seeking a highly skilled and motivated Cybersecurity Engineer with a minimum three years of experience to join our KBR Clearfield Team. The successful candidate will play a critical role in p...Show more
    Last updated: 2 days ago • Promoted
    Senior Manager Cyber Security - Defensive

    Senior Manager Cyber Security - Defensive

    BankTalent HQ • Midvale, UT, United States
    Full-time
    Zions Bancorporation's Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution. With a commitment to technology and innovation, we have been...Show more
    Last updated: 5 days ago • Promoted
    Senior Security Engineer

    Senior Security Engineer

    MetTel • Salt Lake City, UT, US
    Full-time
    MetTel is a global communications solutions provider with the most complete suite of fully managed services that focus on secure connectivity, and network and mobility services.We simplify communic...Show more
    Last updated: 30+ days ago • Promoted