Senior Application Security EngineerUpbound Group • Draper, UT
Senior Application Security Engineer
Upbound Group • Draper, UT
30+ days ago
Job type
- Full-time
Job description3+ years of experience working in an application security role You have a background in web application development and / or code auditing and can get deep into the code to find and resolve security problems You have experience with static and dynamic code analyzers You have experience with software composition analysis tools Web application penetration testing and source code vulnerability analysis skills Extensive knowledge of internet security issues, cloud architectures, and threat landscape General understanding of application and cloud security threats and vulnerabilities, including OWASP top 10, SANS top 25 etc. Professional security certification : CISSP, GIAC, GWEB, GWAP or other similar credentials. Experience with BurpSuite, Zed Attack Proxy (ZAP), or similar dynamic testing tool Knowledge of current development practices, including containerized applications, microservice architectures, serverless architectures, native mobile applications, responsive web applications, etc. a plus DTO (discretionary time off). Medical insurance with United Healthcare (IHC network) Health Savings Account (HSA) with company contribution. Dental insurance (Cigna) and Vision insurance (United Healthcare) Paid holidays 401K match 6% / 3% Free Dev lunches every Friday for locals Fully stocked snack bar with beverages Onsite gym and bike locker College tuition reimbursement program (STEM) Free car charging
Job Description
Senior Application Security Engineer
(Draper, Utah In-Office)
As a Senior Application Security Engineer for Upbound Group, you will work to support the various processes and procedures related to application security and gather information from product engineering teams related to these activities. You will make a difference in promoting a culture of security inside the engineering organization and work with engineers to produce more secure applications. You will work to both collect and disseminate information throughout the business to ensure processes and procedures are operating efficiently and effectively. You will support the developers in their efforts to secure our applications and assist in the documentation and tracking of various application security and cloud.
About Upbound
Upbound Group, Inc. (effective February 27, 2023 : NASDAQ : UPBD) is an omni-channel platform company committed to elevating financial opportunity for all through innovative, inclusive, and technology-driven financial solutions that address the evolving needs and aspirations of consumers. The Company’s customer-facing operating units include industry-leading brands such as Rent-A-Center and Acima that facilitate consumer transactions across a wide range of store-based and digital retail channels, including over 2,400 company branded retail units across the United States, Mexico and Puerto Rico. Upbound Group, Inc. is headquartered in Plano, Texas. Acima is headquartered in Draper Utah.
What You Will Do
- Collaborate with engineers, consultants, and leadership to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC)
- Build automated code scanning tools to identify security vulnerabilities in application code and infrastructure code using both open source and commercial tools Integrating open-source and / or commercial static application code scanning tools with the CI / CD Pipeline
- Enable secure-by-default best practices by developing libraries and frameworks to prevent future vulnerabilities
- Operate at enterprise scale by building and managing tools that help test, monitor, and improve application security
- Develop security standards, preferred implementation patterns, secure common frameworks, and developer documentation and educational materials
- Provide secure developer training to software engineers on how to write secure code and follow best practices
- Conduct web app penetration testing, code scanning, dependency scanning that can be incorporated into SDLC process and CI / CD pipeline
- Work closely and together with the development team to provide guidance and mitigate security vulnerabilities
- Perform security architecture and design reviews of all systems and applications developed at Acima
- Provide a leadership role in the development, implementation and maintenance of consistent application and infrastructure architecture security programs
Qualifications
Benefits / Compensation
#LI-RF1
Create a job alert for this search
Application Security Engineer • Draper, UT
Related jobs
ELIGIBLE FOR UP TO A $16K SIGNING BONUS.Talk to your recruiter for details.As an Electromagnetic Warfare Specialist, you'll plan and execute electronic warfare operations.You'll be trained to detec...Show more
At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come.Our pioneering and i...Show more
Are you looking for an opportunity to combine your technical skills with big picture thinking to make an impact in national security? You understand your customer's environment and how to devel...Show more
The Cloud Security Center of Excellence within Fidelity Enterprise Cyber Security (ECS) is seeking a cloud or data platforms focused security engineer who has broad security domain knowledge includ...Show more
Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA.The 2,000+ employees of Draper tackle important national challenges with a promise of delivering ...Show more At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come.Our pioneering and i...Show more 
TANGIBLE Corporation (gTC) is a Service Disabled Veteran Owned Small Business (SDVOSB) and a registered Government contractor that provides services and solutions in : National Security Programs, Pr...Show more
ECI) is a leading power engineering consultant firm that provides engineering, system planning and studies, technical consultation, project management, surveying, environmental planning, commission...Show more
Senior Manager Leading All Aspects Of Security Risk And Governance.As our Senior Manager leading all aspects of Security Risk and Governance, you will spearhead the advancement of our security risk...Show more
Zions Bancorporation's Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution.
With a commitment to technology and innovation, we have been...Show more
DMBA provides a variety of benefits including health, life, and retirement to employees of the Church of Jesus Christ of Latter-day Saints and its affiliates.
DMBA began operations in 1970 and is no...Show more
We are obsessed with the hero's journey at JobNimbus.Every person has a hero's journey—Hermione Granger, James T.Kirk, Frodo Baggins, Anna & Elsa, Nacho Libre, and even YOU!.This is our &...Show more
Senior Product Manager, Platform Data and Security.Since its inception in 2003, driven by visionary college students transforming online rent payment, Entrata has evolved into a global leader servi...Show more
We are seeking an AWS Detection Engineer to join our team in support of the GSM-O II effort.This position allows a hybrid schedule, and candidates can work out of Scott AFB, IL; Whitehall, OH; or H...Show more Zions Bancorporation has an opportunity for an.Application / Platform Systems Engineer.JSON, application administration, Salesforce, and ITSM experience and eager to work with various technologies to...Show more 
At E2METRIX, we offer you the opportunity to expand your skills and professional.As an Application Engineer with the.PFAS water treatment equipment.
The role is based in our Salt Lake City office, a...Show more
At Maverik, we don’t just offer jobs, we offer adventures.As an Information Security Architect, you’ll partner with teams across the business to ensure new tools, systems, and services are introduc...Show more Senior Associate, Industrial Security.This is a multi-faceted security position requiring a qualified security professional in support of multiple special access programs.The Contractor Program Sec...Show more Industrial Security Analyst / Principal Industrial Security Analyst.At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives arou...Show more ![SOAR Engineer [Job ID 20250924]](https://cdn-logos.talent.com/v1/logo/image?feedcode=jazzhr-ats&company_name=Phoenix%20Cyber)
Phoenix Cyber is looking for a SOAR Consultant to support a commercial client.This is a 100% remote, work-from-home position anywhere in the continental United States.Minimum 2 years of S...Show more
Electronic Warfare Specialist
United States Army • Salt Lake City, Utah, US
Full-time
Last updated: 30+ days ago • Promoted
SDS - Security Coordinator 4 (15699)
Northrop Grumman • Roy, UT, US
Full-time
Last updated: 23 days ago • Promoted
System Engineer, Lead
BOOZ, ALLEN & HAMILTON, INC. • Clearfield, UT, US
Full-time +1
Last updated: 30+ days ago • Promoted
Director, Cloud Security Specialist
Fidelity Investments • Salt Lake City, UT, United States
Full-time
Last updated: 1 day ago • Promoted
Senior Mixed Signal Electronics Design Engineer
Draper Labs • Clearfield, UT, United States
Full-time
Last updated: 2 days ago • Promoted
Security Coordinator 4 (16019&16018)
Northrop Grumman • Roy, UT, US
Full-time
Last updated: 30+ days ago • Promoted
Site Security Manager I
Clearance Jobs • Clearfield, UT, US
Full-time
Last updated: 30+ days ago • Promoted
Protection Engineer
Electrical Consultants, Inc. • Woods Cross, UT, USA
Full-time
Quick Apply
Last updated: 30+ days ago
Sr. Manager Risk & Governance
Adobe • Lehi, UT, US
Full-time
Last updated: 30+ days ago • Promoted
Enterprise Architect - Security
BankTalent HQ • Midvale, UT, United States
Full-time
Last updated: 2 days ago • Promoted
Information Security Engineer, Jr - 2 Year Contract ( IAM and Platforms )
Deseret Mutual Benefit Administrators • Salt Lake City, UT, USA
Full-time
Quick Apply
Last updated: 30+ days ago
Senior Platform Engineer
JobNimbus • Lehi, UT, US
Full-time
Quick Apply
Last updated: 30+ days ago
Senior Product Manager, Platform Data and Security
Entrata • Lehi, UT, US
Part-time
Last updated: 30+ days ago • Promoted
AWS Detection Engineer
Leidos • Hill Air Force Base, UT, US
Full-time
Last updated: 30+ days ago • Promoted
Application / Platform Systems Engineer
BankTalent HQ • Salt Lake City, UT, United States
Full-time
Last updated: 2 days ago • Promoted
Application Engineer- PFAS Solutions
Ovivo • Salt Lake City, UT, USA
Full-time
Quick Apply
Last updated: 30+ days ago
Information Security Architect
Maverik Inc. • Salt Lake City, UT, US
Full-time
Last updated: 26 days ago
Senior Associate, Industrial Security
Clearance Jobs • Salt Lake City, UT, US
Full-time
Last updated: 30+ days ago • Promoted
SDS - Industrial Security Analyst (Level 2 or 3) (12597-1)
Clearance Jobs • Roy, UT, US
Full-time
Last updated: 30+ days ago • Promoted
SOAR Engineer [Job ID 20250924]
Phoenix Cyber • Salt Lake City, UT, US
Full-time
Quick Apply
Last updated: 24 days ago