Talent.com
Senior Application Security Engineer
Senior Application Security EngineerUpbound Group • Draper, UT
Senior Application Security Engineer

Senior Application Security Engineer

Upbound Group • Draper, UT
30+ days ago
Job type
  • Full-time
Job description

Job Description

Senior Application Security Engineer

(Draper, Utah In-Office)

As a Senior Application Security Engineer for Upbound Group, you will work to support the various processes and procedures related to application security and gather information from product engineering teams related to these activities. You will make a difference in promoting a culture of security inside the engineering organization and work with engineers to produce more secure applications. You will work to both collect and disseminate information throughout the business to ensure processes and procedures are operating efficiently and effectively. You will support the developers in their efforts to secure our applications and assist in the documentation and tracking of various application security and cloud.

About Upbound

Upbound Group, Inc. (effective February 27, 2023 : NASDAQ : UPBD) is an omni-channel platform company committed to elevating financial opportunity for all through innovative, inclusive, and technology-driven financial solutions that address the evolving needs and aspirations of consumers. The Company’s customer-facing operating units include industry-leading brands such as Rent-A-Center and Acima that facilitate consumer transactions across a wide range of store-based and digital retail channels, including over 2,400 company branded retail units across the United States, Mexico and Puerto Rico. Upbound Group, Inc. is headquartered in Plano, Texas. Acima is headquartered in Draper Utah.

What You Will Do

  • Collaborate with engineers, consultants, and leadership to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC)
  • Build automated code scanning tools to identify security vulnerabilities in application code and infrastructure code using both open source and commercial tools Integrating open-source and / or commercial static application code scanning tools with the CI / CD Pipeline
  • Enable secure-by-default best practices by developing libraries and frameworks to prevent future vulnerabilities
  • Operate at enterprise scale by building and managing tools that help test, monitor, and improve application security
  • Develop security standards, preferred implementation patterns, secure common frameworks, and developer documentation and educational materials
  • Provide secure developer training to software engineers on how to write secure code and follow best practices
  • Conduct web app penetration testing, code scanning, dependency scanning that can be incorporated into SDLC process and CI / CD pipeline
  • Work closely and together with the development team to provide guidance and mitigate security vulnerabilities
  • Perform security architecture and design reviews of all systems and applications developed at Acima
  • Provide a leadership role in the development, implementation and maintenance of consistent application and infrastructure architecture security programs

Qualifications

  • 3+ years of experience working in an application security role
  • You have a background in web application development and / or code auditing and can get deep into the code to find and resolve security problems
  • You have experience with static and dynamic code analyzers
  • You have experience with software composition analysis tools
  • Web application penetration testing and source code vulnerability analysis skills
  • Extensive knowledge of internet security issues, cloud architectures, and threat landscape
  • General understanding of application and cloud security threats and vulnerabilities, including OWASP top 10, SANS top 25 etc.
  • Professional security certification : CISSP, GIAC, GWEB, GWAP or other similar credentials.
  • Experience with BurpSuite, Zed Attack Proxy (ZAP), or similar dynamic testing tool
  • Knowledge of current development practices, including containerized applications, microservice architectures, serverless architectures, native mobile applications, responsive web applications, etc. a plus

    • Benefits / Compensation

  • DTO (discretionary time off).
  • Medical insurance with United Healthcare (IHC network)
  • Health Savings Account (HSA) with company contribution.
  • Dental insurance (Cigna) and Vision insurance (United Healthcare)
  • Paid holidays
  • 401K match 6% / 3%
  • Free Dev lunches every Friday for locals
  • Fully stocked snack bar with beverages
  • Onsite gym and bike locker
  • College tuition reimbursement program (STEM)
  • Free car charging

    • #LI-RF1

    Create a job alert for this search

    Application Security Engineer • Draper, UT

    Similar jobs
    Cybersecurity Analyst

    Cybersecurity Analyst

    Unisys Corporation • Salt Lake City, UT, United States
    Full-time
    What success looks like in this role : .Performs a broad range of basic Cybersecurity Analysis tasks within an assigned organization or functional area. Monitors, analyzes, investigates and responds t...Show more
    Last updated: 30+ days ago • Promoted
    Senior Solutions Engineer

    Senior Solutions Engineer

    Netcraft • Lehi, UT, US
    Full-time
    Netcraftis the global leader in cybercrime detection and disruption.Werea trusted partner for three of the four largest companies in the world and many large country. Our purpose, passion, andexpert...Show more
    Last updated: 10 days ago • Promoted
    Sr. Security Analyst

    Sr. Security Analyst

    Lightspeed DMS • South Jordan, UT, US
    Full-time
    Lightspeed is a leading provider of cloud-based software for dealerships and Original Equipment Manufacturers (OEMs), serving the Powersport, Marine, RV, Trailer, Outdoor Power Equipment, and Golf ...Show more
    Last updated: 30+ days ago • Promoted
    Applications Engineer II

    Applications Engineer II

    DMG MORI USA, INC • West Jordan, UT, US
    Full-time
    Monday through Friday, Core Business Hours.Annual Base Salary : $90,000+ depending on skill set and experience.Employment is conditioned on DMG MORI's ability to obtain and maintain any necessar...Show more
    Last updated: 30+ days ago • Promoted
    VP Technology, Security

    VP Technology, Security

    Robert Half • West Valley City, UT, US
    Full-time
    Join our executive leadership team as the VP of Information Security, responsible for steering enterprise-wide cybersecurity functions and strategy. Located in Salt Lake City, this pivotal role will...Show more
    Last updated: 9 days ago • Promoted
    Security Engineer

    Security Engineer

    BambooHR • Draper, UT, US
    Full-time
    Please Note : This is a Utah-based hybrid position which will require some regular in-office days each week.Additionally, employment with BambooHR is contingent on passing both a background and cred...Show more
    Last updated: 30+ days ago • Promoted
    Senior Networking Engineer (Rust / Systems-Level / Security)

    Senior Networking Engineer (Rust / Systems-Level / Security)

    Outcode Software • Draper, UT, US
    Full-time
    We’re seeking a seasoned.This role involves deep systems-level programming, protocol design, and secure data transport — all within a high-stakes, security-critical environment.You&rsqu...Show more
    Last updated: 30+ days ago • Promoted
    Senior SOC Analyst

    Senior SOC Analyst

    Sorenson • Salt Lake City, UT, US
    Full-time
    As a Senior SOC Analyst, you will serve as a senior lead responsible for monitoring, investigating, and responding to security threats. This role will focus on leading security investigations, incid...Show more
    Last updated: 30+ days ago • Promoted
    Advanced Software Engineer

    Advanced Software Engineer

    Relativity • Salt Lake City, UT, United States
    Full-time
    Are you looking for a hybrid or remote work opportunity? Are you looking for a role where you can develop user-facing AI features that reduce current user workflows by 10x.Are you seeking to join a...Show more
    Last updated: 30+ days ago • Promoted
    Data Center Technician 1

    Data Center Technician 1

    DataBank Holdings, Ltd. • Bluffdale, UT, United States
    Full-time
    DataBank's managed data center services are anchored in world-class facilities.Our customized technology solutions are designed to help customers effectively manage risk, improve technology perform...Show more
    Last updated: 30+ days ago • Promoted
    Lead Security Engineer - Cyber Security

    Lead Security Engineer - Cyber Security

    Relativity • Salt Lake City, UT, United States
    Full-time
    As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...Show more
    Last updated: 30+ days ago • Promoted
    Senior Manager Cyber Security – Defensive

    Senior Manager Cyber Security – Defensive

    Zions Bancorporation • Midvale, Utah, United States
    Full-time
    Senior Manager Cyber Security – Defensive Zions Bancorporation’s Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution.We provide our com...Show more
    Last updated: 8 days ago • Promoted
    GENERAL APPLICATION

    GENERAL APPLICATION

    HOGAN & ASSOCIATES CONSTRUCTION INC • Centerville, UT, US
    Full-time
    At Hogan & Associates Construction, we are always on the lookout for talented individuals to join our team, even if we’re not actively hiring for many positions at the moment.By submittin...Show more
    Last updated: 30+ days ago • Promoted
    Senior Security Engineer

    Senior Security Engineer

    GoodLeap • Lehi, UT, US
    Full-time
    GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, w...Show more
    Last updated: 30+ days ago • Promoted
    Forensic Engineer

    Forensic Engineer

    J2 Building Consultants • Salt Lake City, UT, US
    Full-time
    Salary : $90,000 - $125,000 Annually DOE.Licensed Professional Engineer (PE) - Forensic Engineer / Building Envelope Specialist. Do you thrive on solving complex building challenges and signing off on ...Show more
    Last updated: 30+ days ago • Promoted
    Senior Manager Cyber Security - Defensive

    Senior Manager Cyber Security - Defensive

    BankTalent HQ • Midvale, UT, United States
    Full-time
    Zions Bancorporation's Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution. With a commitment to technology and innovation, we have been...Show more
    Last updated: 6 days ago • Promoted
    Senior Security Engineer

    Senior Security Engineer

    MetTel • Salt Lake City, UT, US
    Full-time
    MetTel is a global communications solutions provider with the most complete suite of fully managed services that focus on secure connectivity, and network and mobility services.We simplify communic...Show more
    Last updated: 30+ days ago • Promoted
    Application Engineer

    Application Engineer

    Hartwig • Salt Lake City, UT, US
    Full-time
    CNC Machine Tool Application Engineer.Hartwig by working hand-in-hand with our Sales team to provide support and be a technical resource to ensure customer satisfaction. The customers we serve are i...Show more
    Last updated: 2 days ago • Promoted