Talent.com
Senior Application Security Engineer
Senior Application Security EngineerUpbound Group • Draper, UT
Senior Application Security Engineer

Senior Application Security Engineer

Upbound Group • Draper, UT
30+ days ago
Job type
  • Full-time
Job description

Job Description

Senior Application Security Engineer

(Draper, Utah In-Office)

As a Senior Application Security Engineer for Upbound Group, you will work to support the various processes and procedures related to application security and gather information from product engineering teams related to these activities. You will make a difference in promoting a culture of security inside the engineering organization and work with engineers to produce more secure applications. You will work to both collect and disseminate information throughout the business to ensure processes and procedures are operating efficiently and effectively. You will support the developers in their efforts to secure our applications and assist in the documentation and tracking of various application security and cloud.

About Upbound

Upbound Group, Inc. (effective February 27, 2023 : NASDAQ : UPBD) is an omni-channel platform company committed to elevating financial opportunity for all through innovative, inclusive, and technology-driven financial solutions that address the evolving needs and aspirations of consumers. The Company’s customer-facing operating units include industry-leading brands such as Rent-A-Center and Acima that facilitate consumer transactions across a wide range of store-based and digital retail channels, including over 2,400 company branded retail units across the United States, Mexico and Puerto Rico. Upbound Group, Inc. is headquartered in Plano, Texas. Acima is headquartered in Draper Utah.

What You Will Do

  • Collaborate with engineers, consultants, and leadership to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC)
  • Build automated code scanning tools to identify security vulnerabilities in application code and infrastructure code using both open source and commercial tools Integrating open-source and / or commercial static application code scanning tools with the CI / CD Pipeline
  • Enable secure-by-default best practices by developing libraries and frameworks to prevent future vulnerabilities
  • Operate at enterprise scale by building and managing tools that help test, monitor, and improve application security
  • Develop security standards, preferred implementation patterns, secure common frameworks, and developer documentation and educational materials
  • Provide secure developer training to software engineers on how to write secure code and follow best practices
  • Conduct web app penetration testing, code scanning, dependency scanning that can be incorporated into SDLC process and CI / CD pipeline
  • Work closely and together with the development team to provide guidance and mitigate security vulnerabilities
  • Perform security architecture and design reviews of all systems and applications developed at Acima
  • Provide a leadership role in the development, implementation and maintenance of consistent application and infrastructure architecture security programs

Qualifications

  • 3+ years of experience working in an application security role
  • You have a background in web application development and / or code auditing and can get deep into the code to find and resolve security problems
  • You have experience with static and dynamic code analyzers
  • You have experience with software composition analysis tools
  • Web application penetration testing and source code vulnerability analysis skills
  • Extensive knowledge of internet security issues, cloud architectures, and threat landscape
  • General understanding of application and cloud security threats and vulnerabilities, including OWASP top 10, SANS top 25 etc.
  • Professional security certification : CISSP, GIAC, GWEB, GWAP or other similar credentials.
  • Experience with BurpSuite, Zed Attack Proxy (ZAP), or similar dynamic testing tool
  • Knowledge of current development practices, including containerized applications, microservice architectures, serverless architectures, native mobile applications, responsive web applications, etc. a plus

    • Benefits / Compensation

  • DTO (discretionary time off).
  • Medical insurance with United Healthcare (IHC network)
  • Health Savings Account (HSA) with company contribution.
  • Dental insurance (Cigna) and Vision insurance (United Healthcare)
  • Paid holidays
  • 401K match 6% / 3%
  • Free Dev lunches every Friday for locals
  • Fully stocked snack bar with beverages
  • Onsite gym and bike locker
  • College tuition reimbursement program (STEM)
  • Free car charging

    • #LI-RF1

    Create a job alert for this search

    Senior Application Security Engineer • Draper, UT

    Related jobs
    Security Engineer

    Security Engineer

    META • Salt Lake City, UT, United States
    Full-time
    Meta), formerly known as Facebook Inc.When Facebook launched in 2004, it changed the way people connect.Apps and services like Messenger, Instagram, and WhatsApp further empowered billions around t...Show more
    Last updated: 20 days ago • Promoted
    Senior Cybersecurity Engineer (Software Security)

    Senior Cybersecurity Engineer (Software Security)

    Avetta • Lehi, UT, United States
    Full-time
    Avetta's SaaS platform connects the world's leading organizations with qualified suppliers, contractors, and vendors.We bring unmatched visibility to companies through cloud-based technology and hu...Show more
    Last updated: 11 days ago • Promoted
    Enterprise Architect - Security

    Enterprise Architect - Security

    BankTalent HQ • Midvale, UT, United States
    Full-time
    Zions Bancorporation's Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution. With a commitment to technology and innovation, we have been...Show more
    Last updated: 30+ days ago • Promoted
    Security Engineer II

    Security Engineer II

    Trustmark • Salt Lake City, UT, United States
    Full-time
    Trustmark's mission is to improve wellbeing - for everyone.It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust.Tr...Show more
    Last updated: 30+ days ago • Promoted
    Security Engineer

    Security Engineer

    University of Utah • Salt Lake City, UT, United States
    Full-time +1
    Information Security Engineers.Monday-Friday, Typically 8am-5pm.CHPC Ctr for High Perform Computing.Priority Review Date (Note - Posting may close at any time). The University of Utah’s Center for H...Show more
    Last updated: 20 days ago • Promoted
    Senior Manager Cyber Security – Defensive

    Senior Manager Cyber Security – Defensive

    Zions Bancorporation • Midvale, Utah, USA
    Full-time
    Zions Bancorporations Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution. With a commitment to technology and innovation we have been p...Show more
    Last updated: 9 days ago • Promoted
    Senior Security Analyst

    Senior Security Analyst

    Carta • Sandy, Utah, USA
    Full-time
    Carta connects founders investors and limited partners through world-class software purpose-built for everyone in venture capital private equity and private credit. Trusted by 65000 companies in 160...Show more
    Last updated: 16 days ago • Promoted
    Application Penetration Tester

    Application Penetration Tester

    ASM Research, An Accenture Federal Services Company • Salt Lake City, UT, United States
    Full-time
    As an Application Security Penetration Tester, you will be entrusted with the critical responsibility of safeguarding web applications and REST APIs from potential threats.Your role will require a ...Show more
    Last updated: 20 days ago • Promoted
    Senior Security Engineer - Data Loss Prevention Operations

    Senior Security Engineer - Data Loss Prevention Operations

    Oracle • Salt Lake City, UT, United States
    Full-time
    Our rapidly growing team specializes in threat hunting, analyzing indicators of compromise (IOCs), investigating security incidents, managing incident responses, and conducting digital forensics ac...Show more
    Last updated: 20 days ago • Promoted
    Security Engineer

    Security Engineer

    O.C. Tanner • Salt Lake City, UT, United States
    Full-time
    Tanner is the global leader in software and services that improve workplace culture through meaningful employee experiences. Our Culture Cloud is a suite of apps designed to enhance the employee exp...Show more
    Last updated: 17 days ago • Promoted
    Senior Manager Cyber Security - Defensive

    Senior Manager Cyber Security - Defensive

    Zions Bank • Midvale, UT, United States
    Full-time
    Zions Bancorporation's Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution. With a commitment to technology and innovation, we have been...Show more
    Last updated: 10 days ago • Promoted
    Security Engineer

    Security Engineer

    Sun West Bank • Sandy, UT, United States
    Full-time
    Design and support secure infrastructure across cloud and on-prem environments while managing key security tools and processes. This role focuses on integrating security into development workflows, ...Show more
    Last updated: 20 days ago • Promoted
    Senior DevOps Engineer Security

    Senior DevOps Engineer Security

    Versaterm • Salt Lake, Utah, USA
    Full-time
    Versaterm is a global public safety solutions company helping agencies transform how they serve their communities.Since 1977 weve been building an ecosystem of intuitive tools designed for public s...Show more
    Last updated: 16 days ago • Promoted
    Staff Security Engineer, Threat Defense & Automation

    Staff Security Engineer, Threat Defense & Automation

    Proofpoint • Draper, UT, United States
    Full-time
    Proofpoint is a global leader in human- and agent-centric cybersecurity.We protect how people, data, and AI agents connect across email, cloud, and collaboration tools. Over 80 of the Fortune 100, 1...Show more
    Last updated: 15 days ago • Promoted
    Sr. Security Engineer

    Sr. Security Engineer

    Nutanix • Salt Lake City, UT, United States
    Full-time
    Hungry, Humble, Honest, with Heart.Are you a proactive and strategic Security Engineer with a passion for identity and access management, data loss prevention, and a strong ability to lead collabor...Show more
    Last updated: 20 days ago • Promoted
    Senior Software Engineer, Security

    Senior Software Engineer, Security

    Coinbase • Salt Lake City, UT, United States
    Full-time
    Ready to be pushed beyond what you think you’re capable of?.At Coinbase, our mission is to increase economic freedom in the world. It’s a massive, ambitious opportunity that demands the best of us, ...Show more
    Last updated: 12 hours ago • Promoted • New!
    IAM Security Analyst

    IAM Security Analyst

    HealthEquity • Draper, UT, United States
    Full-time
    The Identity Access Management (IAM) Security Analyst will actively participate in the implementation of the HealthEquity enterprise wide IAM Program. The role requires technical exposure to IAM too...Show more
    Last updated: 30+ days ago • Promoted
    Senior Security Engineer

    Senior Security Engineer

    MetTel • Salt Lake City, UT, United States
    Full-time
    MetTel is a global communications solutions provider with the most complete suite of fully managed services that focus on secure connectivity, and network and mobility services.We simplify communic...Show more
    Last updated: 16 days ago • Promoted