Application Security Architect

Nelnet is a diversified and innovative company committed to enriching lives through the power of service as a student loan servicer, professional services company, consumer loan originator and servicer, payments processor, renewable energy solutions, and K-12 and higher education expert.

For over 40 years, Nelnet has been serving its customers, associates, and communities.

The perks of working at Nelnet go beyond our benefits package. When you join the Nelnet team, you're part of a community invested in the success of each individual.

That support comes through in our work, as we are united by our mission of creating opportunities for people where they live, learn, and work.

We are looking for an IT Software Architect for the Nelnet Application Security team to develop and work collaboratively with innovative IT Delivery teams and Business Operational areas implement the NDS Application Security program, improve the security posture of our development process, the CI / CD pipelines, and coach development teams on application security topics.

This position requires work in support of the Company’s contract with the United States Department of Education ( ED ). As such, the United States Government requires that any applicant for this position must complete United States Government security clearance.

Effective June 1, 2018, ED has informed Nelnet that security clearance applications for foreign nationals are not being accepted or processed.

In light of this direction from ED, Nelnet will be unable to hire applicants without United States citizenship for such positions.

Colorado Candidates : Pay range for this role is $80,000- $130,000

• Maintain security controls and measure implementation across technology platforms, .NET, Java, Cloud, etc
• Integrate security into our build and deploy pipelines
• Enable controls to monitor our development supply chain (i.e.third party dependencies)
• Manage the steps of the Security Development Lifecycle
• Participate and facilitate Risk Assessment and Threat Modeling
• Perform appropriate vulnerability scanning static and dynamic analysis
• Remediate and facilitate the resolution of vulnerabilities
• Serve as an auditing, consulting, and training resource to all Nelnet product teams
• Mentor developers, designers, testers, and other stakeholders on application security practices
• Work with external entities that are performing vulnerability scans
• Participate in tool and vendor selection process from a security perspective
• Create and update learning resources for application security
• Develop security reference implementations
• Develop and present on application security topics for a wide variety of audiences
• Help to oversee the Nelnet Security Champions program
• Stay informed about application security architectures and best practices across Nelnet development platforms including web, mobile, and cloud

EDUCATION :

BS / MS in Computer Science, Engineering, related discipline or equivalent experience

EXPERIENCE :

• Minimum 6 years of experience in web application software development
• Minimum 2 years of experience focused on Application Security

COMPETENCIES SKILLS / KNOWLEDGE / ABILITIES :

• Deep understanding of a variety of application development architectures, platforms, methodologies, and supporting operating systems
• In-depth experience identifying and protecting against web application and web-service security vulnerabilities including those found in the OWASP Top 10 and CWE Top 25
• Detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorization, applied cryptography, and API security
• Ability to identify, triage, manage, and remediate security vulnerabilities
• Experience with cloud development and architecture
• Experience with web and API development technologies such as .NET, Java, NPM, Angular, React
• Experience with build processes and CI / CD
• Strong verbal and written communication skills
• Strong consensus building, multi-tasking, interpersonal, and analytical skills
• Self-directed, organized, and highly motivated
• Enjoys looking for and building efficiencies into the team, takes ownership

Our benefits package includes medical, dental, vision, HSA and FSA, generous earned time off, 401K / student loan repayment, life insurance & AD&D insurance, employee assistance program, employee stock purchase program, tuition reimbursement, performance-based incentive pay, short- and long-term disability, and a robust wellness program.

Click here to learn more about our benefits : .

Nelnet is an Equal Opportunity Employer, complies with Executive Order 11246, and takes affirmative action to ensure that qualified applicants are employed, and that employees are treated during employment, without regard to race, color, religion / creed, national origin, gender, or sex, marital status, age, disability, use of a guide dog or service animal, sexual orientation, military / veteran status, or any other status protected by Federal or State law or local ordinance.

Qualified individuals with disabilities who require reasonable accommodations in order to apply or compete for positions at Nelnet may request such accommodations by