Job added in hotlist
Applied job
Contract job
Recruiter job
Employer job
Expanded search
Apply online not available
View more jobs in Chandler, AZ
View more jobs in Arizona

Job Details

Information Security Engineer 6 - Security Code Review Team Lead

Chandler, AZ

Apply for this job


At **MEMBERS ONLY**SIGN UP NOW***., we want to satisfy our customers’ financial needs and help them succeed financially. We’re looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you’ll feel valued and inspired to contribute your unique skills and experience.
Help us build a better **MEMBERS ONLY**SIGN UP NOW***.. It all begins with outstanding talent. It all begins with you.
Corporate Risk
helps all **MEMBERS ONLY**SIGN UP NOW***. businesses identify and manage risk. We focus on three key risk areas: credit risk, operational risk, and market risk. We help our management and Board of Directors identify and monitor risks that may affect multiple lines of business, and take appropriate action when business activities exceed the risk tolerance of the company.
Since 1852, customers have trusted that **MEMBERS ONLY**SIGN UP NOW***. would keep their assets secure from theft and always available. Today, maintaining customer trust remains our underlying operating principle.
Enterprise Information Security’s (EIS)* vision is to provide **MEMBERS ONLY**SIGN UP NOW***. world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, EIS protects **MEMBERS ONLY**SIGN UP NOW***.’s infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws. EIS is part of **MEMBERS ONLY**SIGN UP NOW***.'s Corporate Risk organization and is led by the Chief Information Security Officer.
EIS Security Code Review (SCR)
team provides application vulnerability and risk identification for many of the critical applications used by **MEMBERS ONLY**SIGN UP NOW***., from an automated and manual static analysis (code level) perspective.
Within the
Cyber Security Defense and Monitoring (CSD&M)
organization, this
Information Security Engineer (ISE)
position will serve as a high level technical security resource. The team member will work as a Lead on the
Security Code Review (SCR)
team, managing prioritization of security code reviews and validation reviews across multiple business lines, and navigating complex relationships and security code review dynamics with business partners, review vendors, and SCR team members. This team member will additionally conduct source code level assessment to identify security vulnerabilities and ensure compliance with corporate security policies and adherence to best practices.
This is an exciting opportunity to be part of a growing team of niche, high performance security talent, while leveraging mature security code review processes, that will be responsible for the assessment of code level security issues for public facing applications, internally hosted and vendor hosted, supporting local, vendor-integrated, and remote review capabilities. Reviews encompass a vast assortment of language technologies that vary between reviews, with the majority split between both Microsoft and Java-based technologies spanning mobile applications, classic web applications/portals, newer innovation applications, and more.
While working to your strengths in reviews aligned to your own unique core technology background, you will have supported opportunity to learn new technologies and gain new skills. In fact, professional development is one of the core work objectives for each SCR team member, where enhancing current and building new capabilities are favorable traits and encouraged.
This position will report directly to the Security Code Review Leader within
Cyber Threat Management (CTM)
, and will be working with a high performance team of security engineers focused on driving success of manual and automated security review capabilities within the SCR Team that operates as part of CTM within EIS CSD&M. This is an exciting opportunity as **MEMBERS ONLY**SIGN UP NOW***. continues to improve and expand our core capabilities in application vulnerability detection, risk identification, and reporting.
Team members are spread across several locations, with the majority of the team working remotely. We focus on hiring the best talent regardless of the location.
We don’t expect you to join us and hit the ground running. We take what we do seriously, and expect to train you on our processes with a learning curve that will take several months to master fully.
We believe in diversity. Your opinions matter to us, opening discussion forums to the opinions of all team members so that we can uniformly make strategic and operational improvements that consider all sides, or inviting you to opt-in to specialized team or department level working groups that assess unique and diverse topics in code level security that will help to optimize vulnerability detection and how we assess risk, and consider appropriate safeguards.
If this sounds like a position that interests you, apply today. We’d like to understand your capabilities, background, and opinions on application security.
* This position may sit at any core **MEMBERS ONLY**SIGN UP NOW***. location or telecommute. *
Required Qualifications:
10 years of information security applications and systems experience
5 years of J2EE experience or 5 years of .net experience
1 year of relational database experience
3 years of SAST (Static Analysis Software Testing) experience
3 years of static code review experience
3 years application security vulnerability detection and mitigation experience with Open Web Application Security Project (OWASP) Top 10 and SANS Common Weakness Enumeration Top 25
Desired Qualifications:
Expert knowledge and understanding of information security practices and policies, including Information Security Frameworks, Standards, and best practices
Ability to manage highly complex issues and negotiate solutions
Excellent verbal and written communication skills
Ability to interact and communicate effectively with all levels of an organization; including at the executive level
Ability to identify and manage complex issues and negotiate solutions within a geographically dispersed organization
Excellent verbal, written, and interpersonal communication skills
Ability to influence and collaborate at all internal organizational levels
Ability to interact with all levels of an organization
Virtual leadership experience with ability to effectively drive results, provide feedback/direction, and manage and build relationships with leaders and team members in a geographically dispersed team environment
Knowledge and understanding of technology testing: web-based applications developed in Java or .net framework
Knowledge and understanding of design and development of modern web applications and mobile technologies
Knowledge and understanding of technology testing: dynamic application or software assessments (web application penetration testing, web application vulnerability testing)
Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
Ability to organize and manage multiple priorities
Ability to articulate issues, risks, and proposed solutions to various levels of staff and management
Outstanding problem solving skills
Strong negotiating skills
Ability to translate and present complex technical data across technical and non-technical groups
How to Express Interest in This Job: **MEMBERS ONLY**SIGN UP NOW***. invites you to apply for this job at ****NW/HRMS/c/HRS
All offers for employment with **MEMBERS ONLY**SIGN UP NOW***. are contingent upon the candidate having successfully completed a criminal background check. **MEMBERS ONLY**SIGN UP NOW***. will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.
Relevant military experience is considered for veterans and transitioning service men and women.
**MEMBERS ONLY**SIGN UP NOW***. is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.
Relevant military experience is considered for veterans and transitioning service men and women.
**MEMBERS ONLY**SIGN UP NOW***. is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

Company info

Sign Up Now -

Similar Jobs:
Java \/ J2EE Developer
Location : Tempe, AZ
Job Description Project: Building out a new loan tool for the bank Required: > 7 years of application design, development and implementation experience is required > 5 years of Java\/J2EE\/Web application experience is r...
Full Stack developer
Location : Phoenix, AZ
Job Description Hi All, We are looking Java Full Stack developers for our direct client in Phoenix, AZ. If you have any of your consultants looking for a job change, please e-mail their profile for immediate considerations. You...
What I liked about the service is that it had such a comprehensive collection of jobs! I was using a number of sites previously and this took up so much time, but in joining EmploymentCrossing, I was able to stop going from site to site and was able to find everything I needed on EmploymentCrossing.
John Elstner - Baltimore, MD
  • All we do is research jobs.
  • Our team of researchers, programmers, and analysts find you jobs from over 1,000 career pages and other sources
  • Our members get more interviews and jobs than people who use "public job boards"
Shoot for the moon. Even if you miss it, you will land among the stars.
J2eeCrossing - #1 Job Aggregation and Private Job-Opening Research Service — The Most Quality Jobs Anywhere
J2eeCrossing is the first job consolidation service in the employment industry to seek to include every job that exists in the world.
Copyright © 2018 J2eeCrossing - All rights reserved. 21