Confidential
Vice President, CI/CD Security Engineering
About the Company
Internationally recognized banking group
Industry
Financial Services
Type
Subsidiary of a Public Company
Founded
1996
Employees
10,001+
Categories
Financial Services
Consulting & Professional Services
Banking & Mortgages
Banking
Finance
Specialties advisory capital markets & investment banking corporate & institutional client banking derivatives equity research sales & trading fx / treasury services global trade finance lease finance leveraged finance mergers & acquisitions project finance and real estate finance
Business Classifications B2B B2C Enterprise
About the Role The Company is seeking a Senior CI CD Security Engineer with a focus on application security. The successful candidate will be responsible for the operation and maintenance of a vendor SAST and SCA tool, ensuring its effectiveness in scanning in-house developed software for security vulnerabilities. This role requires a strong knowledge of application security processes, CI/CD processes and tools, as well as SAST, SCA, and SBOM. The engineer will act as a subject matter expert, resolving complex problems and interfacing with various teams on application security topics. Strong communication skills are essential for working with stakeholders and explaining code issues and fixes to the development community.
Applicants should have at least 7 years of experience as an application security analyst or application penetration testing analyst, with expertise in programming languages such as C#, C++, Java, Python, and .Net. Experience in developing and maturing CI/CD pipelines for code quality and vulnerability detection, as well as a deep understanding of the Secure Software Development Lifecycle, is required. The ideal candidate will have a strong knowledge of OWASP Top 10 or CWE, common software threats, and mitigations, and be process and detail-oriented. Experience with Jira/Confluence is necessary, and bug bounty or penetration testing experience is a bonus. The role may involve weekend and night work based on project and business needs. Hiring Manager Title SMBC AD Head of Application Security Travel Percent Less than 10% Functions Engineering Information Technology
Specialties advisory capital markets & investment banking corporate & institutional client banking derivatives equity research sales & trading fx / treasury services global trade finance lease finance leveraged finance mergers & acquisitions project finance and real estate finance
Business Classifications B2B B2C Enterprise
About the Role The Company is seeking a Senior CI CD Security Engineer with a focus on application security. The successful candidate will be responsible for the operation and maintenance of a vendor SAST and SCA tool, ensuring its effectiveness in scanning in-house developed software for security vulnerabilities. This role requires a strong knowledge of application security processes, CI/CD processes and tools, as well as SAST, SCA, and SBOM. The engineer will act as a subject matter expert, resolving complex problems and interfacing with various teams on application security topics. Strong communication skills are essential for working with stakeholders and explaining code issues and fixes to the development community.
Applicants should have at least 7 years of experience as an application security analyst or application penetration testing analyst, with expertise in programming languages such as C#, C++, Java, Python, and .Net. Experience in developing and maturing CI/CD pipelines for code quality and vulnerability detection, as well as a deep understanding of the Secure Software Development Lifecycle, is required. The ideal candidate will have a strong knowledge of OWASP Top 10 or CWE, common software threats, and mitigations, and be process and detail-oriented. Experience with Jira/Confluence is necessary, and bug bounty or penetration testing experience is a bonus. The role may involve weekend and night work based on project and business needs. Hiring Manager Title SMBC AD Head of Application Security Travel Percent Less than 10% Functions Engineering Information Technology