Application Security Program Analyst
| Job ID #: 29569 |
|
||
| Functional Area: Information Technology | Department: Operations - IT | ||
| Position Type: Full-Time Regular | Education Desired: BCS | ||
| Relocation Provided: No | Experience Desired: 9 to 11 yrs | ||
| Travel Percentage: 5 |
|
The Application Security Program Analyst will be a member of the Global Application Security team reporting to the Global Director, Application Security. This role will be lead or assist in leading a number of initiatives to bring the software security assurance program to the next level with activities related to Continuous Improvement tool deployment, penetration testing, tools selection, and early SDLC security touch point activities. Knowledge of identification/remediation of security vulnerabilities is required, as well as application development. Other duties will include but are not limited to: • Supporting reporting and metrics, data collection and data quality, and annual Application Security Assessment • Assist with the maintenance of the application asset inventory and risk level assessments • Ensure vulnerability data is collected in a timely manner and the discernment of patterns that can be leveraged to efficiently apply resources to remediation. • Follow up with development teams across segments to ensure timely testing of high risk products and remediation of security vulnerabilities Position Requirements • Exceptional project management experience and skills (project planning, project tracking) • Exceptional experience in the software security assurance end-to-end SDLC space • Experience with reporting and Metrics • Good understanding of OWASP Top 10, SANS top 25 and other vulnerability knowledge bases • Good understanding and experience with developing applications across a variety of technologies including (but not limited to) Java, C/C++, C#, .NET (COBOL and Visual Basic would be beneficial) is a plus Education • Bachelor’s Degree, preferably in Computer Science or Engineering Work Experience: • 5-7 years of lead responsibility for complex application security projects • 4 to 7 years work experience in Software Development • Knowledge of GRC software packages (RSAM, Archer, Agiliance etc.) • Development background in Java/.NET/C and C++/shell scripting • Solid working knowledge of Windows / UNIX / Linux • Experience with regulatory requirements related to Financial Services Certifications (2 of 3 a plus ): • CISSP, CISM, CRISC SunGard is one of the world’s leading software and technology services companies, with annual revenue of about $2.8 billion. SunGard provides software and processing solutions for financial services, education and the public sector. SunGard serves approximately 16,000 customers in more than 70 countries and has more than 13,000 employees. For more information, please visit www.sungard.com. |
|||||||||
|
Recruitment at SunGard Financial Systems works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. SunGard does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company. |
|||||||||
|
|
|||||||||
|
We are an Equal Opportunity Employer and do not discriminate against
applicants due to race, ethnicity, gender, veteran status, or on the
basis of disability or any other federal, state or local protected
class. Employment contingent upon successful completion of background investigation and pre-employment drug screen. As part of the selection process this role may require an assessment to determine suitability. |
No comments:
Post a Comment