Open position: Application Security Assurance (Penetration testing) Associate Director; Location: Tampa Dallas, TX; Job type: Direct hire; Job function: Information Technology

Job application has been closed

Application Security Assurance (Penetration testing) Associate Director

Location: Tampa Dallas, TX

Job type: Direct hire

Job function: Information Technology

Industry: Financial Services

Experience level: Mid-senior

Education level: Bachelor’s degree

Work location: Hybrid. DTCC offers a hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

Zip code: 75019

Skills: Application Security, Penetration Testing, Penetration Test, Pen Test, IT Risk, Information Security, Risk Analysis, Vulnerability Testing, Vulnerability Test, Ethical Application Penetration Testing, EAPT, Web Applications, API, API's, APIs, Vulnerabilities, OWASP, OWASP Top 10, SANS, SANS Top 25, C/C++, Java, J2EE, Java/J2EE, Java-Scripts, AJAX, PHP, Visual Studio, AppSec, CISSP, OSCP, GWAPT

Experience required: 8 Years

Relocation assistance: No

 

JOB DESCRIPTION:

Being a member of Technology Risk Management (TRM) team, the Application Security Assurance Associate Director is responsible for setting strategic direction in the areas of IT Risk and Information Security. Maintains corporate security policies and control standards, acts as a second line of defense via a robust collection of risk and control assessments, reports to leadership and the Board on the status of the IT Risk and Information Security Programs, acts as an operational arm for monitoring threat intelligence, understanding when threats are being targeted against the firm, and responding to potential incidents, and serves as the main interface for Regulatory and Client reviews that focus on IT Risk and Information Security.

The Application Security Assurance program implements a variety of AppSec (Application Security) technologies, controls, tools and processes to ensure delivery teams are able to adhere and align with the Secure System Development Lifecycle to protect DTCC applications from existing and emerging security risks and improve application risk posture.

 

RESPONSIBILITIES:

  • Conduct application security assessments, risk analysis, vulnerability testing and security reviews across DTCC’s businesses within the bounds of the Processes and DTCC Control Standards.
  • Monitor and mitigate risk, escalate as required.
  • Perform Ethical Application Penetration Testing (EAPT) on web applications and APIs.
  • Provide assistance to the developers in detailing the vulnerabilities reported along with the recommendations for remediation.
  • Provide excellent coordination across various teams in DTCC organizations.
  • Manage tools, servers and infrastructure supporting the application vulnerabilities testing and analysis program. Work with infrastructure, database and application development team to ensure optimal use of tools.
  • Contribute and maintain secure coding best practices & related guidelines.
  • Industry research on the latest trends on application security technologies and posture to adopt to detect and report security risks.
  • Mitigates risk by following established procedures and monitoring controls, spotting key errors, and demonstrating strong ethical behavior.

 

QUALIFICATIONS:

  • Minimum of 8 years of related experience
  • Bachelor\'s degree preferred or equivalent experience.
  • Certified in CISSP, OSCP or GWAPT
  • Serves as a trusted coach or mentor within the organization.
  • Communicates openly keeping everyone across the organization informed.
  • Ability to explain vulnerabilities and weaknesses in OWASP Top 10 and SANS Top 25 to any audience and discuss effective defensive techniques.
  • Programming experience (C/C++, Java/J2EE, JavaScript, AJAX, PHP, Visual Studio etc.) is a plus

 

ABOUT DTCC: With 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance, and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes and bringing increased security, enhanced resilience, and soundness to financial markets. In 2022, DTCC’s subsidiaries processed securities transactions valued at U.S. $2.5 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $72 trillion. DTCC’s Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 17.5 billion messages annually.

 

For more detail and to apply, click or tap here.


Comments

Post a Comment

Popular posts from this blog

Open position: Senior Data Scientist (Deep Learning, GraphQL); Work location: Onsite Pune, Maharashtra, India; Longterm (Duration)

Image
Job Title:  Senior Data Scientist (Deep Learning, GraphQL) US$24 - 36 K/Year (Annual salary); Longterm (Duration) Work location: Onsite Pune, Maharashtra, India About the Role: ​ We are seeking a talented Senior Data Scientist to join our team and contribute to the development of cutting-edge AI solutions. The ideal candidate will have a strong background in computer vision, GraphQL, and graphical neural networks. You will be responsible for designing, developing, and deploying innovative data-driven solutions to solve complex problems. Responsibilities: Develop and implement machine learning algorithms for computer vision and GraphQL-based applications. Collect, clean, and prepare large datasets for analysis. Explore and experiment with different machine learning techniques and architectures, including graphical neural networks. Collaborate with cross-functional teams to understand business requirements and translate them into technical solutions. Design and implement GraphQL AP...
Read more

Vice President, Commercial Lender in Houston, Dallas, Texas, United States; In-office; Full-time Salary: US$135K - US$155K per annum; Industry: Banking; Business Development

Image
  📌 Job Title: Vice President, Commercial Lender Location: Houston, Dallas, Texas, United States; In-office; Full-time Salary: US$135K - US$155K per annum Industry: Banking; Business Development Description NOTE: you can apply for this role in Houston, Midland/Odessa, Galveston, Pasadena, Dallas-Fort Worth (all in the state of Texas). Your experience must be relevant to the location you apply for. Please fill in your preferred location during the application process. POSITION PURPOSE: As a Commercial Banker, your primary role will be to grow and retain profitable relationships. This is accomplished by focusing on the delivery of value added solutions to our clients and prospects that will help them reach their goals and maximize our revenues over the life of the relationship. You will be a fully experienced, qualified relationship manager capable of independent activity. You should have proven client relationship skills, as well as extensive product knowledge, tech...
Read more

Senior Vice President Relationship Manager - in Houston, Dallas, Texas, United States; In-office; Full-time; Salary: US$170K - US$200K per annum

Image
  📌 Job Title: Senior Vice President Relationship Manager Location: Houston, Dallas, Texas, United States; In-office; Full-time Salary: US$170K - US$200K per annum Industry: Banking; Relationship Management Description NOTE: you can apply for this role in Houston, Midland/Odessa, Galveston, Pasadena, Dallas-Fort Worth (all in the state of Texas). Your experience must be relevant to the location you apply for. Please fill in your preferred location during the application process. Overview: Do you consider yourself to be a self-starter? Passionate about financial literacy? Are you willing to step outside your comfort zone in order to provide next-level products, services, and opportunities to our customers? If so, then the Relationship Manager role might be for you! At The Bank, it’s about more than a job. It’s about having a flourishing career where you can thrive, both in and out of work. At The Bank, we’re committed to fostering an environment that reflects our va...
Read more