DESCRIPTION: NEW DIGITAL BANK MISSION STATEMENT: Join us on our mission to create a completely new, 100% digital bank that truly serves customers' best interests. We are a close-knit and fun-loving team of seasoned financial services professionals who came together for the challenge of building a bank from scratch - and we are committed to doing it all the right way (from technology infrastructure to modern marketing to customer experience).
GENERAL SUMMARY: Our banking client is currently seeking an Application Security Engineer to add to our growing Cybersecurity team. In this role you will be responsible for executing and driving security posture validation, application testing penetration testing and the management of vulnerabilities on systems within the bank’s networks. Consulting with our IT partners and developers will also be a critical part of this role to ensure effective secure coding practices.
DUTIES & RESPONSIBILITIES:
Perform internal penetration tests of bank networks; enumerate networks, identify vulnerabilities/misconfigurations, create reports based on findings, and deliver reports to stakeholders/management.
Perform external penetration tests of bank networks; perform reconnaissance, enumerate internet-facing client systems/services, identify vulnerabilities/misconfigurations, create reports based on findings, and deliver reports to stakeholders/management.
Responsible for creating and maintaining a vulnerability management program that will ensure the timely identification, reporting and remediation of operating system and application vulnerabilities.
Perform application penetration tests of bank applications; perform reconnaissance, enumerate internet-facing client application, identify vulnerabilities and misconfigurations, create reports based on findings, and deliver reports to stakeholders/management
Perform Breach and Attack Simulations.
Administer testing platform and work with vendor to ensure proper configurations / features are enabled and working as expected.
Perform firewall reviews of bank firewalls/other perimeter security devices, and create reports based on findings.
Research and develop skills personally and share insights with the team.
Align with security operations center (SOC) regarding external threats to the bank.
Educate various teams on the threat actor tactics and techniques, and guide IT teams to improve security controls to mature our defense in depth security posture.
Responsible for managing and developing a team of employees including training, development, performance management, administration, and workforce planning.
Regular reporting of team and project activities to executive leadership.
Perform other job-related duties as assigned.
POSITION SPECIFICATIONS: Education:
Bachelor’s degree in related field required, or equivalent combination of education, certification, and experience.
Minimum of 7-10 years of Cybersecurity engineering or software development
OSCP, OSWE, OSWP, CEH, CISSP, or similar industry recognized certification required
Skills & Qualifications:
Strong knowledge of Networks, Linux systems, Windows systems, web applications, and scripting languages
Strong knowledge of tools used for wireless, web applications, and network security testing
Strong knowledge of common attack tools, concepts, and frameworks
Strong verbal and written communication skills
Demonstrate excellent customer service skills
Ability to communicate highly technical topics to non-technical people effectively
Strong knowledge of MITRE ATT&CK Framework
Knowledge of Microsoft Azure, Google Cloud Platform, or other cloud frameworks
For immediate consideration please submit your resume in Word format, along with daytime contact information. Client is unable to provide H-1B Visa sponsorship at this time. All submittals will be treated confidentially. Selected candidate may be asked to complete a comprehensive background, credit and/or drug screening. Principals only, no third parties please.
Atrilogy Solutions Group, Inc. (est. 2000), in partnership with Peak17 Consulting (est. 2008), provides organizations of all sizes with high-quality, cost effective information technology (IT) staffing services.
Atrilogy has been recognized by Inc. magazine as one of the nation’s fastest-growing, privately held companies. Headquartered in Irvine, California, Atrilogy also has offices in Denver, Phoenix, & Atlanta with satellite offices in Boston, Jersey City, Las Vegas, and Delhi, India.
Clients turn to Atrilogy for expertise in:
IT staffing and placement such as Project Managers, Agile/Scrum Masters, Business Analysts, DBAs, Software Engineers, Mobile Developers (iOS, Android), DevOps, Automation, QA, Systems & Network Engineers, Cyber Security / Information Security Specialists, ERP, CRM, Business Intelligence, Data Warehousing, Big Data and Creative (UI/UX, Web Design)
Clients turn to Peak17 for expertise in:
Operational staffing and placement of Accounting/Finance, Human Resources, and Marketing professionals, as well as Information Technology resources.
Atrilogy Solutions Group and Peak17 Consulting are Equal Opportunity Employers. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, protected veteran status, or any other basis protected by applicable law, and will not be discriminated against on the basis of disability.
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.