Jobs
>
San Diego

    Application Security Engineer - San Diego, United States - Navy Federal Credit Union

    Navy Federal Credit Union
    Navy Federal Credit Union San Diego, United States

    5 days ago

    Default job background
    Description
    Overview


    To serve as a technical interface and subject matter expert between the Software Security Group and engineering teams across the enterprise to enhance the security of our applications through automation, security reviews, and DevSecOps best practices.

    Collaborate with NFCU teams and vendors to determine security requirements and support or automate security across all phases of product integration, operations, and maintenance to ensure a secure Navy Federal environment.

    Work independently or in a team environment.

    Responsibilities

    Act as a subject matter expert on application security to improve upon and further integrate security best practices into product design and engineering efforts as well as software development lifecycles (SDLC)
    Support development teams with secure code reviews and other assessments to identify security weaknesses and vulnerabilities
    Support and maintain the Secure SDLC standard to include security architecture, design and coding requirements for infrastructure, application and data to align with application security maturity model and adopt a shift-left approach for security
    Implement automated security controls as part of CICD pipelines
    Identify and develop relevant security controls and processes for products and services developed and deployed for across Navy Federal on-prem and cloud environments
    Establish and maintain secure coding standards and best practices to provide guidance and training to development teams on security best practices
    Advocate application security through trainings and outreach across NFCU
    Provide security related coaching and expertise to drive and elevate security expertise within the development teams to promote security champions
    Perform other duties as assigned

    Qualifications

    Bachelor's degree in Computer Science, or related field (e.g., cybersecurity) or the equivalent combination of education, training or experience

    Solid experience in application security and software development in one or more programming languages such as C#, Java, Python, etc.

    Experience with security tools such as SAST, DAST, IAST, SCA and other security tools
    Familiarity with industry-standard security frameworks such as OWASP, NIST, BSIMM etc.
    Experience with CICD pipeline, security tools integration and secure SDLC
    Experience collaborating with cross functional engineering and product teams to scale secure SDLC
    Knowledge of secure architecture and design patterns for Web, Mobile and Microservices
    Knowledge of current and emerging threats and techniques for exploiting security vulnerabilities
    Experience with methodologies and security testing tools for threat analysis of complex applications and services including threat modeling, software fuzzing, static and dynamic analysis
    Strong communication, presentation and analytical skills

    Desired Qualifications

    Advanced degree in Computer Science, or related field (e.g., cybersecurity) or equivalent technical experience
    CISSP, any DevSecOps or other related Information Security certifications
    Experience with multiple programming languages such as Java, C#, Python and JavaScript
    Experience with cloud-based infrastructure (AWS, Azure, or Google Cloud)
    Advanced knowledge of Navy Federal's functions, philosophy, operations and organizational objectives

    Hours:
    Monday - Friday, 8:00AM - 4:30PM

    Location: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr. Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602 | 9999 Willow Creek Road San Diego, CA 92131


    Navy Federal is now hybrid Our standard enterprise requirement for a hybrid schedule is to report on-site 4-16 days each month.

    The number of days reporting on-site will ultimately be determined by the employee's leadership and business unit needs. You will learn more throughout the hiring and on boarding process.

    About Us

    You have goals, dreams, hobbies, and things you're passionate about—what's important to you is important to us.

    We're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them—friends, family, and passions.

    And we're looking for team members who are passionate about our mission—making a difference in military members' and their families' lives.

    Together, we can make it happen.

    Don't take our word for it:

    • Military Times 2022 Best for Vets Employers
    • WayUp Top 100 Internship Programs
    • Forbes 2022 The Best Employers for New Grads
    • Fortune Best Workplaces for Women
    • Fortune 100 Best Companies to Work For
    • Computerworld Best Places to Work in IT
    • Ripplematch Campus Forward Award - Excellence in Early Career Hiring
    • Fortune Best Place to Work for Financial and Insurance Services

    Equal Employment Opportunity:
    Navy Federal values, celebrates, and enacts diversity in the workplace.

    Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans.

    EOE/AA/M/F/Veteran/Disability EOE/AA/M/F/Veteran/Disability

    Disclaimers:
    Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.

    Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume.

    Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position

    Bank Secrecy Act:

    Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.

  • EVOTEK

    Security Engineer

    6 days ago

    EVOTEK San Diego, United States

    EVOTEK is North America's premier enabler of secure digital business focused on innovation. With an integrated set of technical domains, including data center, network, security, cloud, and communications, EVOTEK provides a cohesive approach to digital initiatives while driving b ...

  • Dropbox

    Security Engineer

    1 day ago

    Dropbox San Diego, United States

    Company Description · Dropbox is a special place where we are all seeking to fulfill our mission to design a more enlightened way of working. We're looking for innovative talent to join us on our journey. The words shared by our founders at the start of Dropbox still ring true to ...

  • EVOTEK, Inc.

    Security Engineer

    6 days ago

    EVOTEK, Inc. San Diego, United States

    Job Description · Job DescriptionEVOTEK is North America's premier enabler of secure digital business focused on innovation. With an integrated set of technical domains, including data center, network, security, cloud, and communications, EVOTEK provides a cohesive approach to di ...

  • Gunderson Dettmer

    IT Security Engineer

    2 days ago

    Gunderson Dettmer San Diego, United States

    Job Description · Job DescriptionGunderson Dettmer is the only business law firm of its kind - exclusively serving the global venture capital and emerging technology marketplace. With 400 attorneys in eleven offices - from Silicon Valley to Singapore - we innovate for innovators, ...

  • SOLV Energy

    Cyber Security Engineer

    1 week ago

    SOLV Energy San Diego, United States

    Job Overview: As a Cloud Security Engineer with a SaaS specialization, you will assess and enhance the security of our SaaS applications, as well as safeguard our Azure and Microsoft 365 (M365) systems. You will have a crucial role in securing our cloud infrastructure and meeting ...

  • Mount Indie

    Cyber Security Engineer

    1 week ago

    Mount Indie San Diego, United States

    The Cybersecurity Engineer will work closely with engineering and IT teams to design, implement, assess, and audit security practices and technical configurations to ensure compliance with internal Foundational Security Principles (FSPs), and contractual controls such as NIST 800 ...

  • SAIC

    System Security Engineer

    2 weeks ago

    SAIC San Diego, United States

    · System Security Engineer · SAIC is seeking a System Security Engineer on the Revolutionary Information Technology Services (RITS) program in support of the United States Army Corps of Engineers (USACE). · This position is remote with a possibility of limited travel within th ...

  • Georgia Tech Research Institute

    Secure Computing Engineer

    5 days ago

    Georgia Tech Research Institute San Diego, United States

    Secure Computing Engineer (Junior/Mid Level) - HAC - Open Rank (Onsite) · ID: · Type: Researchers · Location: San Diego, CA · Categories: Cybersecurity, Information Technology, Networking, System Engineering · Overview: · The Georgia Tech Research Institute (GTRI) is the no ...

  • Science Applications International Corporation

    Networking Security Engineer

    2 weeks ago

    Science Applications International Corporation San Diego, United States

    SAIC is the premier Joint All Domain Command and Control (JADC 2) integrator with expertise in transforming legacy command and control systems into a modern hybrid cloud environment to accelerate decision making and increase mission success. This new Security Engineer, Security, ...

  • Department of the Navy

    ENGINEER with Security Clearance

    2 weeks ago

    Department of the Navy San Diego, United States

    Summary This is a public notice flyer to notify interested applicants of anticipated vacancies. Applications will not be accepted through this flyer. Interested applicants must follow the directions in the "How to Apply" section of this flyer to be considered. There may or may no ...

  • ESR Healthcare

    Cyber Security Engineer

    5 days ago

    ESR Healthcare San Diego, United States

    Cyber Security Engineer - Compliance San Diego, Ca ref · OPENINGS: 1 · JOB TYPE: Contract · LOCATION: Remote / Telework · San Diego, California, United States, 92127 · INDUSTRY: Information Technology · CATEGORY: Information Technology · EDUCATION: Bachelor's Degree · EXPERIENCE: ...

  • SAIC

    System Security Engineer

    1 week ago

    SAIC San Diego, United States

    · System Security Engineer · SAIC is seeking a System Security Engineer on the Revolutionary Information Technology Services (RITS) program in support of the United States Army Corps of Engineers (USACE). · This position is remote with a possibility of limited travel within th ...

  • The Georgia Tech Research Institute

    Secure Computing Engineer

    2 weeks ago

    The Georgia Tech Research Institute San Diego, CA, United States

    Overview: The Georgia Tech Research Institute (GTRI) is the nonprofit, applied research division of the Georgia Institute of Technology (Georgia Tech).Founded in 1934 as the Engineering Experiment Station, GTRI has grown to more than 2,900 employees, supporting eight laboratories ...

  • SOLV Energy

    Cloud Security Engineer

    6 days ago

    SOLV Energy San Diego, United States

    SOLV Energy is an engineering, procurement, construction (EPC) and solar services provider for utility solar, high voltage substation and energy storage markets across North America. · Job Description Summary: · As a Cloud Security Engineer with a SaaS specialization, you will ...

  • SAIC

    Networking Security Engineer

    1 week ago

    SAIC San Diego, United States

    Description · SAIC is the premier Joint All Domain Command and Control (JADC2) integrator with expertise in transforming legacy command and control systems into a modern hybrid cloud environment to accelerate decision making and increase mission success. This new program is part ...

  • AppFolio

    Infrastructure Security Engineer

    1 week ago

    AppFolio San Diego, United States

    AppFolio is more than a company. We're a community of dreamers, big thinkers, problem solvers, active listeners, and multipliers. At every opportunity, we set the pace while delivering innovation built to carry real estate into the future. One in which every experience feels effo ...

  • AppFolio

    Application Security Engineer

    2 weeks ago

    AppFolio San Diego, United States

    · AppFolio is more than a company. We're a community of dreamers, big thinkers, problem solvers, active listeners, and multipliers. At every opportunity, we set the pace while delivering innovation built to carry real estate into the future. One in which every experience feels e ...

  • Department of Defense

    ENGINEER with Security Clearance

    2 weeks ago

    Department of Defense San Diego, CA, United States

    Duties · • You will use knowledge of mechanical and electro-mechanical engineering to perform test procedures on undersea maritime and warfare systems, underwater vehicles, and antisubmarine warfare training targets. · • You will revise processes and procedures on systems and tar ...

  • SOLV Energy

    Cyber Security Engineer

    3 days ago

    SOLV Energy San Diego, United States

    Job Overview: As a Cloud Security Engineer with a SaaS specialization, you will assess and enhance the security of our SaaS applications, as well as safeguard our Azure and Microsoft 365 (M365) systems. You will have a crucial role in securing our cloud infrastructure and meeting ...

  • Cask Technologies

    System Security Engineer

    1 week ago

    Cask Technologies San Diego, United States

    Cask is a leading Management Consulting firm specializing in delivering business and technical expertise to clients across commercial and government markets. Join the many happy employees at Cask We have been named a top 5 firm to work for by Consulting Magazine for 5 of the past ...