Manager, Application Security - Greenwood Village, Colorado, United States

Benefits Overview · A career at CoBank can offer you the opportunity to make a personal impact on the people and communities where we do business. In order to be the best, we hire the best · Benefits Offered by CoBank · Careers with a purpose · Time-Off Packages, 15 days of vacat ...

Job description

Benefits Overview

A career at CoBank can offer you the opportunity to make a personal impact on the people and communities where we do business. In order to be the best, we hire the best

Benefits Offered by CoBank

• Careers with a purpose
• Time-Off Packages, 15 days of vacation, 10 paid sick days and 11 paid holidays
• Competitive Compensation & Incentive
• Hybrid work model: flexible arrangements for most positions
• Benefits Packages, including Medical, Dental and Vision coverage, Disability, AD&D, and Life Insurance
• Robust associate training and development with CoBank University
• Tuition reimbursement for higher education
• Outstanding 401k: up to 6% matching and additional 3% non-elective contribution & Student Loan Match
• Community Impact: United Way Angel Day, Volunteer Day and Associate Directed Contribution
• Associate Resource Groups: creating a culture of respect and inclusion
• Recognize a fellow associate through our GEM awards

Job Description

Leads application security initiatives by establishing and implementing policies, procedures, guidelines, and standards to maintain CoBank's application infrastructure to protect the confidentiality, integrity, and availability of these systems. Drives secure development practices by collaborating with cross-functional teams, both technical and non-technical, to embed security into every stage of the software development lifecycle.

Essential Functions

• Participates in architecture design, development, and implementation initiatives to ensure security is appropriately addressed and follows industry standards.
• Partners with Infrastructure Security, Threat Management, Information Technology, Product, and Compliance teams to integrate application related security controls and best practices into applications and GitHub repositories.
• Acts as a liaison between technical and non-technical teams, translating security requirements into actionable tasks and ensuring alignment with business objectives.
• Leads the implementation of security automation in GitHub, EKS, IaC, and other technology utilized in application development and hosting, collaborating with DevOps to embed security in CI/CD pipelines.
• Applies OWASP, FFIEC, NIST, AWS, and other standards as appropriate to guide security assessments and remediation efforts.
• Reviews IAM policies and permissions with cloud administrators to ensure least-privilege access and regulatory compliance for cloud applications.
• Participates in internal and third-party security assessments and provides security risk analysis of identified findings and recommended remediation efforts.
• Partners with Information Technology for application vulnerability scanning including both SAST and DAST scanning as appropriate.
• Tracks and reports on application related security metrics, incidents, and improvements to leadership and stakeholders.
• Develops and delivers or coordinates training sessions for cross-functional teams on secure coding, DevSecOps principles, and relevant security standards (OWASP, FFIEC, NIST, AWS).
• Provides thought leadership over application security matters. Maintains knowledge of information security trends, technologies and related regulatory issues.
• Fosters a culture of security awareness and continuous improvement across all departments.
• Participates in security team rotational on-call schedule.
• Oversees security assessments of CoBank's third-party and vendor relationships to identify security risk associated with those third parties.
• As a people manager at CoBank, you will be expected to manage and lead associates. Responsibilities include, but are not limited to, associate performance management, talent strategy, workforce planning, change management, conflict resolution, and relationship management. You will drive and be accountable for the team's development, alignment with the division's objectives, as well as with CoBank's strategy and mission.

Education

• Bachelor's Degree in computer science, Information Technology, or a related field. required
• Bachelor's degree may be substituted with years of related experience (in addition to minimum required experience), or an equivalent combination of education and experience.
• Relevant certifications (e.g., AWS Certified Security Specialty, CISSP, OSCP). required

Work Experience

• 8 years of experience in Information Technology required
• 6 years of experience focused on application development, application security, or security compliance related activities required
• Prior Experience in highly regulated industries required
• Prior Experience in a supervisory/management role required
• Knowledge of compliance frameworks as they relate to cloud and application security.

Physical Exertion Details

Sedentary Exerting up to 10 pounds of force occasionally (Occasionally: activity or condition exists up to 1/3 of the time) and/or a negligible amount of force frequently (Frequently: activity or condition exists from 1/3 to 2/3 of the time) to lift, carry, push, pull, or otherwise move objects, including the human body. Sedentary work involves sitting most of the time, but may involve walking or standing for brief periods of time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met.

Travel Requirement Details

Occasional Travel occurs infrequently (typically, once a month or less).

About CoBank

The typical base pay range for this role is between $144,300 - $177,440. Compensation may vary based on individual job-related knowledge, skills, expertise, and experience. This position is eligible for a discretionary annual incentive program driven by organization and individual performance. The listed salary, other compensation and benefits information is accurate as of the date of this posting. This job will be posted for a minimum of five (5) business days or until the position is filled. CoBank reserves the right to adjust compensation for all positions and to modify or discontinue benefits programs at any time in its sole discretion, subject to applicable law.

CoBank is a cooperative bank serving vital industries across rural America. The bank provides loans, leases, export financing and other financial services to agribusinesses and rural power, water and communications providers in all 50 states. The bank also provides wholesale loans and other financial services to affiliated Farm Credit associations serving more than 76,000 farmers, ranchers and other rural borrowers in 23 states around the country. CoBank is a member of the Farm Credit System, a nationwide network of banks and retail lending associations chartered to support the borrowing needs of U.S. agriculture, rural infrastructure and rural communities. Headquartered outside Denver, Colorado, CoBank serves customers from regional banking centers across the U.S. and also maintains an international representative office in Singapore.

REASONABLE ACCOMMODATION

We are committed to ensuring that our online application process provides an equal employment opportunity to all applicants, including qualified individuals with disabilities. If you are an applicant with a disability, or are assisting an applicant with a disability, and require accessibility assistance or would like to request a reasonable accommodation for any aspect of the application process, including completing an application, interviewing, or otherwise participating in the employee selection process, please submit a request by emailing Include your contact information and specific details about your requested accommodation.

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time.

CoBank is an Equal Opportunity Employer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, or status as a protected veteran.