Innovate here. And see your ideas come to life.
It’s an exciting time to work in tech at Edward Jones. We are making massive investments in emerging technologies to improve how we work with our clients and with each other. Relationships are the focus of our business model. And working in Technology here means using your skills to build, deliver and maintain the technologies that enable us to deepen and support those relationships. The best part? We develop and create our own industry-leading solutions internally. And you can be a part of it. Working with emerging new technologies. Creating platforms, programs and experiences that change how we work together – and support our client-first focus. Changing the future of our firm, the industry and the advisor-client relationship.
Job Overview
The application security platform engineer is responsible for validating that application services are designed and implemented with high security standards. The role analyzes the security of applications in tandem with their underlying services, including connected dependencies such as middle-tier systems and databases. Additionally, the application security platform engineer addresses legacy and emerging security issues and implements repeatable secure development practices to reduce the introduction of program design flaws that may lead to exploitation. As issues are uncovered, the application security platform engineer communicates with the appropriate technical and leadership teams to ensure a focus on risk mitigation – allowing for business continuity, but without negligent risk. Application security platform engineers are constantly assessing applications for weaknesses and finding resolutions before they can be abused.Responsibility Summary:
- Perform and analyze vulnerability testing.
- Document security findings and directly assist developers with reasonable methods to secure.
- Work in tandem with developers to provide repetitive validation testing prior to production while allowing for a continuous cycle of development followed by application security assessments.
- Directly assist developers hands-on with code details and assist with mitigation routes.
- Regularly monitor the security community for public-facing security issues, as well as to learn new tactics that can be used in testing.
- Attend and participate in application projects and change management committees. This includes interacting with business units and technical teams to understand what is coming and how their projects can be more secure from the beginning.
- Fully define and follow a security review process to ensure an automated and repeatable process is managed.
- Use security standards and implementation configurations, as well as common security frameworks.
- Prepare for and manage bug bounty programs. Document delivery and implementation advances that meet defined service-level agreements (SLAs) and business metrics.
- Align with architects and development teams for a mission of secure design.
- Train developers and junior application security engineers on weaknesses to avoid.
- Actively participate and lead security team meetings that facilitate secure design.
- Focus on application security that observes compliance –Sarbanes-Oxley Act (SOX), etc. – and other privacy laws.
- Respond to and handle service and escalation tickets within SLA expectations.
- Drive security efficiencies, enabling security team members to work on more advanced tasks.
- Excellent interpersonal and communication (written and verbal) skills.
- Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
Hiring Minimum: $90,628
Hiring Maximum: $154,313
Job# 64927BR
More Information
- Salary Offer $90,628/yr - $154,313/yr
- Address St. Louis, MO, USA
- Experience Level Senior
- Total Years Experience 5-10