64 applicants

Company

Original Job Post

EY · 17 hours ago

Manager - Application Security - Cyber Security

Dallas, TX

Full-time

Onsite

Mid Level

$157K/yr - $157K/yr

4+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

AccountingAdvice

Growth Opportunities

Insider Connection @EY

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Conduct assessments of applications using penetration testing and source code review techniques.

Perform security architecture reviews of applications in design and production phases.

Identify potential threats and attacks to application systems through threat modeling.

Evaluate, develop, enhance, and/or run application security programs for clients with a focus on DevSecOps.

Participate in market-facing activities and develop thought leadership materials.

Enhance deliverables and services using current technology and tools.

Counsel and mentor junior Cybersecurity team members.

Lead small project teams on individual engagements.

Support recruiting and onboarding new team members.

Manage large-scale projects or programs.

Contribute to the development of new business solutions or clients.

Obtain certifications such as CISM, GIAC, Open Group Certified Architect, CEH, CISSP.

Travel internationally and domestically up to 80% of the time to meet client needs.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Application SecurityVulnerability AssessmentPenetration TestingSource Code ReviewSASTDASTIASTBurp SuiteCode ReviewsAutomated Assessment ToolsFortifyAppScanCheckMarxWebInspectJavaJava EE.NETC#C/C++PHPPythonRubyRuby on RailsGoFlashObjective-CSwiftAngularJSAngularReact

Required

Bachelor’s degree in Computer Science, Information Systems, Engineering, or related field and 5 years of progressive, post baccalaureate related work experience, or Master’s degree in Computer Science, Information Systems, Engineering, or related field and 4 years of related work experience

4 years of work experience conducting application security vulnerability assessment using either manual penetration testing and source code techniques; or automated commercial SAST/DAST/IAST tools

3 years of experience performing manual penetration testing using Burp suite of tools or another comparable testing tool, and manual code reviews; or 3 years of experience with two or more of the following automated assessment tools: Fortify, AppScan, CheckMarx, Contrast, WebInspect

3 years of experience in assessing applications or enterprise application development experience in at least 5 of the following development platforms, protocols, libraries, and techniques: Java/Java EE, .NET/C#, C/C++, PHP, Python, Ruby/Ruby on Rails, Go, Flash, Objective-C, Swift, AngularJS/Angular, React, REST APIs, SOAP, jQuery, AJAX, message oriented architecture

3 years of experience leading small projects teams on individual engagements

2 years of experience supporting recruiting and onboarding new team members

1 year of experience managing a large-scale project or program

1 year of experience contributing to the development of new business, defining solutions or clients and/or leading pursuits

Must hold or obtain within one year of hire or promotion one of the following certifications: CISM, GIAC, Open Group Certified Architect, CEH, CISSP

Requires international and domestic travel up to 80% of the time to meet client needs