FINRA · 2 days ago
Director, Application Security Engineering
Wonder how qualified you are to the job?
Maximize your interview chances
FinanceFinancial Services
H1B SponsorshipCulture & Values
Insider Connection @FINRA
Responsibilities
Manage a team focused on delivering high quality security testing, or secure development and operations, results within the Application Security Program. This includes assignment coordination and training of subordinate staff, and backup coverage for next level management
Define, review or promote relevant security strategy, policies, standards, guidelines and procedures
Perform project management and status reporting to leadership on all major initiatives within the purview of the respective team
Create the team roadmap in alignment with organizational needs, any relevant business cases for new capabilities or staff to support the program, and oversee relevant budget planning and maintenance
Oversee the establishment and maintenance of processes and techniques used to identify, validate, and prioritize security risks on FINRA’s in-house and proprietary software applications, including both on-premises and AWS cloud-based hosting
Oversee secure software development or security testing for full SDLC from initiation to release for relevant technologies such as Java/J2EE, .NET or Python
Develop and implement strategies to promote consistent use of security controls across the enterprise
Oversee the execution of manual and automated secure software development activities by deploying, configuring, monitoring, or testing security controls, utilizing cyber security tools, to perform service security assessments, integrations, or operations
Identify, evaluate, and recommend new security technologies, techniques, and tools; prepare and deliver professional communications, including security assessment reports, status reports or dashboards and/or training briefings
Ensure all work product meets/exceeds FINRA standards
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor’s degree in computer science, engineering, or related technical discipline
ISC2 Certified Information System Security Professional (CISSP) certification highly desired
8-10 years’ experience that includes 5 years spanning cyber and information security experience and/or supervisory/management experience
Expertise in Application Security domain vulnerabilities and associated tooling such as open source and enterprise SAST, DAST, IAST, WAF and/or HTTP proxy solutions
Financial services industry experience is a plus
Knowledge and general understanding of government and industry security standards and frameworks commonly used
Advanced knowledge of cyber and information security standards, frameworks, technologies, control strategies, and compliance practices
Preferred
Additional certifications related to AWS, secure design/architecture, networking, security testing or similar are desired
Benefits
Health insurance
Dental insurance
Vision insurance
Life insurance
Accidental death and dismemberment insurance
Supplemental life insurance
Short-term disability insurance
Long-term disability insurance
Long-term care insurance
Business travel accident insurance
Legal insurance
401(k) plan with company match
Additional FINRA-funded retirement contribution
Tuition reimbursement
15 days of paid time off
5 personal days
9 sick days
2 volunteer service days
Military leave
Jury duty leave
Bereavement leave
Voting and election official leave
Care of a family member leave
Childbirth and parental leave
9 paid holidays
Company
FINRA
The Financial Industry Regulatory Authority (FINRA) is an independent regulator for securities firms doing business in the U.S. It is a sub-organization of Thrivent.
H1B Sponsorship
FINRA has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (24)
2022 (50)
2021 (38)
2020 (36)
Funding
Current Stage
Late StageLeadership Team
Recent News
2024-05-31
2024-05-26
Paypers
2024-05-12
Company data provided by crunchbase