Be an early applicantLess than 25 applicants

Company

Original Job Post

Citi · 2 days ago

Senior Application Security Analyst

Irving, TX

Full-time

Onsite

Senior Level

$156K/yr - $234K/yr

4+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

BankingFinance

H1B Sponsorship

Actively Hiring

Insider Connection @Citi

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Establish/manage multiple security programs supporting security testing requirements at the bank

Forge and maintain strong relationships with various internal and external teams

Participate in security and technology strategic planning

Provide recommendations to strengthen development processes and security testing

Assess risk and provide software security advice for business decisions

Oversee Program Projects and Initiatives, making strategic recommendations to senior management

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Threat modelingVulnerability assessmentsCloud computingDevops toolsSecurity conceptsSource code managementDeployment technologiesSecurity issues articulationSecurity industry standardsCommunicationLeadershipProblem-solvingCloud PlatformsSecurityCheckmarxAppScan SourceFortifyVeracodeSonarQubeSnykSonatypeBlack DuckGIACCISACISMCRISCCISSP

Required

Experience in key activities within software security group such Threat Modeling / Application Risk Assessment, Vulnerability Assessments, Training, etc.

Bachelor's Degree with 4 - 6 years' experience in application development or application secure code review

Experience as a technical lead or manager

Knowledge of cloud computing concepts and DevOps tools (OpenShift, Kubernetes, Docker, Chef, etc)

Understanding of security, web-based and infrastructure vulnerabilities

Experience in source code management, build and deployment technologies such as RLM, Ueploy, Jenkins, Artifactory, Maven, GitHub, etc

Experience conducting vulnerability assessments and articulating security issues to technical and non-technical audience

Knowledge of tools and processes used to expose common vulnerabilities and implement countermeasures

Excellent communication skills (written and verbal) and the ability to communicate with all levels of staff and management

Demonstrated knowledge of recognized security industry standards and leading practices (e.g., FFIEC, NIST, C2M2, ISO)

Preferred

Experience using or testing cloud platforms (AWS, Google, Azure, etc) and security in/of the cloud

Understanding of Checkmarx, AppScan Source, Fortify, Veracode, SonarQube, Snyk, Sonatype or Black Duck platform

Relevant professional certifications: GIAC, CISA, CISM, CRISC, CISSP or equivalent

Master’s degree a plus

Benefits

Medical, dental & vision coverage

401(k)

Life, accident, and disability insurance

Wellness programs

Paid time off packages including vacation, sick leave, and paid holidays

Company

Citi

Glassdoor

3.8

Citi's mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress.

Founded in 1812

San Antonio, Texas, USA

10,001+ employees

https://www.citi.com

H1B Sponsorship

Citi has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Trends of Total Sponsorships

2023 (1014)

2022 (1194)

2021 (958)

2020 (960)