Senior Application Security Engineer
2 weeks ago
Wells Fargo is in search of a Senior Application Security Engineer, a pivotal technical role that can function as either an individual contributor or a team leader. This position requires extensive security expertise to support a diverse array of applications through the Enterprise Application Security Program (EASP), ensuring robust secure coding practices and governance for development teams. The role demands a profound understanding of current technologies, tools, and existing frameworks. You will lead intricate modeling, simulations, and analytical efforts within the security domain, acting as a subject matter expert and a technical resource for programming teams throughout the development, testing, and implementation phases.
Key Responsibilities:
In this capacity, you will direct, assist, and mentor development teams in the adoption of essential security capabilities, including secure design principles, security requirements, threat modeling, static analysis, software composition analysis, and application security posture management for both cloud and non-cloud environments. While strong coding skills are essential, daily coding tasks are not the primary focus of this role:
- Education and Guidance: Lead defense and application teams through various attack scenarios, create proof of concepts when necessary, and offer remediation strategies for prevalent security vulnerabilities (e.g., XSS, Parameter Tampering, SQL Injection).
- Security Risk Evaluation: Perform assessments to ensure adherence to corporate security policies and best practices, identifying and addressing vulnerabilities across networks, applications, and hardware.
- Leadership and Communication: Provide leadership and technical direction to engineering teams, manage complex security challenges, and convey risks and mitigation strategies to both technical and non-technical stakeholders.
- Security Solutions Development: Create and implement security solutions for intricate operational and integration challenges, collaborating closely with systems architects and application teams to guarantee secure software design and deployment.
- Collaboration and Implementation: Work in partnership with the enterprise application security program to execute initiatives, including secure coding best practices, while facilitating communication and progress tracking within application teams.
- Vulnerability Management: Utilize tools such as static analysis software (CheckMarx) to identify and remediate vulnerabilities, analyze trends, and report on vulnerability detection, remediation, and compliance.
- Lead complex technology initiatives with significant companywide impact.
- Contribute to the development of standards and best practices for engineering complex and large-scale technology solutions.
- Design, code, test, debug, and document for various projects and programs.
- Review and assess complex, large-scale technology solutions against tactical and strategic business objectives.
- Make informed decisions regarding the development of standard and companywide best practices for engineering and technology solutions.
- Collaborate with key technical experts and senior technology teams to resolve intricate technical issues.
- Lead projects, teams, or serve as a mentor to junior engineering staff.
- 5+ years of experience in Software Engineering or equivalent demonstrated through a combination of work experience, training, military experience, or education.
- 5+ years of experience in information security applications and systems.
- 5+ years of experience with web applications.
- Expertise in common application security risks (OWASP Top 10, SANS/CWE Top 25).
- Experience in developing applications using Java, .NET (preferred), C#, JavaScript, Python, or other modern object-oriented programming languages.
- Familiarity with cloud security and environments (AWS, Azure, GCP) and associated security tools and services.
- Experience managing automated application security testing tools, including Static and Dynamic Application Security Testing (SAST/DAST) and Software Composition Analysis (SCA).
- Ability to provide strategic and tactical security guidance for secure application development.
- Experience with DevSecOps practices and tools, including security integration into CI/CD pipelines.
- Possession of relevant application security certifications (e.g., CISSP, CCSP, CSSLP, OSCP/ OSEP/OSWE).
- Experience integrating application security tools into enterprise vulnerability management systems.
- Strong understanding of secure application design principles, including authentication, authorization, logging, encryption, data masking, and secure data transmission.
- Excellent technical and business writing skills, with the ability to effectively communicate plans and solutions to both technical and business units.
- Ability to mentor less experienced engineering staff.
- Availability for occasional after-hours technology support.
- Remote work options are not available for this position.
- Visa sponsorship is not available for this role.
The compensation for this position is competitive and may vary based on factors such as skills, experience, and work location.
Benefits:
Wells Fargo offers eligible employees a comprehensive benefits package, including health benefits, a 401(k) plan, paid time off, disability benefits, life insurance, parental leave, tuition reimbursement, and more.
Diversity and Inclusion:
Wells Fargo values diversity, equity, and inclusion in the workplace and welcomes applications from all qualified candidates, regardless of background or identity.
-
Senior Application Security Engineer
2 weeks ago
Charlotte, North Carolina, United States WELLS FARGO BANK Full timeAbout this Position:Wells Fargo is looking for a Senior Application Security Engineer, a pivotal technical role that may function as an individual contributor or team leader, possessing extensive security expertise to oversee a range of applications through the Enterprise Application Security Program (EASP). This role is essential in providing governance for...
-
Senior Application Security Engineer
2 weeks ago
Charlotte, North Carolina, United States WELLS FARGO BANK Full timeAbout the Position:Wells Fargo is looking for a Senior Application Security Engineer, a pivotal technical role that can either function as an individual contributor or a team leader, possessing extensive security expertise to oversee a suite of applications through the Enterprise Application Security Program (EASP). This role is essential in providing...
-
Senior Cloud Security Engineer
2 weeks ago
Charlotte, North Carolina, United States Synechron Full timeAbout UsAt Synechron, we harness the potential of digital transformation to enhance business operations. Our global consulting firm merges creativity with cutting-edge technology to provide top-tier digital solutions. Our advanced technologies and optimization strategies encompass comprehensive services in Artificial Intelligence, Consulting, Digital, Cloud...
-
Senior Cloud Security Engineer
2 weeks ago
Charlotte, North Carolina, United States Synechron Full timeAbout UsAt Synechron, we harness the transformative power of digital technology to enhance business operations. As a global consulting firm, we merge creativity with cutting-edge technology to provide top-tier digital solutions. Our innovative strategies encompass a wide range of services including Artificial Intelligence, Consulting, Digital, Cloud &...
-
Senior Applications Engineer
1 week ago
Charlotte, North Carolina, United States MasterMover Inc. Full timeJob Advertisement: Senior Applications Engineer Company: MasterMover Inc Location: Charlotte, North Carolina About Us: MasterMover is a pioneering and innovative leader in the material handling sector, offering advanced automated guided vehicle (AGV) and pedestrian electric tug solutions that enhance efficiency, safety, and reliability across various...
-
Senior Applications Engineer
1 week ago
Charlotte, North Carolina, United States MasterMover Inc. Full timeJob Advertisement: Senior Applications Engineer Company: MasterMover Inc Location: Charlotte, North Carolina About Us: MasterMover is a pioneering and innovative leader in the material handling sector, delivering advanced Automated Guided Vehicle (AGV) and pedestrian electric tug solutions that enhance efficiency, safety, and reliability across various...
-
Senior Information Security Engineer
2 weeks ago
Charlotte, North Carolina, United States Dexian - Signature Consultants Full timePosition Overview:Dexian - Signature Consultants is looking for a Senior Information Security Engineer to support our client in enhancing their cybersecurity posture.Key Responsibilities:Oversee and engage in incident response for complex security events.Conduct thorough investigations into security incidents and perform digital forensics to determine root...
-
Senior Information Security Engineer
2 weeks ago
Charlotte, North Carolina, United States Dexian - Signature Consultants Full timePosition Overview:Dexian - Signature Consultants is in search of a Senior Information Security Engineer 4 to join our esteemed client in Charlotte, NC.Key Responsibilities:Oversee or engage in incident response operations for moderately intricate security events.Execute thorough investigations of security incidents and conduct post-incident digital forensics...
-
Senior Information Security Engineer
2 weeks ago
Charlotte, North Carolina, United States Dexian - Signature Consultants Full timePosition Overview:Dexian - Signature Consultants is looking for a Senior Information Security Engineer to support our client in enhancing their cybersecurity posture.Key Responsibilities:Oversee or engage in cybersecurity incident response efforts for events of moderate complexity.Conduct thorough investigations into security incidents and perform digital...
-
Senior Security Solutions Engineer
2 weeks ago
Charlotte, North Carolina, United States VDart Inc Full timeJob OverviewPosition: Lead Information Security EngineerCompany: VDart IncEmployment Type: ContractKey Responsibilities:Minimum of 5 years in Information Security Engineering or related fields, demonstrated through professional experience, training, military service, or education.At least 5 years of experience in information technology systems and...
-
Senior Cloud Security Engineer
1 week ago
Charlotte, North Carolina, United States TEKsystems Full timePosition Overview:Our client is in search of a skilled Senior Cloud Security Engineer dedicated to enhancing secure, dependable, and innovative payment solutions tailored for healthcare clients. This role involves delivering high-caliber cloud solutions while fostering a robust DevOps culture.Key Responsibilities:Collaborate with development teams to...
-
Senior Security Solutions Engineer
2 weeks ago
Charlotte, North Carolina, United States WELLS FARGO BANK Full timeAbout the Position:This role is integral to a specialized team focused on the engineering and oversight of data protection technologies, including Managed HSMs, Azure Key Vault, and various key and secret management systems. Candidates should possess intermediate to advanced systems engineering expertise within medium to large enterprise settings. Experience...
-
Senior Security Solutions Engineer
2 weeks ago
Charlotte, North Carolina, United States WELLS FARGO BANK Full timePosition Overview:This role is integral to a specialized team focused on the engineering and oversight of data protection solutions, encompassing Managed Hardware Security Modules (HSMs), Azure Key Vault, and various key and secret management systems. Candidates should possess a robust background in systems engineering within medium to large enterprise...
-
Lead Offensive Security Engineer
1 week ago
Charlotte, North Carolina, United States Bank of America Full timePosition OverviewThe role of a Senior Adaptive Threat Replication Engineer (also known as Red Team Engineer, Penetration Testing Specialist, or Advanced Vulnerability Assessment Engineer) is crucial in the field of cyber security. This position involves collaborating with elite information security experts in dynamic environments.The Cyber Security Assurance...
-
Senior Security Solutions Engineer
2 weeks ago
Charlotte, North Carolina, United States WELLS FARGO BANK Full timeAbout this Position:This role is integral to a specialized team focused on the engineering and oversight of data protection technologies, which encompass Managed Hardware Security Modules (HSMs), Azure Key Vault, and various key and secret management systems. Candidates should possess intermediate to advanced systems engineering expertise within medium to...
-
Senior Application Support Engineer
2 weeks ago
Charlotte, North Carolina, United States Apex Systems Full timePosition Overview:The role of a Senior Application Support Engineer is pivotal in ensuring the seamless operation of production systems. This position emphasizes a comprehensive approach to incident management, problem resolution, change management, and other ITIL-aligned practices. The successful candidate will facilitate discussions and foster...
-
Senior Cloud Security Engineer
2 weeks ago
Charlotte, North Carolina, United States TEKsystems Full timePosition Overview:We are seeking a highly skilled Senior DevOps Engineer to enhance our mission of delivering secure, dependable, and innovative payment solutions tailored for the healthcare sector. The ideal candidate will play a pivotal role in providing top-notch cloud solutions while fostering a robust DevOps culture.Key Responsibilities:Collaborate with...
-
Application Security Specialist
2 weeks ago
Charlotte, North Carolina, United States Strategic Staffing Solutions Full timeApplication Security SpecialistLocation: RemoteContract Duration: 6+ Months on-site RequiredEngagement Type: W2 ContractEssential Qualifications: Minimum of 5 years in Application Security Engineering or equivalent experience through work, training, military service, or education.At least 5 years of experience in troubleshooting within intricate technical...
-
Cybersecurity Application Engineer
2 weeks ago
Charlotte, North Carolina, United States Motion Recruitment Full timeExciting Long-Term Contract OpportunityA prominent Financial Services Organization is seeking a skilled Information Security Engineer. This role is based in a hybrid work environment.About the CompanyJoin a leading financial institution with a legacy of over 150 years, renowned for its commitment to innovation in the digital landscape. This is a long-term...
-
Cybersecurity Application Engineer
1 week ago
Charlotte, North Carolina, United States Motion Recruitment Full timeExciting Long-Term Contract OpportunityA prominent Financial Services Organization is seeking a skilled Information Security Engineer. This role offers a hybrid work environment, allowing for flexibility while collaborating with top professionals in the industry.About the CompanyWith a legacy spanning over 150 years, our client is a leader in the financial...