Lead Application Security Engineer

April 9

🐻 Alaska – Remote

Although this job is listed in Alaska, this company may be open to hiring remote in other states.

🌾 North Dakota – Remote

Although this job is listed in North Dakota, this company may be open to hiring remote in other states.

+3 more states

🐻 Alaska – Remote 🌾 North Dakota – Remote ⚓ Rhode Island – Remote 🍁 Vermont – Remote 🦬 Wyoming – Remote

💵 $146.6k - $227k / year

⏰ Full Time

🟠 Senior

💻 Application Engineer

Apply Now

Receive Emails with Similar Jobs

Triumph Financial, Inc.

WebsiteLinkedInAll Job Openings

Triumph Financial, Inc. is a financial technology company that specializes in payments, factoring, and banking services, particularly for the trucking and transportation industry. The company operates under several brands, including TriumphPay, Triumph, and TBK Bank. TriumphPay is a dedicated payments network for freight brokers, factors, shippers, and carriers in North America. Triumph offers cash flow management services, such as factoring, fuel programs, insurance, and equipment finance. TBK Bank provides a wide array of consumer, business, and commercial banking solutions. Triumph Financial focuses on reducing friction in cash flow management and increasing the speed of payments by leveraging technology and innovation. They also engage in various philanthropic efforts and have a strong commitment to their team members, clients, and communities.

Deposit Products • Accounts Receivable Financing • Commercial Lending • Asset Based Lending • Equipment Finance

1001 - 5000 employees

Founded 2007

💳 Fintech

🚗 Transport

🏦 Banking

📋 Description

• Design and implement SDLC practices including code reviews, static/dynamic code analysis and vulnerability assessments. • Implement various types of scanning (SAST, DAST, SCA, etc.) into the CI/CD pipelines and ensure results are appropriately surfaced to developers. • Develop security related libraries used in the environment. • Collaborate with developers and conduct regular security assessments. • Develop security integrations to be used in CI/CD pipeline and for development teams. • Work with development teams to ensure that application security risks are identified and remediated in a timely manner while maintaining a balance between security & usability. • Consult and train developers on secure coding practices and ensure development teams are validating for OWASP. • Triage vulnerabilities from dynamic and static scanning tools with development teams. • Perform web application penetrating testing. • Implement security strategies to mature the OWASP software assurance maturity model. • Manage and tune web application firewalls. • Design and implement technologies to automate security processes. • Consult on secure architecture, least privileged design, threat mitigations, and security standard methodologies. • Other duties as assigned.

🎯 Requirements

• Bachelor’s Degree in Computer Science or related field is preferred. • 5+ years of experience in application security, application development and DevSecOps. • OSWE, GWAPT or similar certification is preferred. • Communicate and present security concepts to technical and non-technical audiences. • Knowledge with SOX and SOC2 compliance is a plus. • Knowledge of AWS and Kubernetes or related cloud / container technologies is preferred. • Experience with identity lifecycle management and federation technologies such as SAML. • Knowledge of Docker, Kubernetes, Jenkins and Github. • Extensive knowledge of the OWASP Top 10. • Preferably, one or more of the following: GWEB, CSSLP, GPEN, or CRISC. • Ability to function with moderate supervision. • Strong interpersonal skills. • Quality written and oral communication, and presentation skills. • Critical thinking and problem-solving skills. • Attention to detail. • Commitment to operational excellence and continuous process improvement. • Willingness to expand and apply security knowledge, skills, and abilities to department initiatives.

🏖️ Benefits

• Medical • Dental • Vision • Paid Time Off • 401k • and much more.