SanFranRecruiter Since 2001
the smart solution for San Francisco jobs

Application Security Software Engineer (AfroTech)

Company: Wells Fargo
Location: San Francisco
Posted on: November 22, 2021

Job Description:

Job DescriptionImportant Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume when submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message.-- In order to receive text message invitations, your profile must include a mobile phone number designated as ---Personal Cell--- or ---Cellular--- in the contact information of your application.At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired.Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.The Strategy, Digital and Innovation (SDI) team forges the strategic direction of Wells Fargo, provides and manages our digital foundation and common capabilities, and transforms our business models to meet evolving customer needs and grow the company. The investments we are making will help the company create innovative digital banking experiences, and make it easier for customers to achieve their financial goals.The Digital Technology and Innovation Application Security Team is looking for a SOFTWARE ENGINEER (engineering technical analyst with security knowledge) to help with daily operations of the Application Security Champion (ASC) operating model, which supports the Enterprise Application Security Program (EASP) providing secure coding governance and support services. EASP operations (processes and procedures) is also known as the Secure Software Development Life Cycle (S-SDLC) methodology.--Acts in the highest level technical role as an individual contributor and/or team lead for the most complex computer applications and/or application initiatives. Utilizes a thorough understanding of available technology, tools, and existing designs. Works on the most complex problems where analysis of situations or data requires evaluation of intangible variance factors. Plans, performs, and acts as the escalation point for the most complex platform designs, coding, and testing. Leads most complex multiple modeling, simulations, and analysis efforts.-- Acts as expert technical resource to programming staff in the program development, testing, and implementation process.Educates and guides defense teams through the attack and creates proof of concepts if necessary. Conducts security risk assessments to ensure compliance with corporate information security policies and adherence to best practices. Identifies security vulnerabilities for the company's networks, application systems, hardware infrastructure and emerging technologies to improve the enterprise information security posture. Communicates to the line of business on the inherent risks, providing meaningful hardening and mitigation strategies. Provides leadership to principal engineers and supports special projects. Expert knowledge and understanding of information security practices and policies, including Information Security Frameworks, Standards, and best practices. Manages highly complex issues and negotiate solutions. Provides security solutions that require resolution of complex operational and integration issues associated with networks, data systems, and applications to successfully deploy secure technologies and to enhance existing technologies. Remediates OWASP common AppSec Vulnerabilities (eg: XSS, Parameter tampering, Injection, etc.) is needed. Utilizes Static Analysis tools such as Fortify or Checkmarx.-- Will provide leadership to other junior team members. Will be leading a portfolio of applications from a Security Services perspective. Communicates vulnerability details to both technical and non-technical audiences.Required Qualifications

  • 5+ years of software engineering experience
  • 1 + year of experience remediating Open Web Application Security Project (OWASP) common AppSec Vulnerabilities such as XSS, Parameter tampering and Injection
  • 1 + years of experience communicating system vulnerabilities and remediation guidance to both technical and non-technical personnelDesired Qualifications
    • An industry-standard technology certification
    • Strong verbal, written, and interpersonal communication skills
    • Excellent verbal, written, and interpersonal communication skills
    • 1+ year of Fortify Code Analyzer experience
    • 1+ year of CheckMarx experience
    • 1+ year of SAST (Static Analysis Software Testing) experienceOther Desired Qualifications
      • Ability to manage highly complex issues and negotiate solutions
      • Ability to interact and communicate effectively with all levels of an organization; including at the executive level.Street AddressCA-SF-Financial District: 333 Market St - San Francisco, CAMN-Minneapolis: 550 South 4th St - Minneapolis, MNPA-Philadelphia: 101 N Independence Mall E - Philadelphia, PADisclaimer
        All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.Relevant military experience is considered for veterans and transitioning service men and women.Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.Benefits SummaryBenefits--Visit benefits information.

Keywords: Wells Fargo, San Francisco , Application Security Software Engineer (AfroTech), IT / Software / Systems , San Francisco, California

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest California jobs by following @recnetCA on Twitter!

San Francisco RSS job feeds