Application Security Team Lead

Customers Bank

Malvern, PA Full time REQ-2024-405

 

 

At Customers Bank, we believe in working hard, working smart, working together to deliver memorable customer experiences and having fun. Our vision, mission, and values guide us along our path to achieve excellence. Passion, attitude, creativity, integrity, alignment, and execution are cornerstones of our behaviors. They define who we are as an organization and as individuals. Everyone is encouraged to have personal development plans. By doing so, our team members are on their way to achieve their highest potential and be successful in their personal and professional lives.

 

 

Who is Customers Bank?

Founded in 2009, Customers Bank is a super-community bank with over

$22 billion

in assets. We believe in dedicated personal service for the businesses, professionals, individuals, and families we work with.

 

We get you further, faster

.

Focused on you

:

We

provide every customer with a single point of contact. A dedicated team member

whos

committed to meeting your needs today and tomorrow.

On the leading edge

:

Were

innovating with the latest tools and technology so we can react to market conditions quicker and help you get ahead.

Proven reliability

:

We

always ground our innovation in ou

r

deep experience and strong financial foundation,

so

were

a partner you can trust.

 

What

youll

do:

The Application Security Team Lead

aims to protect software application code and data against cyber threats

at all phases of development.

 


Security assessments:
Conducting regular
application
security assessments and
identifying
vulnerabilities.

Security testing:
Implement and manage continuous testing strategies using
approved solutions
to
identify
, assess, and mitigate vulnerabilities in the software development lifecycle. Ensure all code is scanned and reviewed for security issues before deployment.

Security Automation:
Automate security testing and integrate security tools within the CI/CD pipeline. Work with the DevOps team to embed security checks into the automated
workflow
s.

Threat analysis:
Using threat analysis to
determine
the most vulnerable components of an application and
collaborate on
fortifying
them.

Security compliance:
Ensuring that every step of the software development lifecycle (SDLC) follows security best
practices.

Security documentation:
Collaborate on d
eveloping event response
documentation.

Security technologies:
Collaborate on d
esigning and implementing
new web application technologies
following
cloud security standards and best
practices.

Vendor Management:
Working directly with third party security
providers.

Safety Culture:
Participating
in the construction of a safety culture within the company by supporting the various teams in the implementation of good safety
practices.

Executive Communications:
Written and Verbal
communications to senior leadership
.

 

What do you need?


Bachelors degree in Information Technology
, Computer Science, or a related field, or equivalent work experience

Minimum of
2
years of experience in application
testing
solutions for enterprise-level projects

 

Technology Skills:


Full understanding of the
software development lifecycle
and importance of shifting left

Knowledge or Experience in understanding or building of DevSecOps
CI/CD Pipeline

Knowledge of Microservices and APIs, Mobile Applications and Web Applications

Experience with OWASP Top 10 for Mobile and WebApp Testing

Experie ce with pentesting
APIs,
MobileApps
Equal Employment Opportunity/M/F/disability/protected veteran status PI242111027

Show Full Vacancy