Application Security Engineer Specialist
GBR LNDN 25 Walbrook FL5&6
Applications have closed
FIS
FIS is fintech for bold ideas. FIS is behind the financial technology that transforms how we live, work and play.Are you ready to unleash your full potential? We’re looking for people who are passionate about payments to chart Worldpay’s path to being the largest and most-loved payments company in the world.
About the team
Our Application Security Team is dedicated to helping our development teams build secure software solutions for merchants. The team provides security input to engineering teams throughout the product lifecycle. They work closely with engineers to proactively identify, assess, and resolve software vulnerabilities. They also create reference implementations for security patterns to be used across products in a reusable, consistent manner. The team partners with the broader Security team to help accelerate software initiatives for merchants.
What you will be doing
You will work closely with the engineering teams to explain detected software vulnerabilities and recommend remediation options. You will help build security awareness through team connects, lunch and learns, and reviews. You will work to promote controls to secure software throughout the lifecycle, from the developer’s sandbox through to production. You will use your familiarity with secure code patterns to recommend implementations (e.g. authentication, encryption)
Explain detected vulnerabilities in software and recommended remediation options.
Build security awareness- highlighting active exploits and assessing urgency levels.
Vulnerability scoring and analytics, managing risk acceptance thresholds)
Provide software security design insight for propositions, product designs, and service enhancements throughout full lifecycle from initial idea to running in production.
Align solutions with PCI, SOC, GDPR, CCPA, and cloud security best practices.
Communicate security concerns and design options to business.
What you bring:
Software security and software engineering experience
Experience working with on-prem and cloud applications.
Experience using DAST and SAST tools and services.
Experience performing secure code reviews, false-positive/non-exploitable verification.
Familiarity with Java and/or .NET
Added bonus if you have:
Expertise in authentication and authorization protocols, cryptography, and application security.
Experience in analysing threats of cloud and application components.
Payment industry and PCI experience
Experience with securing API's, web app, API, and WAF protection.
CISSP or other security certifications
What we offer you
A modern, international work environment and a dedicated and motivated team
The chance to work on some of the most challenging, relevant issues in financial services & technology.
A fantastic range of benefits designed to help support your lifestyle and wellbeing.
A work environment built on collaboration, flexibility and respect.
#LI-AB1
#LI-Hybrid
#LI-Worldpay
Privacy Statement
FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.
Sourcing Model
Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.
#pridepass
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics APIs Application security CCPA CISSP Cloud Cryptography DAST Encryption Exploits GDPR Java Privacy SAST SOC Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open PowerShell-related jobs
- Open SQL-related jobs