Contact us about our enterprise services: email | phone | chat

  • Senior Application Security Architect

    FICO

    What will you do as a Senior Application Security Architect? • Perform Threat Modeling and Security architecture review • Create dataflow diagrams depicting trust boundaries • Identify asset, security controls and threat agents in the data flow diagram • Analyze weakness in the security controls and identify missing security controls • Ability to identify vulnerabilities and gap in the architecture. Deep knowledge of application level vulnerabilities • Ability to combine multiple vulnerabilities • Create use cases and abuse cases • Deep knowledge of AWS cloud environment and security aspects • Security research about new software vulnerabilities and their dependencies in FICO developed software • Experience in static and dynamic security testing • Experience in penetration testing applications and infrastructure • Experience in running Open Source program • Collaborate with engineers, consultants and leadership to address security risks and provide mitigation recommendations within the SDLC. • Be the SME for Application security process and help AppSec team members to complete the tasks assigned to them. To apply for this position please submit your resume to: AlexTeplitsky@fico.com

Description

FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 90+ countries make better decisions. Join our world-class team today and fulfill your career potential!
Education:
BS degree in Computer Science or related fields or equivalent experience
Certifications such as CISSP, CEH, GIAC, and GSSP-JAVA preferred but not mandatory

Experience/Qualifications Required:
• Preferably 8-10 years of experience in Security Architecture, design and Application Security
• Ability to identify architectural level security issues and recommend remediation
• Ability to quickly recommend solution to the enterprise related to Application Security issues
• Firm understanding of enterprise class application architectures that are highly scalable and reliable and the ability to secure them.
• Create policy standard and guidelines in the area of Application Security
• Experience with multiple languages such as Java, C++, PHP, etc. and understand how to detect and remedy related security issues such as OWASP top 10.
• Ability to scale security within the SDLC by automation using tools sets such as source code analyzers, vulnerability scanners, configuration validation, and similar techniques.
• Good communication skill and a desire to function in a team based environment.
• Ability to effectively and efficiently manage multiple tasks.

Other Experience/Qualifications:
• Highly motivated and a go getter. Ability to work in a fast pace environment
• Experience with software development tools and practices, including IDE’s, Source Code Repositories, Binary Repositories, CI and Build Tools, Package Managers. Understanding of emerging DevOps platforms and tools, e.g., Docker, Kubernetes, cloud platforms, etc. a strong plus
• Experience using bug tracking and requirement tracking tools such as Jira or Quality Center.
• Experience using Servlet/JSP, MySQL, or Apache Tomcat
• Experience in handling tools like Source clear, Palamida or Black duck
• Experience programming in either Java, Ruby, Python or JavaScript

Rewards:
• High performance culture promoting recognition, rewards and professional development.
• Competitive base salary coupled with attractive role-specific incentive plan.
• Comprehensive benefits program.

• FICO’s proven science leverages the latest technology to drive consumer behavior insights and optimize business processes. We help many of the world’s leading banks, insurers, retailers, telecommunications providers and other firms reach a new level of success.
• Our success is founded on really talented people – just like you – who enjoy innovative and high-performance environments with the opportunity to grow. Join the FICO Family and help change the way business makes decisions!
• Learn more about how you can Fulfill your Potential at www.fico.com/Careers
• FICO is an Equal Employment Opportunity Employer that values the strength that diversity brings to the workplace.
To apply for this position please submit your resume to: AlexTeplitsky@fico.com


Responsibilities

  • What will you do as a Senior Application Security Architect?
  • • Perform Threat Modeling and Security architecture review
  • • Create dataflow diagrams depicting trust boundaries
  • • Identify asset, security controls and threat agents in the data flow diagram
  • • Analyze weakness in the security controls and identify missing security controls
  • • Ability to identify vulnerabilities and gap in the architecture. Deep knowledge of application level vulnerabilities
  • • Ability to combine multiple vulnerabilities
  • • Create use cases and abuse cases
  • • Deep knowledge of AWS cloud environment and security aspects
  • • Security research about new software vulnerabilities and their dependencies in FICO developed software
  • • Experience in static and dynamic security testing
  • • Experience in penetration testing applications and infrastructure
  • • Experience in running Open Source program
  • • Collaborate with engineers, consultants and leadership to address security risks and provide mitigation recommendations within the SDLC.
  • • Be the SME for Application security process and help AppSec team members to complete the tasks assigned to them.

Details

  • Travel Up to 25%
  • Incentives Bonus
  • Clearance & Citizenship U.S. Citizenship
  • Remote Work Remote occasional
  • Education Bachelors Degree
  • Salary Range 130-150K

Join NinjaJobs!

Registered users get the benefit of full listing views, searches, posting options and more!

Company Ratings powered by

  • 3.2

    Overall Rating - OK


  • Culture and Values 3.1
  • Work/Life Balance 3.3
  • Senior Management 2.8
  • Comp and Benefits 3.2
  • Career Opportunities 3.1

NinjaJobs by the Numbers - Q2-17