Cyber Security Analyst III - App Security & Vulnerability (Remote)First Citizens Bank • Raleigh, North Carolina, United States
Cette offre d'emploi n'est plus disponible
Cyber Security Analyst III - App Security & Vulnerability (Remote)
First Citizens Bank
- Raleigh, North Carolina, United States
- Raleigh, North Carolina, United States
À propos
Perform static (SAST), dynamic (DAST), and software composition analysis (SCA) to identify vulnerabilities in applications and third-party components Analyze scan results, triage findings, and prioritize remediation efforts based on risk Partner with development teams to remediate vulnerabilities and improve secure coding practices
Vulnerability Management
Conduct regular security assessments and vulnerability scans across applications and environments Validate and reproduce vulnerabilities, including false positive elimination Track and report vulnerability metrics, risk trends, and remediation progress
Security Tools & Automation
Configure, deploy, and maintain security scanning tools (e.g., Checkmarx, Veracode, Fortify, Snyk, Burp Suite, OWASP ZAP) Automate security testing processes using scripting or APIs Improve scanning efficiency and coverage through tuning and optimization
QualificationsBachelor's Degree and 6 years of experience in Information Security OR High School Diploma or GED and 10 years of experience in Information Security Required Qualifications
Hands-on experience with: SAST, DAST, and SCA tools Web application security testing (OWASP Top 10, API security)
Strong understanding of: Secure software development lifecycle (SDLC / DevSecOps) Common vulnerabilities (e.g., injection, XSS, authentication flaws)
Proficiency in one or more programming/scripting languages (e.g., Python, Java, JavaScript, Bash) Experience interpreting and prioritizing scan results and remediation plans
Preferred Qualifications
Experience integrating security tools into CI/CD pipelines (e.g., Jenkins, GitHub Actions, Azure DevOps) Familiarity of container and cloud security (AWS, Azure, GCP) Familiarity with AI/ML concepts and security implications Industry certifications such as:
CEH, Security+, SSCP, GIAC or comparable.
Key Skills
Strong analytical and problem-solving skills Provide risk-based recommendations to stakeholders Ability to communicate technical findings to both technical and non-technical stakeholders Experience working cross-functionally with development and engineering teams Attention to detail with a risk-based security mindset
Nice-to-Have Experience
API security testing tools (Postman, SoapUI) AI-assisted security tooling (e.g., anomaly detection, code analysis assistants) Knowledge of regulatory frameworks (NIST, ISO 27001, SOC 2) AI/ML & Emerging Technologies
Leverage AI/ML-based security tools for enhanced detection and analysis Assess risks related to AI/ML models (e.g., data poisoning, model inversion, adversarial attacks) Participate in securing AI-driven applications and data pipelines
Threat Analysis & Risk Management
Assess potential threats and attack vectors relevant to applications and APIs Apply threat modeling techniques (e.g., STRIDE) during development lifecycle
Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits.
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre a été publiée par l’un de nos partenaires. Vous pouvez consulter l’offre originale ici.