Application Security Engineer

POSITION SUMMARY

The Application Security Engineer plays a critical role in safeguarding our software applications from cyber threats. This position requires a deep understanding of security principles, coding best practices, and security testing and risk assessment methodologies. The ideal candidate will be responsible for identifying and mitigating security vulnerabilities, collaborating with development teams to integrate secure coding practices, and implementing advanced security solutions. They will also conduct threat and security assessments, integrating security within CI/CD pipelines, and incident response activities to ensure the robustness of applications. This role requires strong technical expertise in application security tools, cloud security, and secure software development lifecycle (SDLC) frameworks.

ESSENTIAL FUNCTIONS

• Maintaining and following secure coding practices and support platform hardening efforts
• Collaborating with developers to ensure secure coding practices throughout the software development lifecycle
• Collaborate with cross-functional teams to deliver features from concept to production
• Conducting threat and security assessments to identify weaknesses
• Designing and implementing security solutions to protect applications from threats
• Monitoring security trends and threats and staying updated on emerging technologies (e.g., Artificial Intelligence, Model Context Protocol)
• Integrating security scanning tools into CI/CD pipelines to enhance security automation
• Responding to security incidents and assisting in remediation efforts
• Design, develop, and maintain web applications using Python and Django
• Integrate third-party APIs and services as needed

KEY COLLABORATORS
Information Security resources and Information Technology – architecture, engineering, and development teams

SUPERVISORY RESPONSIBILITIES

None

COMPETENCIES

• Alignment w/ Sunrise Core Values
• Professionalism
• Adaptability
• Secure Coding Techniques
• Application Development
• Planning/Delegation
• Problem Solving
• Resource Management
• Relationship Management
• Teamwork
• Quality Service
• Productivity

EDUCATION & EXPERIENCE

• 2 Year college degree/certificate required.
• 4 Year college degree in computer science is preferred.
• 3-5 years of application development, with a focus on application security required.
• Information Security related Certifications is preferred.
• Experience in the financial industry preferred.
• Excellent troubleshooting/problem solving skills required.
• Hands-on experience with code repositories (e.g., GitHub), CI/CD pipelines, security testing tools (e.g., Veracode), and vulnerability management (e.g., Qualys) is required.
• Working knowledge of Microsoft Azure and Cloud Security
• Threat management and modeling experience is preferred.
• A comprehensive skill set in application security and secure coding principles is required

COMPENSATION & BENEFITS

The expected starting annualized salary range is between $80,000 - $130,000 annually depending on experience and qualifications.

In addition, this position is eligible to enroll in a variety of benefits including Medical, Dental and Vision insurance, Retirement (401k) savings, Life and AD&D insurance, Short and Long-term disability insurance, Paid Time Off (PTO), Volunteer Time Off, Paid Parental Leave, Pet Insurance, and more.  Details at www.sunrisebanks.com/about/careers/.

This Position Summary reflects management’s assignment of major responsibilities, which represent the majority of essential functions.  It is not to be construed as an exhaustive statement of duties, responsibilities, or requirements.  They may be subject to change at any time due to reasonable accommodation or other reasons