IT Security Analyst (Penetration Testing)

US FL PIE 11601

FIS

FIS is fintech for bold ideas. FIS is behind the financial technology that transforms how we live, work and play.

View all jobs at FIS

Apply now Apply later

Job Description

We are FIS. Our technology powers the world’s economy and our teams bring innovation to life. We champion diversity to deliver the best products and solutions for our colleagues, clients and communities. If you’re ready to start learning, growing and making an impact with a career in fintech, we’d like to know: Are you FIS?

NOTE: This role will be hybrid/3 days onsite for candidates who are located in/around Jacksonville, FL.

About the role:
As an IT Security Analyst with FIS, your skills will be put to the test on the front lines of cyber-crime. Information security is at the heart of fintech and you’ll help protect and secure highly-sensitive financial data for customers around the world. You will be part of a fast moving security environment and will be part of Data Protection team responsible to protect internal and external customer data. This position interfaces with internal application teams and external partners to develop and protect sensitive data.


About the team:

The role of a IT Security Analyst (Web App Penetration Tester) with TechDEV Security Architecture Penetration Testing team involves closely working with developers, ESO, and RBUs across the division to test  applications for their security posture in both architecture and technologies. This position requires prior knowledge of web and API frameworks and how such components are coded. The team is interactive and supportive but will challenge the candidate to quickly learn new hacking techniques and defenses. The candidate will also learn about various tools and OWASP test cases needed to test and secure the applications and APIs from attacks. In this fast-paced environment, you will be working with internal and external application developers across different business units. Be a part of exciting career that will take your Cybersecurity skills to next level. 


What you will be doing:

  • Performs manual penetration testing for web/mobile/API applications as well as Networks across the organization

  • Performs dynamic scanning for web/mobile/API applications across the organization.

  • Provides assistance related to Veracode application security support in the form of secure designs and secure code.

  • Provides assistance related to Black Duck/3rd Party modules support by way of application security solutions.

  • Able to articulate penetration test findings to developers and explain exploits and remediations.

  • Provide support and explanation to any Corporate APT findings and able to provide developers with remediations

  • Interest in cloud security, Kubernetes, docker security within DevSecOps

  • Executes security controls to prevent hackers from infiltrating company information or jeopardizing programs.

  • Researches attempted efforts to compromise security protocol and recommends solutions.

  • Maintains security systems and administers security policies to control access to systems.

  • Maintains company firewall and utilizes applicable encryption methods.

  • Creates information security documentation related to work area and completes requests in accordance with company requirements.

  • Responds to information security-related questions and inquiries using established information security tools and procedures.

  • Resolves and/or performs follow through to resolve all information security issues and questions.

  • Implements and administers information security controls using software and vendor security systems.

  • Identifies opportunities and executes plans to improve workflow and understands and quantifies business impacts of those improvements for communication to management.

  • Interfaces with user community to understand security needs and implements procedures to accommodate them. Ensures that user community understands and adheres to necessary procedures to maintain security.

  • Provides status reports on security matters to develop security risk analysis scenarios and response procedures.

  • Other related duties assigned as needed.


What you will need:

  • A bachelor's in computer science or Information Security, a related field, or the equivalent experience.

  • Minimum 6+ years of experience in Information Security and Technology. .

  • Knowledge of network and security technologies.

  • Experience with network design and engineering.

  • Prior programming (Python, Java, .NET) and architecture (any frameworks) experience required

Added Bonus if you have:

  • CISSP or any Security related certification is a plus.

  • AWS or Azure certification would be a plus.

  • Knowledge of Fintech or finance industry.

  • Knowledge of FIS products and services.


What we offer you:
At FIS, you can learn, grow and make an impact in your career. Our benefits include:

  • Flexible and creative work environment

  • Diverse and collaborative atmosphere

  • Professional and personal development resources

  • Opportunities to volunteer and support charities

  • Competitive salary and benefits

NOTE: This role will be hybrid/3 days onsite for candidates who are located in/around Jacksonville, FL.


FIS is committed to providing its employees with an exciting career opportunity and competitive compensation. The pay range for this full-time position is $99,830.00 - $167,700.00 and reflects the minimum and maximum target for new hire salaries for this position based on the posted role, level, and location. Within the range, actual individual starting pay is determined additional factors, including job-related skills, experience, and relevant education or training. Any changes in work location will also impact actual individual starting pay. Please consult with your recruiter about the specific salary range for your preferred location during the hiring process.

Privacy Statement

FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

EEOC Statement

FIS is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, genetic information, national origin, disability, veteran status, and other protected characteristics. The EEO is the Law poster is available here supplement document available here


For positions located in the US, the following conditions apply. If you are made a conditional offer of employment, you will be required to undergo a drug test. ADA Disclaimer: In developing this job description care was taken to include all competencies needed to successfully perform in this position. However, for Americans with Disabilities Act (ADA) purposes, the essential functions of the job may or may not have been described for purposes of ADA reasonable accommodation. All reasonable accommodation requests will be reviewed and evaluated on a case-by-case basis.

Sourcing Model

Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

#pridepass

Apply now Apply later
Job stats:  3  2  0

Tags: APIs Application security APT AWS Azure Black Duck CISSP Cloud Computer Science DevSecOps Docker Encryption Exploits Finance FinTech Firewalls Java Kubernetes OWASP Pentesting Privacy Python Risk analysis Veracode

Perks/benefits: Career development Competitive pay Flex hours

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.