Application Security Engineer

Why Stifel

Stifel strives for a culture that puts its clients and associates first: a culture where everyone belongs, everyone is welcome, and everyone contributes to the success of our clients, their careers, and the firm as a whole.

Let’s talk about how you can find your place here at Stifel, where success meets success.

What You'll Be Doing

The Application Security Engineer is responsible for the secure design and testing of internally developed software and deeply understands security principles, technologies, and methodologies. Application Security Engineers work with software development teams to ensure security is included in the complete software development life cycle. This role will require experience in both cybersecurity and software development.

What We're Looking For

• Perform application security testing using automated tools such as SAST, SCA, and DAST.
• Evaluate automation testing results for accuracy and assign priority based on risk.
• Communicate the nature and severity of security concerns to development teams.
• Provide technical guidance and direction to remediation security weaknesses.
• Identify gaps and propose solutions to increase security efficiency and effectiveness.
• Assist in the development of technical solutions to mitigate security vulnerabilities.
• Conducts risk assessment of existing systems and provides recommendations for secure solutions.
• Stays current on cyber security threats and prevention methods.

What You'll Bring

• Understanding of application security principles, methods, and technologies.
• Strong analytical and problem-solving skills with the ability to identify and mitigate security risks.
• Ability to effectively communicate technical topics to technical and non-technical audiences.
• Ability to prioritize workload and consistently meet deadlines.
• Security architecture, threat modeling, secure design.
• Experience conducting security assessments and developing remediation strategies.

Education & Experience

• Minimum Required: Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or related field; or a related combination of education and experience.
• Minimum Required: 4-6 years of combined information security and software development experience.

Licenses & Credentials

• Minimum Required: None.

Systems & Technology

• Experience with application security testing, such as SAST, DAST, and SCA.
• Preferred: C#, Angular, and Python programming experience.

About Stifel

Stifel is more than 130 years old and still thinking like a start-up.  We are a global wealth management and investment banking firm serious about innovation and fresh ideas.  Built on a simple premise of safeguarding our clients’ money as if it were our own, coined by our namesake, Herman Stifel, our success is intimately tied to our commitment to helping families, companies, and municipalities find their own success.

While our headquarters is in St. Louis, we have offices in New York, San Francisco, Baltimore, London, Frankfurt, Toronto, and more than 400 other locations.  Stifel is home to approximately 9,000 individuals who are currently building their careers as financial advisors, research analysts, project managers, marketing specialists, developers, bankers, operations associates, among hundreds more.  Let’s talk about how you can find your place here at Stifel, where success meets success.

At Stifel we offer an entrepreneurial environment, comprehensive benefits package to include health, dental and vision care, 401k, wellness initiatives, life insurance, and paid time off.

Stifel is an Equal Opportunity Employer.