Application Security Specialist

Responsibilities

Identify potential vulnerabilities within the bank's IT systems using penetration testing tools and techniques to ensure security of computer systems, applications, servers and networks.

Develop and execute assessments, audits and threat models to identify vulnerabilities and communicate key findings and recommendations to stakeholders.

Collaborate with stakeholders and IT teams to identify emerging cyber-attack techniques, tools and technologies and support the development of penetration testing methodologies.

Develop and maintain comprehensive documents and reports for senior stakeholders on penetration test findings, and remediation guidance.

Collate and understand security requirements and controls in business processes, application/services, to enhance overall security posture and assurance.

• L – Listen and be authentic
• E – Energise and inspire
• A – Align across the enterprise
• D – Develop others

You should have experience with:

• Development experience in at least one ecosystem such as Java Spring, .NET, or Go Lang
• Cloud-native development security, container orchestration such as Kubernetes, and infrastructure‑as‑code tools such as Terraform and Helm
• Advanced knowledge of API and mobile security, including common vulnerabilities and mitigation techniques
• Deep understanding of modern secure SDLC processes, Dev Ops tool chains, CI/CD automation, and code‑signing practices
• Knowledge of SAST, DAST, SCA, and software supply chain security
• Understanding of AI security within application security, including model vulnerabilities, malware risks, and prompt injection techniques

Location:

Whippany, NJ.

Salary:
Minimum $125,000 – Maximum $170,000.

Benefits: medical, dental, vision coverage, 401(k), life insurance, paid leave, incentive award.