Application Security Engineer

Main Location
United States
Open jobs
powertofly approved What SPGlobal Has to Offer:

We met with women at S&P Global to hear about the teams they're leading, the products they're building and how they integrate work with life.

Hear directly from Irina, Megan, Sameena and Meredith.

The Role: Application Security Engineer

Grade 10

The Location: Princeton – NJ

The Team: The Application security team is responsible to protect applications & product with in the company which are built to empower the markets, the responsibility includes the team to protect from bad actors & making sure security hygiene is encompassed in the software development

The Impact: This role would be responsible for running Static & dynamic scans with in the SDLC, resource would also be responsible for working with developers to remediate the findings, provide fix recommendations and train the developers to implement secure coding practices

What’s in it for you: S&P’s environment gives a greater exposure to cutting edge technologies which the applicant could benefit for career progression the work environment is very flexible

Responsibilities:

  • Experience & ability to run
    • Dynamic vulnerability assessments (DVA)
    • Static vulnerability assessments (SVA) – Code reviews
    • Software composition analysis (SCA)
    • Mobile vulnerability Assessments (MVA) – IoS & Android
    • Penetration Tests
  • Training & Empowering Developers on Security principles & coding practices
  • Define security in design requirements in software development & work with developers to bake it in the design
  • Perform hands on Application Security assessments using commercial & open source tools
  • Configure scans & establish baseline scans using Fortify/Webinspect
  • Able to perform vulnerability False positive analysis & triaging, articulate issues to developers and provide the guidelines to fix it
  • Vulnerability Research & Discovery.

Basic Qualifications:

Bachelors in Engineering

Masters in Computer science

About Company Statement: (Please select appropriate one for your division)

S&P Global Corporate

At S&P Global, we don’t give you intelligence—we give you essential intelligence. The essential intelligence you need to make decisions with conviction. We’re the world’s foremost provider of credit ratings, benchmarks and analytics in the global capital and commodity markets. Our divisions include S&P Global Ratings, S&P Global Market Intelligence, S&P Dow Jones Indices and S&P Global Platts. For more information, visit www.spglobal.com

EEO Statement:

S&P Global is an equal opportunity employer committed to making all employment decisions without regard to race/ethnicity, gender, pregnancy, gender identity or expression, color, creed, religion, national origin, age, disability, marital status (including domestic partnerships and civil unions), sexual orientation, military veteran status, unemployment status, or any other basis prohibited by federal, state or local law.  Only electronic job submissions will be considered for employment.

If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. 

The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law.

Mission
We're a community of women leveraging our connections into top companies to help underrepresented women get the roles they've always deserved. Simultaneously, we work to build truly inclusive hiring processes and environments where women can thrive and not just survive.
Are you hiring? Join our platform for diversifiying your team
Application Security Engineer
SPGlobal