Position will report to the Application Security Manager and assist the appsec team. We work closely with the software development team to assist in promoting secure coding best practices, security requirements, threat modeling, web application security penetration testing, and providing secure SDLC guidance.
Primary Responsibilities:
Act as liaison between Cybersecurity and the digital banking development team
Assist development team implementing secure SDLC practices
Assist with threat modeling web applications and work with development team throughout the SDLC
Assist with web application vulnerability assessments and penetrations tests
Provide security and compliance requirements for software development projects
Stay abreast of security news and apply to the Bank's needs
Assist Application Security Engineers as needed
Required Qualifications:
Interested in security and software development
Candidate must be a student currently enrolled in a college/university
Candidate should have a minimum GPA of 3.5
Open to all technical majors, such as engineering, math, science
Seeking undergraduate level students
Strong analytical skills and ability to quickly learn new skills
Good verbal and written communication skills
Familiarity with OWASP guidelines
Additional Preferred Qualifications:
Software development or scripting experience (Python, shell, Java, json, Scrum, Jira, etc)
Knowledge of Agile and Secure SDLC
Experience in web application security testing (assessment/penetration testing)
Familiarity with network and web application protocols (Http, Https, TCP/IP, SAML 2.0, OAuth 2.0, Rest APIs, etc)
Database knowledge
Professional Qualities:
Naturally creative and imaginative
Knowledgeable about computer technology and the technical processes involved
A team player and enjoys working alongside colleagues and external consultants