https://bayt.page.link/uNVN5Bi2nk4foqbA8
أنشئ تنبيهًا وظيفيًا للوظائف المشابهة

الوصف الوظيفي

Who We are:


Charles River Development (CRD) is the FinTech division of State Street.  Together with State Street’s Middle and Back-office services, Charles River’s cloud-based Front Office technology forms the foundation of the State Street Alpha® Platform, the first front-to-back solution in the industry.


Industry momentum has seen CRD grow over 135% in headcount over the last 5 years, and we continue to grow. As a digital innovation leader, we invest into our solutions, processes, systems, and talent.


CRD / Alpha® Platform Engineering organization is innovating and transforming the platform by moving away from monolithic software to utilising next generation cloud-based technology that leverages Microsoft Azure, Kafka, Snowflake, etc.


Position Summary:


Be an integral part of an agile organization and contribute to the security of our products.  As a Junior Security Engineer, you will be a technical contributor to the effort of maintaining and enhancing the software security program at Charles River Development (CRD) / Alpha Platform. The security program encompasses vulnerability identification and tracking, assessment, and scoring (via CVSS), in addition conducting code reviews and run security scans. Junior security engineers will receive coaching and guidance from senior security engineers and leadership as they develop their skills and will become an integral part of an agile organization contributing to the secure development of the CRD/Alpha Platform.


Responsibilities:


  • Perform security code reviews (automated/manual) and identify implementations that will lead to security vulnerabilities
  • Perform security scans for open-source software, and document findings
  • Conduct manual penetration tests, validate all applicable security controls, and document findings
  • Work with CRD Engineers to develop vulnerability remediation action plans and drive implementation
  • Identify vulnerabilities in third party libraries using security scan tools
  • Identify security vulnerabilities in the release artifacts and work with engineering and product management to close out open vulnerabilities and approve releases

Education:


  • B.S. degree (or foreign education equivalent) in Computer Science, Engineering, Mathematics, Physics, or other technical course of study required.

Qualifications/Experience:


  • This is an IC role
  • 8+ Year of experience in the same domain
  • Demonstrated knowledge of common vulnerabilities and corresponding remediation approaches
  • Current knowledge of web related attack vectors, such as XSS, SQL Injection, and Remote Code Execution
  • Strong written and verbal communication skills
  • Strong analytical and problem-solving skills

State Street's Speak Up Line


لقد تجاوزت الحد الأقصى لعدد التنبيهات الوظيفية المسموح بإضافتها والذي يبلغ 15. يرجى حذف إحدى التنبيهات الوظيفية الحالية لإضافة تنبيه جديد
تم إنشاء تنبيه للوظائف المماثلة بنجاح. يمكنك إدارة التنبيهات عبر الذهاب إلى الإعدادات.
تم إلغاء تفعيل تنبيه الوظائف المماثلة بنجاح. يمكنك إدارة التنبيهات عبر الذهاب إلى الإعدادات.