- Company
- S&P Global
- Industry
- Information Technology
- Location
- Princeton, NJ
The Role: Application Security Engineer
Grade 10
The Location: Princeton – NJ
The Team:The Application security team is responsible to protect applications & product with in the company which are built to empower the markets, the responsibility includes the team to protect from bad actors & making sure security hygiene is encompassed in the software development
The Impact:This role would be responsible for running Static & dynamic scans with in the SDLC, resource would also be responsible for working with developers to remediate the findings, provide fix recommendations and train the developers to implement secure coding practices
What’s in it for you:S&P’s environment gives a greater exposure to cutting edge technologies which the applicant could benefit for career progression the work environment is very flexible
Responsibilities:
Experience & ability to run
Dynamic vulnerability assessments (DVA)
Static vulnerability assessments (SVA) – Code reviews
Software composition analysis (SCA)
Mobile vulnerability Assessments (MVA) – IoS & Android
Penetration Tests
Training & Empowering Developers on Security principles & coding practices
Define security in design requirements in software development & work with developers to bake it in the design
Perform hands on Application Security assessments using commercial & open source tools
Configure scans & establish baseline scans using Fortify/Webinspect
Able to perform vulnerability False positive analysis & triaging, articulate issues to developers and provide the guidelines to fix it
Vulnerability Research & Discovery.
Basic Qualifications:
Bachelors in Engineering
Masters in Computer science
About Company Statement: (Please select appropriate one for your division)
S&P Global Corporate
At S&P Global, we don’t give you intelligence—we give you essential intelligence. The essential intelligence you need to make decisions with conviction. We’re the world’s foremost provider of credit ratings, benchmarks and analytics in the global capital and commodity markets. Our divisions include S&P Global Ratings, S&P Global Market Intelligence, S&P Dow Jones Indices and S&P Global Platts. For more information, visit www.spglobal.com
EEO Statement:
S&P Global is an equal opportunity employer committed to making all employment decisions without regard to race/ethnicity, gender, pregnancy, gender identity or expression, color, creed, religion, national origin, age, disability, marital status (including domestic partnerships and civil unions), sexual orientation, military veteran status, unemployment status, or any other basis prohibited by federal, state or local law. Only electronic job submissions will be considered for employment.
If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person.
The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law.
Apply via this link: https://careers.spglobal.com/ShowJob/Id/2546565/Application-Security-Engineer/