Advisor, Application Security Engineering
What We'll Bring
At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation we are consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius. Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.What You'll Bring
3+ years of software development experience and/or full-stack engineeringExtensive experience with designing, building and maintaining application security solutions -- DAST, SAST, SCA
Ability to translate policies into event-driven as-code solutions
Proficiencies with popular scripting and programming language frameworks -- python, java, javascript, ruby, .NET, C++, C#
An advanced understanding of varying application development architectures, platforms and methodologies
Robust experience with CI/CD best practices and technologies such as git, jenkins, drone, terraform, ansible and chef
A passion for innovation and the challenges of creating something new
Demonstrated ability to develop long-term strategies and lead large and complex endeavors
Ability to stay current with evolving technologies and effectively educate leadership on trends and opportunities
Ability to identify potential problems and quickly present options to overcome or bypass those issues
Self-starter personality that is continually looking for opportunities to simplify and optimize technologies and processes
Desire to work in a collaborative environment and to serve as a coach and mentor for junior team members
Strong written/verbal communication skills and executive presence
We'd Love to See:
Robust expertise and expertise with cloud and container platforms
Ample experience with cloud native and open source security solutions
One or more of the following (or similar) certifications: GPEN, GWAPT, GWEB, OSCP, CASS, CISSP, eCPPT
Experience with tools such as Veracode, IBM AppScan, BlackDuck, Burp Suite, Checkmarx, SonarQube
Impact You'll Make
Application Security Engineering is a DevOps team at TransUnion focused on building first-of-its-kind security products and services for the enterprise. As a member of this innovative agile group, you will collaborate with others to develop and maintain application security tooling, integrations and event-driven automations. Engineers on this team will be challenged to provide technical and thought leadership in an effort to improve secure development practices through simplified/optimized application security services. To succeed in this role, you need to be courageous, eager to learn, able to work through ambiguity, communicate effectively, and foster idea generation.
