Alliant Credit Union company image
Alliant Credit Union
We set the standard for simple and rewarding digital banking.
Hybrid
View Profile
Jobs//Hybrid//Cybersecurity + IT//

Application Security Engineer

Sorry, this job was removed at 10:39 a.m. (CST) on Tuesday, June 7, 2022
View 295 Jobs
Find out who's hiring in Northwest Suburbs.
See all Cybersecurity + IT jobs in Northwest Suburbs
View 295 Jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

Start a Rewarding Career with Alliant

What will your day look like?

The Application Security Architect is responsible for validating that application services are designed and implemented with high security standards. This individual analyzes the security of applications in tandem with their underlying services, including connected dependencies such as middle-tier systems and databases. Additionally, the Application Security Engineer addresses legacy and emerging security issues, and implements repeatable secure development practices to reduce the introduction of program design flaws that may lead to exploitation.  As issues are uncovered, the Application Security Engineer communicates with the appropriate technical and leadership teams to ensure a focus on risk mitigation – allowing for business continuity, but without negligent risk.  The Application Security Engineer is constantly assessing applications for weaknesses and finding resolutions before they can be abused.

 

 The incumbent is also responsible for assessing the security of applications for business-to-business initiatives, third-party relationships, outsourced solutions and vendors. Considered a highly knowledgeable individual, the Application Security Engineer is expected to recommend programmatic controls, and monitor and manage secure development practices to address modern day issues.  Direction is received from the Sr Manager, Application Security.

Responsibilities

Do you see yourself doing this?

 

  • Perform vulnerability and penetration testing.
  • Document security findings with reasonable methods to secure.
  • Focus on automation to aid in efficiencies with both testing and remediation of findings.
  • Work in tandem with developers to provide repetitive validation testing prior to production while allowing for a continuous cycle of development followed by application security assessments.
  • Regularly monitor the security community for public-facing security issues, as well as to learn new tactics that can be used in testing.
  • Attend and participate in application projects and change management committees. This includes interacting with business units and technical teams to understand what is coming and how their projects can be more secure from the beginning.
  • Fully define and follow a security review process to ensure an automated and repeatable process is managed. This can be through the use of dynamic and static code analysis resources.
  • Use security standards and implementation configurations, as well as common security frameworks. Prepare for and manage bug bounty programs. Document delivery and implementation advances that meet defined service-level agreements (SLAs) and business metrics.  Align with architects and development teams for a mission of secure design.
  • Train developers and junior application security engineers on secure coding practices.
  • Actively participate and lead security team meetings that facilitate secure design.
  • Highly engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects. Additionally, deliver projects on time, within budget and in accordance with SLAs.
  • Focus on application security that observes compliance – Health Information Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), etc. – and privacy laws.
  • Work in tandem with architects, the security operations center (SOC), incident responders (when anomalous activity and host compromise occurs), and technology infrastructure and development team members.
  • Respond to and handle service and escalation tickets within SLA expectations.
  • Develop security test plans from the architectural design. Identify deficiencies and make enhancements to ensure production is not impacted.
  • Drive security efficiencies, enabling security team members to work on more advanced tasks.
  • Conduct performance testing to stress the limitations of security solutions while ensuring business innovation and day-to-day processes are not negatively impacted.
  • Perform other duties as assigned.

Adhere to and ensure compliance of all business transactions with policy and process of the Bank Secrecy Act.  Ensure compliance with all applicable state and federal laws, company procedures and policies. Maintain integrity and ethics in all actions and conversations with or regarding credit union members and their accounts; complies with Privacy Act directives.

 

Where permitted by applicable law, successful applicants to this position must either have received or be willing to receive the COVID-19 vaccination by date of hire to be considered (proof of vaccination is required), or be willing to submit a negative COVID-19 test result in advance of each visit to an Alliant facility.

Qualifications

What makes you a great fit?

You’ll be a great fit if in addition to the completion of a Bachelor's degree in Computer Science or a related field preferred, and you have:

 

  • At least 3 years’ experience in cybersecurity, including compliance and risk management with an application development and/or network security engineering background.
  • Highly technical and analytical experience, with a proven deep background (preferred 3+ years’ in addition to cybersecurity) in application programming. Experience in threat modeling applications.
  • Vulnerability and penetration-testing skills.
  • Excellence in communicating business risk from cybersecurity issues.
  • Proficiency in software development (.Net, Java, Python, C++, Ruby, etc.).
  • Solid understanding of network and web protocols.
  • Experience with security of intra-company and third-party APIs.
  • Experience with dynamic and static analysis tools.
  • Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
  • Experience with applications hosted in Amazon Web Services (AWS) or Microsoft Azure.
  • Experience with cryptography controls and measures to secure applications and data.
  • DevOps background in public and private clouds.
  • Experience with one or more of the following: ISO 27001, NIST, PCI Data Security Standard (PCI DSS), SOX, the General Data Protection Regulation (GDPR), Center for Internet Security (CIS) standards or Service Organization Controls (SOC) 2.
  • Working knowledge of Windows, Linux and Unix.
  • Familiarity with state privacy laws.
  • Highly trustworthy; leads by example.
  • Relevant security certifications (GWAPT, CISSP, OSCP, or other similar certs)

 

When you’re happy, we’re happy!

As a thank you for joining our team, you’ll benefit from:

 

  • Competitive medical, dental, and free vision benefits
  • Competitive compensation plan
  • Contributions towards gym memberships
  • Generous PTO and banking holidays off

 

See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Calli Cardillo
Director, Technical Strategy & Portfolio Management
PUTTING PEOPLE FIRST
Propelling product forward through teamwork
Cardillo oversees enterprise execution for digital products at Alliant. To this end, her team has been rapidly growing and building out new processes and changes to products designed to enhance customer experience. She credits her team with being her number one asset in approaching these goals. “Happiness in teams leads to top output,” Cardillo said. To encourage a happy and healthy team environment, they align on individual development plans. Employees are encouraged to join ERGs, explore their strengths and pursue training and certification programs.
Cardillo oversees enterprise execution for digital products at Alliant. To this end, her team has been rapidly growing and building out new processes and changes to products designed to enhance customer experience. She credits her team with being her number one asset in approaching these goals. “Happiness in teams leads to top output,” Cardillo said. To encourage a happy and healthy team environment, they align on individual development plans. Employees are encouraged to join ERGs, explore their strengths and pursue training and certification programs.
I feel genuinely supported by the team I work with. It is so rewarding to celebrate successes as a team when you can directly see and feel the impact from how hard everyone is working.
Crystal Luna
Director, Banking Operations
EMPOWERING EMPLOYEES
Inviting contributors to take the lead
Since joining Alliant in 2006, Luna has experienced the company’s focus on professional development first hand, advancing through several roles into a senior leadership position. “My approach to leadership has always been to take my team along for the ride,” Luna said, noting that she celebrates the successes of direct reports that move into managerial positions. As the founder of EMPOWER, Alliant’s Black professionals ERG, Luna is committed to creating leadership opportunities for a diverse workforce and ensuring the company is an equitable and inclusive place that elevates its employees.
Since joining Alliant in 2006, Luna has experienced the company’s focus on professional development first hand, advancing through several roles into a senior leadership position. “My approach to leadership has always been to take my team along for the ride,” Luna said, noting that she celebrates the successes of direct reports that move into managerial positions. As the founder of EMPOWER, Alliant’s Black professionals ERG, Luna is committed to creating leadership opportunities for a diverse workforce and ensuring the company is an equitable and inclusive place that elevates its employees.
I take a supportive role and allow my team members to take the lead. This showcases their talents to others in the organization and gives them the confidence to take on bigger roles and responsibilities.
Sean Briscoe
Director, Credit Product Strategy & Analytics
PRODUCING FINANCIAL WELLBEING
Developing tech in service of people
Briscoe was initially excited to join Alliant for two reasons: its forward-thinking digital-first approach to lending and its commitment to serving members as a nonprofit organization. His team recently set its sights on improving Alliant’s flagship Visa Cashback Signature Card, working with product, marketing, compliance and technology teams to enhance member experience. “We continue to find new opportunities for growth and new ways to serve our members,” Briscoe said. “The team at Alliant is engaged, energized, self-motivated and always member-focused.”
Briscoe was initially excited to join Alliant for two reasons: its forward-thinking digital-first approach to lending and its commitment to serving members as a nonprofit organization. His team recently set its sights on improving Alliant’s flagship Visa Cashback Signature Card, working with product, marketing, compliance and technology teams to enhance member experience. “We continue to find new opportunities for growth and new ways to serve our members,” Briscoe said. “The team at Alliant is engaged, energized, self-motivated and always member-focused.”
Everything I do helps improve the financial lives of our members, and each one of my ideas is heard and taken seriously.

What are Alliant Credit Union Perks + Benefits

Alliant Credit Union Benefits Overview

Alliant constantly works on improving its Employee Value Proposition. Our Human Capital Group team seeks ongoing employee feedback to continue to raise the bar on employee-focused benefits, making updates to the existing and adding new benefits every year.

Culture
Volunteer in local community
Alliant offers 8 hours of paid volunteer time benefit for all employees.
Partners with nonprofits
To execute on our mission of Bridging the Digital Divide, Alliant has partnered with PCs for People, Connected Nation, DiGiTunity and the National Digital Inclusion Alliance.
Open door policy
OKR operational model
Team based strategic planning
Flexible work schedule
Alliant provides employees with a flexible work schedule that includes Flexible start and end times.
Remote work program
Since the pandemic began, all non-essential job functions have been remote 100%.
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Highly diverse management team
Mandated unconscious bias training
Alliant provides our leaders and employees with unconscious bias, psychological safety and inclusive mindset training.
Diversity manifesto
Diversity employee resource groups
Alliant supports employee resource groups. At this time, employees created INCLUDE, a women's resource group and ALL, an LGBTQ+ employee resource group, and EMPOWER black employees' resource group.
Hiring practices that promote diversity
At Alliant, we ensure that we have a diverse candidate slate for every role for which we hire and that our interview panels are also diverse.
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Alliant employees can contribute up to $2,750 annually to their Health Care FSA and $5,000 to their dependent care FSA.
Disability insurance
Company provides Short Term Disability benefit payable for up to 13 weeks as well as Long Term Disability insurance that covers 66.67% of your monthly earnings up to $10,000 monthly maximum payout.
Dental insurance
Preventive services covered at 100%, Basic services covered at 80%; Major restorative services covered at 50%; Orthodontics covered at 50%
Vision insurance
Alliant offers free vision benefits to its employees and their dependents. The vision benefits plan covers 100% for annual eye exams after a $10 copay and $150 for glasses and contacts.
Health insurance
Alliant provides a choice of two medical plans. If you elect a medical plan, you are automatically enrolled in an HSA where Alliant contributes funds to help you pay for your out-of-pocket expenses.
Life insurance
Basic Life insurance and Accidental Death & Dismemberment is equal to 1 times an employee's annual salary. Employees can also purchase Voluntary Life insurance for themselves and their dependents.
Pet insurance
Our pet insurance policy covers up to %90 of out of pocket expenses.
Wellness programs
With Alliant's wellness reimbursement program, each employee receives up to $35 per month (non-cumulative) to spend on wellness activities and discounted wellness services through ThrivePass.
Mental health benefits
Alliant employees get free access to ComPsych, Calm and myStrength apps and services.
Financial & Retirement
401(K)
Alliant offers a 401(k) plan administered through Fidelity where employees can contribute up to 60% of eligible compensation to the annual IRS limit.
401(K) matching
We match 100% of contributions up to the first 5% of an employee's annual gross pay. eligible salary. You will be 100% vested in these contributions right away.
Performance bonus
In the last years, Alliant’s bonus payouts were above 100%.
Charitable contribution matching
The Alliant Credit Union Foundation also matches employee donations made to non-religious, non-political 501(c)(3) organizations up to a total of $1,000 per person per calendar year.
Child Care & Parental Leave Benefits
Generous parental leave
We provide up to 6 weeks of parental leave for the primary and secondary caretakers.
Family medical leave
Employees who have been with the company for 12 months are eligible for up to 26 weeks of family medical leave.
Vacation & Time Off Benefits
Unlimited vacation policy
Generous PTO
Our employees receive between 21 and 31 days per year of paid time off based on years of service. Alliant also offers a Flexible Time Off (unlimited time off) policy for Sr. Managers and above.
Paid volunteer time
Our employees receive 8 hours per year of paid volunteer time.
Paid holidays
Office Perks
Commuter benefits
Employees can withhold up to $280 per month pre-tax for transit expenses and up to $280 per month pre-tax for parking expenses.
Company-sponsored outings
Alliant hosts between 4 and 6 major employee events in a year, including the Annual Volleyball Tournament, annual summer party and employee appreciation day celebration.
Free snacks and drinks
Currently, Alliant offers free snacks, free hot beverages and bottled water during the day, free lunch/food events on occasion and bi-weekly free fruit.
Some meals provided
Fitness stipend
Alliant reimburses its employees up to $35 per month for gym, health and fitness services and activities.
Professional Development Benefits
Job training & conferences
Alliant offers employees professional development opportunities like Annual individual budget for training, onsite training courses and the ability to attend job-related conferences and seminars.
Tuition reimbursement
We offer up to $5,250 annually for continuing education through our tuition reimbursement benefit.
Lunch and learns
Alliant hosts lunch and learn and hour with the leader meetings once per quarter, giving our employees to hear from our executive and senior leadership teams.
Promote from within
Continuing education stipend
We offer up to $5,250 annually for continuing education through our tuition reimbursement benefit.
Online course subscriptions available
Customized development tracks
Paid industry certifications

Additional Perks + Benefits

Alliant constantly works on improving its Employee Value Proposition. Currently, Alliant offers free snacks, free hot beverages and bottled water, free lunch/food events on occasion, personal concierge service, on-site package/mailing service, massage therapy, discounted ticket sales, car wash, dry cleaning, convenience store, vehicle maintenance, banking and a gym at our headquarters location.

Our company works hard to create a work environment that allows our employees to maintain a healthy work/life balance. We encourage our employees to take advantage of flexible hours and offer an option to work remotely. Alliant also offers a very generous PTO package, which starts new employees with 21 PTO days annualized in their first year of employment.

The well-being of our employees and their families translates to productivity and commitment to their jobs. That is why we constantly work on launching new benefits that will help them find the best medical care at the lowest cost and get the help they need with convenience and without unnecessary stress.

View full list of perks + benefits
Photo Gallery

More Jobs at Alliant Credit Union

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Alliant Credit UnionFind similar jobs like this