Lead Engineer - Application Security
What We'll Bring
At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation we are consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius. Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.What You'll Bring
2+ years of software development experience and/or full-stack engineeringExperience with designing, building and maintaining application security solutions -- DAST, SAST, SCA
Familiarity with popular scripting and programming language frameworks -- Python, Java, Javascript, Ruby, .NET, C++, C#
A strong understanding of varying application development architectures, platforms and methodologies
A passion for innovation and the challenges of creating something new
Ample technical and thought leadership skills
Demonstrated ability to develop strategies and lead large and complex endeavors
Ability to identify potential problems and quickly present options to overcome or bypass those issues
Self-starter personality that is continually looking for opportunities to simplify and optimize technologies and processes
Desire to work in a collaborative environment and find value and methods for up-skilling others
A solid understanding of the impact of own work
Strong written and verbal communication skills
We'd Love to See:
Experience and expertise with operating in cloud and container platforms
Ample experience with cloud native and open source security solutions
Advanced understanding of immutable architecture and practices
One or more of the following (or similar) certifications: GPEN, GWAPT, GWEB, OSCP, CASS, CISSP, eCPPT
Familiarity with tools such as Veracode, IBM AppScan, BlackDuck, Burp Suite, Checkmarx
Impact You'll Make
Application Security Engineering is a DevOps team at TransUnion focused on building first-of-its-kind security products and services for the enterprise. As a member of this innovative agile group, you will collaborate with others to develop and maintain application security tooling, integrations and event-driven automations. Engineers on this team will be challenged to provide technical and thought leadership in an effort to improve secure development practices through simplified/optimized application security services. To succeed in this role, you need to be courageous, eager to learn, able to work through ambiguity, communicate effectively, and foster idea generation.
