Application Security Analyst or Senior Analyst
Salary undisclosed
Apply on
Availability Status
This job is expected to be in high demand and may close soon. We’ll remove this job ad once it's closed.
Original
Simplified
The Federal Reserve Bank of Cleveland is part of the nation's central bank and we've provided many opportunities for professional growth during our history.
For twenty-five years in a row, we've been named "One of Northeast Ohio's Best Places to Work" by North Coast 99. This prestigious award honors organizations with outstanding employment practices, including compensation, benefits, training, recruitment, retention, community services, and employee communications.
Our People Make the Difference! The Federal Reserve Bank of Cleveland is seeking innovative thinkers with vision to build the framework that will carry the Bank into the future.
Follow us on LinkedIn, X, Instagram, and our YouTube channel - Cleveland Fed
This role is based in Cleveland, Ohio, and is a hybrid work arrangement - individuals may be required to work some days in the Federal Reserve Bank of Cleveland while working the other days from home.
Organizational Expectations :
In this role you will provide leadership in protecting the confidentiality, integrity, and availability of web and/or mobile applications by establishing and enforcing system access controls. You will define system security requirements, recommend improvements to system security frameworks, ensure authorized access to systems through monitoring, performing testing, or scanning for security vulnerabilities, and raising security awareness.
General Responsibilities :
As needed, lead the identification of security related issues and definition of security requirements during all phases of the application development lifecycle.
Review program/development documents to ensure adherence to secure coding standards, guidelines, and security requirements.
Draft, review, and approve security related test cases.
Coordinate or lead application security software testing efforts with other testing stakeholders.
Guide monitoring for atypical usage of information system accounts and other abnormalities to identify possible breaches.
Assist with FISMA initiatives, e.g., updating security plans, to support ISSO responsibilities.
Perform Penetration Testing activities to ensure web vulnerabilities are not present within Treasury Services applications.
Deliver conclusions and security recommendations to Treasury Services management, Fiscal Service, and other stakeholders. Performs other duties as assigned or requested.
Adheres to the Banks attendance policies through regular and prompt attendance.
Education and Experience :
Application Security Analyst : Bachelor's degree with 3+ years of related work experience or Associate's degree with 5+ years of related work experience - strong preference of at least one security certification (CISSP, CSSLP, CCSP, CEH, AWS Security, etc.)
Application Security Analyst Senior : Bachelor's degree with 5+ years of related work experience or Associate's degree with 7+ years of related work experience - strong preference of at least one security certification (CISSP, CSSLP, CCSP, CEH, AWS Security, etc.)
Knowledge and Skills :
Knowledge of cloud-based platforms and technologies strongly preferred.
Ability to analyze highly complex business requirements.
Thorough understanding of industry based security controls relating to applications, services, and systems.
Thorough understanding of security controls relating to access control, authentication, and auditing.
Demonstrated knowledge and understanding of information security industry trends and emerging technologies, especially relating to application security vulnerabilities.
Proficient at testing web application for security vulnerabilities, such as those listed in the OWASP Top 10 and familiar with the tools used for testing.
Demonstrated ability to learn new systems and technologies
Demonstrated ability to train others in the use of new systems and technologies
Excellent time management skills, and the ability to prioritize and multi-task.
Physical Demands and General Working Conditions
This is not necessarily an exhaustive list of all responsibilities, duties, performance standards or requirements, efforts, skills or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, the Federal Reserve Bank of Cleveland reserves the right to revise this or any job description at any time.
Bank's Ethics Rules and Drug Testing :
As a condition of employment, Federal Reserve Bank of Cleveland employees must comply with the Bank's ethics rules which generally prohibit employees, their spouses/domestic partners, and minor children from owning or controlling, directly or indirectly, any debt or equity interest in a depository institution or an affiliate of a depository institution. A "depository institution" means a bank, a trust company, or any institution that accepts deposits, including a bank chartered under the laws of a foreign country. In addition, employees (and their spouses/domestic partners, and minor children) may not own shares of mutual funds, unit investment trusts or ETFs that have a policy, as stated in the prospectus, of concentrating in the financial services industry and that have underlying investments in banks or other depository institutions. If you or your spouse/domestic partner or minor child own such securities and would not be willing or able to divest them if you accepted an offer of Bank employment, you should raise this issue with the recruiter for this posting.
In addition, as a condition of employment, candidates must undergo a background check and will be tested for all controlled substances prohibited by federal law, to include marijuana, prior to hire and for certain safety sensitive positions during employment.
Always verify and apply to jobs on Federal Reserve System Careers or through verified Federal Reserve Bank social media channels
Reasonable Accommodation Statement - The Federal Reserve Bank of Cleveland is committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. To request a reasonable accommodation for any part of the employment process, please send an email to
Full Time / Part Time
Full time
Regular / Temporary
Regular
Job Exempt (Yes / No)
Yes
Job Category
Information Technology
Work Shift
First (United States of America)
The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.
Always verify and apply to jobs on Federal Reserve System Careers ( ) or through verified Federal Reserve Bank social media channels.
Privacy Notice
For twenty-five years in a row, we've been named "One of Northeast Ohio's Best Places to Work" by North Coast 99. This prestigious award honors organizations with outstanding employment practices, including compensation, benefits, training, recruitment, retention, community services, and employee communications.
Our People Make the Difference! The Federal Reserve Bank of Cleveland is seeking innovative thinkers with vision to build the framework that will carry the Bank into the future.
Follow us on LinkedIn, X, Instagram, and our YouTube channel - Cleveland Fed
This role is based in Cleveland, Ohio, and is a hybrid work arrangement - individuals may be required to work some days in the Federal Reserve Bank of Cleveland while working the other days from home.
Organizational Expectations :
In this role you will provide leadership in protecting the confidentiality, integrity, and availability of web and/or mobile applications by establishing and enforcing system access controls. You will define system security requirements, recommend improvements to system security frameworks, ensure authorized access to systems through monitoring, performing testing, or scanning for security vulnerabilities, and raising security awareness.
General Responsibilities :
As needed, lead the identification of security related issues and definition of security requirements during all phases of the application development lifecycle.
Review program/development documents to ensure adherence to secure coding standards, guidelines, and security requirements.
Draft, review, and approve security related test cases.
Coordinate or lead application security software testing efforts with other testing stakeholders.
Guide monitoring for atypical usage of information system accounts and other abnormalities to identify possible breaches.
Assist with FISMA initiatives, e.g., updating security plans, to support ISSO responsibilities.
Perform Penetration Testing activities to ensure web vulnerabilities are not present within Treasury Services applications.
Deliver conclusions and security recommendations to Treasury Services management, Fiscal Service, and other stakeholders. Performs other duties as assigned or requested.
Adheres to the Banks attendance policies through regular and prompt attendance.
Education and Experience :
Application Security Analyst : Bachelor's degree with 3+ years of related work experience or Associate's degree with 5+ years of related work experience - strong preference of at least one security certification (CISSP, CSSLP, CCSP, CEH, AWS Security, etc.)
Application Security Analyst Senior : Bachelor's degree with 5+ years of related work experience or Associate's degree with 7+ years of related work experience - strong preference of at least one security certification (CISSP, CSSLP, CCSP, CEH, AWS Security, etc.)
Knowledge and Skills :
Knowledge of cloud-based platforms and technologies strongly preferred.
Ability to analyze highly complex business requirements.
Thorough understanding of industry based security controls relating to applications, services, and systems.
Thorough understanding of security controls relating to access control, authentication, and auditing.
Demonstrated knowledge and understanding of information security industry trends and emerging technologies, especially relating to application security vulnerabilities.
Proficient at testing web application for security vulnerabilities, such as those listed in the OWASP Top 10 and familiar with the tools used for testing.
Demonstrated ability to learn new systems and technologies
Demonstrated ability to train others in the use of new systems and technologies
Excellent time management skills, and the ability to prioritize and multi-task.
Physical Demands and General Working Conditions
This is not necessarily an exhaustive list of all responsibilities, duties, performance standards or requirements, efforts, skills or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, the Federal Reserve Bank of Cleveland reserves the right to revise this or any job description at any time.
Bank's Ethics Rules and Drug Testing :
As a condition of employment, Federal Reserve Bank of Cleveland employees must comply with the Bank's ethics rules which generally prohibit employees, their spouses/domestic partners, and minor children from owning or controlling, directly or indirectly, any debt or equity interest in a depository institution or an affiliate of a depository institution. A "depository institution" means a bank, a trust company, or any institution that accepts deposits, including a bank chartered under the laws of a foreign country. In addition, employees (and their spouses/domestic partners, and minor children) may not own shares of mutual funds, unit investment trusts or ETFs that have a policy, as stated in the prospectus, of concentrating in the financial services industry and that have underlying investments in banks or other depository institutions. If you or your spouse/domestic partner or minor child own such securities and would not be willing or able to divest them if you accepted an offer of Bank employment, you should raise this issue with the recruiter for this posting.
In addition, as a condition of employment, candidates must undergo a background check and will be tested for all controlled substances prohibited by federal law, to include marijuana, prior to hire and for certain safety sensitive positions during employment.
Always verify and apply to jobs on Federal Reserve System Careers or through verified Federal Reserve Bank social media channels
Reasonable Accommodation Statement - The Federal Reserve Bank of Cleveland is committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. To request a reasonable accommodation for any part of the employment process, please send an email to
Full Time / Part Time
Full time
Regular / Temporary
Regular
Job Exempt (Yes / No)
Yes
Job Category
Information Technology
Work Shift
First (United States of America)
The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.
Always verify and apply to jobs on Federal Reserve System Careers ( ) or through verified Federal Reserve Bank social media channels.
Privacy Notice
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job Similar Jobs