Uncubed
           

Senior Application Security Engineer- Cyber

NBCUniversal, Centennial - Colorado, Denver - Colorado, Englewood Cliffs - New Jersey, Miami - Florida, New York - New York, Orlando - Florida, Philadelphia - Pennsylvania, Remote, Stamford - Connecticut, Universal City - California,

Innovative, fast-paced, challenging.. we're everything you want in a workplace.

Level: manager

Duration: full_time


Come join NBCUniversal at an exciting time where it is transforming from an operational, tool-based cyber defense program to an intelligence and threat-based organization. The position will report to the Director of Product Security and will work directly with Senior Analysts, Security Architects, Software Development Engineers, as well as our business stakeholders throughout NBCUniversal to shape the future of cyber defense across the company.

The successful candidate is first a security subject matter expert with the ability to bridge the gap between Security Engineering, Application developers (inclusive of DevSECOps), and the Business. Given the primary goal of “shifting-left” security best-practices, the candidate also has experience in developing automation, recommending/evaluating security products to address gaps, and operationalizing application security services at scale. Lastly, the candidate is experienced with a diverse portfolio of Applications and Services from Web, Mobile, Cloud, Hybrid, and Microservices architectures leveraging their skills in technology and security frameworks.

Responsibilities

  • Provide application security consultations on common vulnerabilities across various platforms to Software Engineering organizations across NBCUniversal
  • Operationalize the Checkmarx SAST environment and develop CI/CD automation strategies to scale the service across the enterprise
  • Coordinate and evaluate 3rd party vendors and internal engineering organization to develop integration solutions and automation requirements
  • Develop targeted guidance and awareness programs for security best-practices to engineering teams as a result of Application technical vulnerability assessments.
  • Develop a scalable Security Champion program with measurable KPIs based on observed and professional experience


•7+ years of proven capability in a technical cyber security role
•Expert knowledge and experience with evaluating and remediation methodologies for common vulnerabilities in the OWASP Top 10 and SANS Top 25
•2+ years’ experience as a professional developer and software development lifecycle (SDLC) with experience in cloud environments (AWS, Azure, GCP)
•3+ years’ Experience in modern DEVOps professional development processes
•Experience with source code analysis and vulnerability assessment/analysis tools
•Experience with multiple programming and scripting languages (eg: Java, C#/ASP.NET, C/C++, Objective C, Ruby, Python, Perl, Powershell, etc.)
•Experience with multiple development and CI/CD tools (eg: eclipse, visual studio, IntelliJ, JENKINs) is a plus
•Expert communication skills written, verbal, and presentation
•Proven successes in team collaboration and networking skills as required in large Enterprise
•Checkmarx SCA, IAST, and SAST
•This is a role than can be remote



#LI-Remote
#LI-DNP

•Intellectual capability and curiosity to learn and develop complex processes
•Highly collaborative; personally, and professionally self-aware; able to and interested in interacting with employees at all levels (CISO to IC developer); embody integrity; and represent and inspire the highest ethical standards
•Strong sense of urgency and commitment, as well as sound business sense with a strategic, conceptual and operational orientation
•Passion for and interest in media and entertainment industry highly desired
•Flexible, organized, and passionate about advancing cyber security
•Great interpersonal skills and love for a team environment

At NBCUniversal, we believe in the talent of our people. It’s our passion and commitment to excellence that drives NBCU’s vast portfolio of brands to succeed. From broadcast and cable networks, news and sports platforms, to film, world-renowned theme parks and a diverse suite of digital properties, we take pride in all that we do and all that we represent. It’s what makes us uniquely NBCU. Here you can create the extraordinary. Join us.

NBCUniversal’s policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law. NBCUniversal will consider for employment qualified applicants with criminal histories in a manner consistent with relevant legal requirements, including the City of Los Angeles Fair Chance Initiative For Hiring Ordinance, where applicable.

About NBCUniversal

At NBCUniversal, we believe in the talent of our people. It’s our passion and commitment to excellence that drives NBCU’s vast portfolio of brands to succeed. From broadcast and cable networks, news and sports platforms, to film, world-renowned theme parks and a diverse suite of digital properties, we take pride in all that we do and all that we represent. It’s what makes us uniquely NBCU.

Here you can create the extraordinary. Join us.


Be a Better NBCUniversal Candidate

Learn skills and get an insider's look at NBCUniversal when you watch classes taught by their top employees.

Want to learn more about NBCUniversal? Visit NBCUniversal's website.