Specialist, Application Security job opportunity at Prudential Financial.

Home Jobs In United States Of America Tag: Application Security Specialist, Application Security position at Prudential Financial


DateMore Than 30 Days Ago bot
Prudential Financial Specialist, Application Security
Experience: General
Pattern: full-time
Country:
apply Apply Now
Salary:
Status:

Application Security

Copy Link Report
degreeBachelor's (B.A.)
loacation Newark, NJ, USA, United States Of America
loacation Newark, NJ, US..........United States Of America

Job Classification: Technology - Information Security Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability and efficiency? The Global Technology team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you’ll unlock an exciting and impactful career – all while growing your skills and advancing your profession at one of the world’s leading financial services institutions. Your Team & Role As an Application Security Specialist on the Attack Surface Management Team, you will partner with other security professionals across the Information Security Office, the Chief Technology Office, and other engineering groups in Prudential to advance Prudential’s application security program and drive Prudential’s risk reduction efforts across the global enterprise. In this role, you would be responsible for efforts to secure modern applications and ensuring “secure by design” development best practices across all digital assets in alignment with industry standards. You will track and govern risk reduction, work with partner organizations to consult on implementation efforts, mature operational processes and enable automation CI/CD controls for enforcement and monitoring. You will work on significant and unique issues where analysis of situations or data requires an evaluation of intangible variables and may impact future concepts, products or technologies to ensure security of our products and customers! The ideal candidate will have a deep understanding of modern application architecture, cloud-native security, and DevOps practices. Forward-thinking is required for this role to include focus on how to securely develop systems, enable self-service and incorporate capabilities for Security to scale and defend against evolving threats. Here is What You Can Expect on a Typical Day Serve as the escalation point for operational and project work from junior team members, providing technical support for security tools and solutions, and implementing assessment and response processes. Utilize AppSec tool and process expertise to resolve complex technical and organizational challenges, bridging gaps between AppSec/DevOps and IT/business teams to ensure resource availability for team goals. Collaborate with leadership to define the future direction of the AppSec program, while maintaining a deep understanding of daily operations to offer informed recommendations. Enhance vulnerability and configuration monitoring for open source, third-party, and proprietary code and applications, integrating security best practices into development and operations. Design, develop, and implement security policies and alerting mechanisms based on SOX and NIST standards, and assist in evaluating new software solutions. Conduct qualitative and quantitative analyses to improve user experience, promoting secure-by-design principles throughout the software development lifecycle. Validate mitigation controls, ensure reporting metrics convey risk posture to leadership, and adapt them as necessary. Revise processes, metrics, and documentation to enhance AppSec program capabilities, providing proof-of-concept exploits to demonstrate exploitability and validate remediation actions. Collaborate with technology peers and business stakeholders to ensure remediation efforts comply with corporate standards, creating technical documentation and SoPs for internal security processes. Work with engineering teams to address application vulnerabilities, developing remediation and mitigation strategies, and define requirements for automation tools to manage application security posture. The Skills & Expertise You Bring Bachelor of Computer Science or Engineering or experience in related fields Ability to coach others with minimal guidance and effectively leverage diverse ideas, experiences, thoughts and perspectives to the benefit of the organization   Experience with agile development methodologies and Test-Driven Development (TDD) Knowledge of business concepts tools and processes that are needed for making sound decisions in the context of the company's business Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges Excellent problem solving, communication and collaboration skills Applied experience with several of the following: Familiarity with vulnerability and security scanning tools, as well as common vulnerability data sources and frameworks (CVE, CVSS, EPSS, CWE) Experience improving vulnerability management platforms, processes, and assessments Engineering mindset – systems thinking, creative problem solving, deductive reasoning Experience with industry Assessment Frameworks (OWASP WSTG, PTES, Mitre Att@ck Framework) SAST, SCA, DAST, ASPM tools Strong understanding of software composition analysis and SBOMs. Ability to adjust communicate style to the target audience with a proficiency in communicating technical and business risk Experience with common vulnerability feeds from government, vendor, and open-source communities Understanding of threat actors with the ability to articulate how they operate and demonstrate how they subvert common security controls Understanding of the OWASP Top 10. Familiarity with vulnerabilities in 3rd party libraries and remediation Preferred qualifications: Scripting background (Python, PowerShell, Bash, etc.) Understanding of threat actors, with the ability to articulate or demonstrate how they operate and subvert common security controls Knowledge of industry security standards and frameworks (CIS, NIST, PCI DSS) Ability to perform exploit validation and web application penetration testing Agentic AI for Security use cases Leverage diverse ideas, experiences, thoughts, and perspectives to the benefit of the organization GIAC Web Application Penetration Tester (GWAPT) CompTIA Advanced Security Practitioner (CASP+) GIAC Cloud Security Automation (GCSA) IT Security certification beyond intro level certifications, (e.g., GCFA, GCIA, GNFA, GCTI, GREM, GCIH, GCFA, GPEN, OSCP, etc.). Cloud (AWS, Azure, GCP, etc.) Certs Other Security Certifications beyond intro level What we offer you: Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $99,700.00 to $148,500.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills. Market competitive base salaries, with a yearly bonus potential at every level .   Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave .   401(k) plan with company match (up to 4%).   Company-funded pension plan.   Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.   Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.    Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.    Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.   Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. To find out more about our Total Rewards package, visit Work Life Balance | Prudential Careers. Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.    Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom.   Prudential is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender identity, national origin, genetics, disability, marital status, age, veteran status, domestic partner status, medical condition or any other characteristic protected by law.   If you need an accommodation to complete the application process, please email accommodations.hw@prudential.com .     If you are experiencing a technical issue with your application or an assessment, please email careers.technicalsupport@prudential.com to request assistance .

Other Ai Matches

Vice President, Product Management - Fixed Income ( Hybrid, Newark/NJ) Applicants are expected to have a solid experience in handling Product Management - Fixed Income ( Hybrid, Newark/NJ) related tasks
Director, Operational Risk Management - PGIM Public and Private Fixed Income (Hybrid) Applicants are expected to have a solid experience in handling Operational Risk Management - PGIM Public and Private Fixed Income (Hybrid) related tasks
Consumer Social Media Strategist Applicants are expected to have a solid experience in handling Job related tasks
PGIM, Investment Vice President, GRES (Newark, NJ) Applicants are expected to have a solid experience in handling Investment Vice President, GRES (Newark, NJ) related tasks
Director, Product Owner Applicants are expected to have a solid experience in handling Product Owner related tasks
Lead, Identity & Access Management Applicants are expected to have a solid experience in handling Identity & Access Management related tasks
PGIM Real Estate | Intern, Portfolio Management Applicants are expected to have a solid experience in handling Portfolio Management related tasks
Lead, Cyber Defense & Response Applicants are expected to have a solid experience in handling Cyber Defense & Response related tasks
PGIM: Strategic Program Manager (Hybrid/Newark, NJ) Applicants are expected to have a solid experience in handling NJ) related tasks
Director, Tech Lead - Reinsurance Technology Applicants are expected to have a solid experience in handling Tech Lead - Reinsurance Technology related tasks
Vice President, Product Owner - AI Platforms Applicants are expected to have a solid experience in handling Product Owner - AI Platforms related tasks
Senior Actuarial Associate Applicants are expected to have a solid experience in handling Job related tasks
PGIM: Product Pricing Associate, Product Strategy (Hybrid/Newark, NJ) Applicants are expected to have a solid experience in handling Product Strategy (Hybrid/Newark, NJ) related tasks
PGIM Real Estate -Senior Investment Analyst Applicants are expected to have a solid experience in handling Job related tasks
Senior Software Engineer Applicants are expected to have a solid experience in handling Job related tasks
PGIM Real Estate -Accounting Specialist Applicants are expected to have a solid experience in handling Job related tasks
Lead, Software Engineer Applicants are expected to have a solid experience in handling Software Engineer related tasks
PGIM: Director, Product Development (Hybrid/Newark, NJ) Applicants are expected to have a solid experience in handling Product Development (Hybrid/Newark, NJ) related tasks
Director, Infrastructure Developer - AI Platforms Applicants are expected to have a solid experience in handling Infrastructure Developer - AI Platforms related tasks
Senior Claims Examiner-6 Applicants are expected to have a solid experience in handling Job related tasks
PGIM | Bank Administration Manager, Fund Operations (f/m/d) Applicants are expected to have a solid experience in handling Fund Operations (f/m/d) related tasks
Team Lead, LTD Claims (Hybrid) Applicants are expected to have a solid experience in handling LTD Claims (Hybrid) related tasks
PGIM | Associate, Fund Legal and Governance (f/m/d) Applicants are expected to have a solid experience in handling Fund Legal and Governance (f/m/d) related tasks