Security Engineer managing end - to - end security for Pylon's mortgage API platform. Locking down sensitive customer data and drafting best practices for security policies.
About the role
- Senior Analyst in Information Security leading offensive security testing for FNBO. Collaborating with teams to improve security defenses and compliance measures.
Responsibilities
- Lead and execute penetration testing of APIs, web applications, and internal/external systems
- Coordinate penetration testing activities with application/system owners and guide issue resolution
- Act as a subject matter expert on offensive security and secure design for enterprise projects
- Contribute to operating system hardening standards and secure configuration guidelines
- Manage vulnerability management activities and ensure remediation efforts are effective
- Evaluate and advise on new technologies for secure enterprise adoption
- Provide consulting and training to business and technical teams on reducing security risks
- Partner with regulators and internal auditors on compliance reporting and assessments
- Monitor and scan systems for compliance with security standards, remediating gaps as needed
- Recommend process improvements to strengthen the enterprise security posture
Requirements
- 5+ years of relevant experience in information security, with at least 2 years of hands-on penetration testing
- Expertise across multiple security domains, including penetration testing, vulnerability assessment, risk assessment, and secure architecture
- Strong knowledge of application security principles, including secure SDLC and threat modeling
- Practical experience with tools such as Burp Suite, Metasploit, Nmap, Nessus, or similar
- Familiarity with regulatory and industry frameworks (ISO 27001, PCI-DSS, FFIEC, OCC, etc.)
- Excellent communication and documentation skills — able to present complex findings to both technical and non-technical audiences
- Ability to mentor junior team members and influence cross-functional teams
- Bachelor’s degree in Computer Science, Information Systems, Engineering, or related field (or equivalent experience)
- Professional certifications strongly preferred: OSCP, GPEN, GXPN, CISSP, or similar
- Candidates must possess unrestricted work authorization and not require future sponsorship.
Benefits
- Medical, Dental, Vision Insurance
- 401k, With Matching Contributions
- Time Off Programs
- Health Savings Account (HSA)/Dependent Care
- Employee Banking
- Growth Opportunities
- Tuition Assistance
- Short-Term/Long-Term Disability Insurance
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Account Manager developing strategic customer relationships in the Cybersecurity and Insurance sector. Collaborating with insurers and partners to enhance service offerings.
Leading Cyber Security team to tackle complex challenges for European digital security. Responsible for team development, budget management, and compliance with security requirements.
Lead AI Cybersecurity Engineer developing strategies, controls, and policies for AI security at Abbott. Ensuring the responsible application of AI technologies across the enterprise and products.
Desenvolver e gerenciar políticas de segurança e privacidade da informação na DropReal. Colaboração entre TI, Jurídico e Negócios para garantir a conformidade em Segurança da Informação.
Responsible for ISO compliance and security management in a growing organization. Ensuring adherence to ISO standards and leading quality improvement initiatives.
Security Consultant analyzing customer IT infrastructures and advising on security solutions in complex environments. Conducting audits and evaluating security events with expertise in IT - Security standards.
Information Security Consultant at Smartdesc providing strategic security guidance and support for customers. Overseeing security projects and improving clients' security posture effectively.
Lead end - to - end incident investigations and drive durable remediation across cloud and on - prem environments. Collaborate with Infra, Dev, and SRE teams to build secure, observable, and resilient systems.
Project Manager responsible for coordinating HSE initiatives at CMA CGM Group, a global leader in shipping and logistics. Monitoring performance metrics and reporting results to ensure safety and compliance.