VP, Information Security Officer managing cyber risk and advisory services at State Street. Collaborating with teams to protect digital assets and enhance security measures across the organization.
About the role
- Software Security Specialist enabling developers to build secure software and mitigate vulnerabilities at PNC. Focus on coaching, mentoring, and providing security expertise to software development teams.
Responsibilities
- Responsible for enabling developers to create more secure software through coaching and mentoring developers and provides subject matter expertise to Application Security programs
- Works with developers to help them create more secure code
- Manages projects and tasks related to developer
- Sets secure coding standards and requirements with team
- Coaches developers on language specific coding techniques to avoid or remediate coding flaws.
Requirements
- Deep expertise guiding development teams in remediating common application vulnerabilities, including OWASP Top 10, API security, and secure design principles
- Proven hands-on experience performing threat modeling to identify and mitigate risks in software
- Practical experience building and implementing strong authentication solutions
- A genuine passion for secure software development, with the ability to clearly articulate its importance
- Strong analytical skills to identify gaps in the Software Development Lifecycle (SDLC) and recommend actionable improvements
- Hands-on experience with secure design, security architecture, and implementing software security solutions
- Ability to work both independently and collaboratively within cross-functional teams
- Familiarity with Agile development methodologies (e.g., Scrum, Kanban)
- Experience with SAST, DAST, RASP, and integrating security into CI/CD pipelines
- Excellent communication and relationship-building skills
- Hands-on experience with secure coding and secure by design practices
- Knowledge of software security frameworks such as BSIMM or SAMM
- Strong technical skills in application security, product security
- Relevant certifications such as CSSLP, SANS GWAPT
- Experience securing public cloud environments (e.g., AWS, Azure, GCP)
- Background in software development
- Familiarity with tools like SD Elements or similar platforms
- Ability to define and track security metrics and reporting
- Proven hands-on experience designing, building, and securing AI systems in production environments
- Led or contributed to a Security Champions program to promote secure development practices and foster cross-functional security awareness.
Benefits
- medical/prescription drug coverage (with a Health Savings Account feature)
- dental and vision options
- employee and spouse/child life insurance
- short and long-term disability protection
- 401(k) with PNC match
- pension and stock purchase plans
- dependent care reimbursement account
- back-up child/elder care
- adoption, surrogacy, and doula reimbursement
- educational assistance, including select programs fully paid
- a robust wellness program with financial incentives
- paid time off, depending on your eligibility: maternity and/or parental leave; up to 11 paid holidays each year; 8 occasional absence days each year; between 15 to 25 vacation days each year, depending on career level; and years of service.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Security Consultant enhancing AI security solutions at BAE Systems. Conducting security assessments and advising clients on AI risk management in national security projects.
IT Security Specialist focusing on cyber defense within a family - owned company. Responsibilities include managing firewalls, monitoring threats, and implementing security solutions.
Junior Information Systems Security Engineer at AMERICAN SYSTEMS managing DoD cyber security. Collaborating on technical issues and supporting risk management framework compliance.
Information Systems Security Engineer assisting in cyber security requirements for DoD systems. Collaborating closely with customers and ensuring compliance with the DoD Risk Management Framework.
Staff Product Security Engineer driving security innovation while ensuring compliance with federal standards at DataRobot. Leading security engineering, automation, and customer engagement for federal customers.
Auszubildende(n) zur Fachkraft für Schutz und Sicherheit in Hamburg bei proSicherheit GmbH. Modernes Sicherheitsunternehmen mit Fokus auf Sicherheit und Vertrauensaufbau.
Security staff for proSicherheit performing access controls and ensuring compliance with safety standards. Involves reporting, patrolling, and handling emergencies in Hamburg area.
Cyber Security Engineer responsible for DevSecOps and security automation at a leading Swiss IT consulting firm. Engaging in security measures across industries with a focus on collaboration and technology.
Cloud Security Architect responsible for strategic growth and development of Cloud Security solutions. Work with national clients on architecture and security concepts in Switzerland.