Principal

Application Security Engineer

Job Locations US-IA-Des Moines
Posted Date 4 days ago(11/29/2021 2:31 PM)
Job #
2021-32365
Category
Engineering & Technology
Ent Seg
Corporate
Bus Area
Information Services
Pos Typ
Regular Full-Time
Remote
Yes
FLSA
Exempt

Responsibilities

 

As an Application Security Engineer with Principal Financial Group, you’ll join a vulnerability management team that supports thousands of users globally. 

Here are some examples of things you will do:

  • Support security tooling in the cloud and provide education to developers on how to develop secure code.
  • Independently develop and implement software solutions. Understand and make well-reasoned design decisions and trade-offs.
  • Demonstrate knowledge of security requirements/guidance and effectively communicate to stakeholders and team members.
  • Able to clearly communicate technical concepts to business stakeholders as well as communicate business objectives to the technical team and get buy-in.
  • Demonstrate knowledge of industry trends and how the entire software and infrastructure system operates.
  • Independently conducts analysis and development, requirements, coding, automated testing, debugging, designing, documentation, quality assurance review, implementation and maintenance.
  • Develop expertise of security controls in one or more security functions and assess, recommend, and implement improvements
  • Participate in the technical design of features including leading the design of small to medium features/systems.
  • Provide mentoring via pairing and design/code reviews.

Qualifications

  • Associate's or bachelor's degree (preference in a computer science, technology, engineering or math-related field) or equivalent experience
  • 3+ years of work experience
  • Proven experience as an IT security professional
  • Previous application developer experience with Java, C# or Python
  • Previous security experience and experience supporting secure coding efforts
  • Info Security tool experience such as HP Fortify and/or White Source
  • Must be able to maintain a high degree of accuracy and confidentiality
  • Ability to work on cross-functional teams and collaborate with both IT and non-IT partners

Preferred Skills:

  • Working knowledge of AWS and/or Azure
  • CI/CD – tools and configuration experience
  • Able to effectively use git and understand common SCM workflows
  • Ability to list and demonstrate examples of the OWASP Top 10 preferred
  • Comfortable mentoring engineers that are globally distributed
  • Passionate about application security and development
  • A self-starter who can identify work that needs to be done without waiting for direction
  • Able to find solutions to challenging technical puzzles with atypical constraints
  • Develop and evangelize secure programming standards
  • Enjoy sharing knowledge via documentation
  • Certifications desired:  CSSLP, CISSP
  • Ability to perform threat modeling
  • Understanding of NIST 800-53
  • CTF and security competition experience a plus

Additional Information

Location

Remote candidates will be considered for this position.

Job level

We’ll consider talent at the next level(s) with the right experiences and skills.

How we hire

Once you apply, your application is hand reviewed by our talent team. Generally within a few weeks, the team makes interview selection decisions and communicates those via email.  If selected, you’ll receive an email from Principal Talent Team to complete a pre-recorded interview on your own time.  Be sure to check your email frequently and follow the steps shared to submit timely.

Learn more about our hiring steps and find answers to frequently asked questions.

Work Authorization/Sponsorship

At this time, we're not considering candidates that need any type of immigration sponsorship now or in the future or those needing work authorization for this role. (This includes, but is not limited to students on F1-OPT, F1-CPT, J-1, etc.)

Investment Code of Ethics

For Principal Global Investors positions, you’ll need to follow an Investment Code of Ethics related to personal and business conduct as well as personal trading activities for you and members of your household. These same requirements may also apply to other positions across the organization.

Experience Principal

While our expertise spans the globe, we're bound by one common purpose: to foster a world where financial security is accessible to all. And our success depends on the unique experiences, backgrounds, and talents of our employees – individually and all of us together. Explore our core valuesbenefits and why we’re an exceptional place to grow your career.

Principal is an Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

 

PRGRB

 

 

#LI-Remote

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed