Senior Application Security Engineer (Remote)

Progressive LeasingUT
99d
Match Resume

About The Position

Progressive Leasing is a leading provider of in-store and e-commerce lease-to-own solutions. As an almost 20+ year old FinTech company that has gone from start-up to industry leader, we know how to innovate, simplify, and value all people. We are a company founded on our grit and we are constantly looking to the future. As an ever-evolving group of entrepreneurs and technologists, we strive to do the right thing period in all aspects of our work. We are a subsidiary of PROG Holdings (NYSE: PRG), an exciting FinTech holding company, with three business segments including Progressive, Vive Financial, and Four, a Buy Now Pay Later (BNPL) platform. We are currently hiring a Senior Application Security Engineer to help grow our company and ensure our mission is achieved! This role is a work from home position and can be performed remotely anywhere in the continental US or in one of our corporate locations in Utah or Arizona.

Requirements

  • 5+ years of experience in application security engineering.
  • Working expertise in GitHub workflows, AWS, and Azure.
  • Proven experience building secure pipelines for CI/CD.
  • Deep understanding of application security concepts, including threat modeling, risk assessment, and secure coding best practices.
  • Strong experience using DAST, IaC, SAST, SCA, and other security tools – and implementing them into pipelines.
  • Familiarity with common security frameworks (i.e., OWASP, NIST, CIS).
  • Strong problem-solving and analytical skills with the ability to think like an attacker – while acting as a defender.
  • Excellent communication and collaboration skills.
  • A team-oriented mindset with a passion for sharing knowledge and elevating others.

Responsibilities

  • Identify areas for improvement in our current CI/CD pipeline and design, implement, and maintain security enhancements.
  • Partner with engineering teams to ensure security controls and tooling are integrated into the SDLC.
  • Develop and lead a threat modeling program for new and existing applications.
  • Identify vulnerabilities across applications and APIs.
  • Engage engineering teams for remediation.
  • Collaborate with the business and engineering teams to provide guidance on security best practices, prioritization of vulnerability remediation, etc.
  • Evaluate, implement, and manage security tools and technologies.
  • Mentor and coach engineers, DevOps, and other team members to build a strong AppSec culture.
  • Participate in AppSec team programs, such as Security Influencers (Champions) and office hours, to cultivate relationships and trust with the business and engineering teams.
  • Document things like security best practices, proprietary CI/CD pipeline requirements, and AppSec processes.
  • Disseminate documentation across the business, engineering, DevOps, and security teams and hold training workshops, where applicable.

Benefits

  • Competitive Compensation
  • Full Health Benefits; Medical/Dental/Vision/Life Insurance + Paid Parental Leave
  • Company Matched 401k
  • Paid Time Off + Paid Holidays + Paid Volunteer Hours
  • Employee Resource Groups (Black Inclusion Group, Women in Leadership, PRIDE, Adelante)
  • Employee Stock Purchase Program
  • Tuition Reimbursement
  • Charitable Gift Matching
  • Job required equipment and services

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Career Level

Senior

Number of Employees

1,001-5,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service