4,951 Application Security jobs in the United States

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.
**Job Description**
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
**_The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**
+ Cincinnati, OH
+ Minneapolis, MN
+ Charlotte, NC
+ Irving, TX
+ Washington D.C.
+ Atlanta, GA
+ Denver, CO
**Preferred Skills/Experience**
+ Typically a Bachelor's degree, or equivalent work experience
+ Typically five or more years of relevant experience
+ Advanced technical and functional subject matter expert knowledge across security domain areas
The ideal candidate is going to have a well rounded Cyber Security background with an emphasis on Cloud Security and experience with DevOps for automation in a Azure Cloud environment.
**Additional Required Skills/Experience**
+ **8+ years of senior cloud security experience**
+ 8+ years experience in an IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
+ 3+ years Data security and privacy
+ 3+ years working in Cloud Computing (AWS, Azure, GCP)
+ 8+ years experience with information security technologies and administration
+ 2+ years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
+ 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
+ 5+ years demonstrated experience performing technical troubleshooting and technical documentation
+ 2+ years of experience working in IT systems management including change control, software process improvement
+ 4+ years crafting technical designs that are clear, well thought out, and considers dependencies, failure states, maintainability, testability and ease of support
+ 5+ years working in an Agile software development lifecycle and DevOps principles
+ 5+ years experience in an environment focused on continuous improvement with the ability to focus on the bigger picture, identifying and prioritizing initiatives with the aim to consider more than one domain in this analysis
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Considers scalability, reliability and performance of systems/contexts affected when defining technical designs
+ Strong verbal and written skills with the ability to communicate technical solutions to leadership and lines of business
+ Identifying opportunities to simplify product and technical design
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Strong verbal and written communication skills
**Preferred Skills/Experience**
- CISSP, Azure, AWS, or GCP Certification would be a plus
- DevSecOps
If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants ( .
**Benefits:**
Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):
+ Healthcare (medical, dental, vision)
+ Basic term and optional term life insurance
+ Short-term and long-term disability
+ Pregnancy disability and parental leave
+ 401(k) and employer-funded retirement plan
+ Paid vacation (from two to five weeks depending on salary grade and tenure)
+ Up to 11 paid holiday opportunities
+ Adoption assistance
+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
**E-Verify**
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program ( .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $111,605.00 - $131,300.00
U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.
Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
**Posting may be closed earlier due to high volume of applicants.**

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.
**Job Description**
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
**_The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**
+ Cincinnati, OH
+ Minneapolis, MN
+ Charlotte, NC
+ Irving, TX
+ Washington D.C.
+ Atlanta, GA
+ Denver, CO
**Preferred Skills/Experience**
+ Typically a Bachelor's degree, or equivalent work experience
+ Typically five or more years of relevant experience
+ Advanced technical and functional subject matter expert knowledge across security domain areas
The ideal candidate is going to have a well rounded Cyber Security background with an emphasis on Cloud Security and experience with DevOps for automation in a Azure Cloud environment.
**Additional Required Skills/Experience**
+ **8+ years of senior cloud security experience**
+ 8+ years experience in an IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
+ 3+ years Data security and privacy
+ 3+ years working in Cloud Computing (AWS, Azure, GCP)
+ 8+ years experience with information security technologies and administration
+ 2+ years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
+ 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
+ 5+ years demonstrated experience performing technical troubleshooting and technical documentation
+ 2+ years of experience working in IT systems management including change control, software process improvement
+ 4+ years crafting technical designs that are clear, well thought out, and considers dependencies, failure states, maintainability, testability and ease of support
+ 5+ years working in an Agile software development lifecycle and DevOps principles
+ 5+ years experience in an environment focused on continuous improvement with the ability to focus on the bigger picture, identifying and prioritizing initiatives with the aim to consider more than one domain in this analysis
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Considers scalability, reliability and performance of systems/contexts affected when defining technical designs
+ Strong verbal and written skills with the ability to communicate technical solutions to leadership and lines of business
+ Identifying opportunities to simplify product and technical design
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Strong verbal and written communication skills
**Preferred Skills/Experience**
- CISSP, Azure, AWS, or GCP Certification would be a plus
- DevSecOps
If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants ( .
**Benefits:**
Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):
+ Healthcare (medical, dental, vision)
+ Basic term and optional term life insurance
+ Short-term and long-term disability
+ Pregnancy disability and parental leave
+ 401(k) and employer-funded retirement plan
+ Paid vacation (from two to five weeks depending on salary grade and tenure)
+ Up to 11 paid holiday opportunities
+ Adoption assistance
+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
**E-Verify**
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program ( .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $111,605.00 - $131,300.00
U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.
Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
**Posting may be closed earlier due to high volume of applicants.**

Application Security Engineer
Boston, MA
**Hybrid**
Contract
$60/hr - $70/hr
**Job Description**
A leading Boston-based bank is seeking a Mid-Level Application Security Engineer to support and secure its growing portfolio of internal and customer-facing applications. This team plays a key role in strengthening software security within a highly regulated financial environment, making it an excellent fit for someone who enjoys blending hands-on technical analysis with collaborative problem-solving.
In this role, you'll be responsible for performing SAST, DAST, and SCA scans, reviewing code for vulnerabilities, and partnering with development teams to remediate findings. You'll help define best practices, improve secure SDLC processes, and ensure applications meet internal and regulatory security requirements.
**Required Skills & Experience:**
+ 2+ years of professional experience in Application Security or Secure Software Development
+ Proficiency with SAST, DAST, and SCA tools (e.g., Veracode, Checkmarx, SonarQube, etc.)
+ Experience reviewing source code for security vulnerabilities
+ Strong communication skills with the ability to explain findings to developers and leadership
+ Penetration testing or ethical hacking experience is a plus
**Desired Skills:**
+ Familiarity with secure SDLC processes and DevSecOps principles
+ Exposure to financial services or other regulated industries
+ Knowledge of OWASP Top 10 and common application-layer threats
+ Scripting skills (Python, Bash, etc.) to automate scans or reporting
+ Relevant certifications such as GWEB, GWAPT, or eLearnSecurity certifications
**What You'll Be Doing**
**Tech Breakdown**
+ 50% Static/Dynamic/Composition scanning and analysis
+ 30% Code review and vulnerability remediation support
+ 20% Collaboration, documentation, and secure SDLC improvements
**Daily Responsibilities:**
+ Run and interpret SAST, DAST, and SCA scans across multiple applications
+ Perform manual code reviews to identify and validate vulnerabilities
+ Partner with developers to triage, prioritize, and remediate findings
+ Contribute to secure coding standards and internal appsec guidelines
+ Support ongoing improvements to application security tooling and processes
**You will receive the following benefits:**
+ Medical Insurance - Four medical plans to choose from for you and your family
+ Dental & Orthodontia Benefits
+ Vision Benefits
+ Health Savings Account (HSA)
+ Health and Dependent Care Flexible Spending Accounts
+ Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
+ Hospital Indemnity Insurance
+ 401(k) including match with pre and post-tax options
+ Paid Sick Time Leave
+ Legal and Identity Protection Plans
+ Pre-tax Commuter Benefit
+ 529 College Saver Plan
Motion Recruitment Partners (MRP) is an Equal Opportunity Employer. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Employment is subject to the successful completion of a pre-employment screening. Accommodation will be provided in all parts of the hiring process as required under MRP's Employment Accommodation policy. Applicants need to make their needs known in advance.
**Posted by:** Sarah Carroll
**Specialization:**
+ Cybersecurity

**Overview**
As a **Web Application Security Engineer** , you will provide technical expertise and solutions to remediate persistent and challenging portfolio-wide vulnerabilities. We're looking for someone who has passion for IT, resourceful problem-solving abilities, and a desire to learn our indicators of success in this role. The ideal candidate will have a breadth of experience over a variety of application and web based technologies. The candidate will not necessarily have deep experience in all domain areas but should have a good understanding of how the various layers of an enterprise application stack interact with one another. You will work directly with system admin teams to assist and remediate vulnerabilities and harden environments, while providing recommendations on ways to enhance vulnerability management. Additionally, you will work in a team environment to develop proactive solutions to improve overall enterprise security posture through process streamlining and automation.
**Contributions**
**Responsibilities include:**
+ Provide subject matter expertise for various risk assessments, working in an Agile environment with an understanding of the full software development lifecycle.
+ Advocate for and ensure appropriate security practices are communicated and implemented within application development portfolios.
+ Ability and proven experience in securing multiple areas of an enterprise application stack, including the OS, Database, Application Server, Load Balancer, and Web Server layers. Understanding how PKI/TLS certificates work is a must.
+ Integrate with both the application development and security assurance divisions to ensure vulnerability findings are understood, remediated or baselined as appropriate.
+ Document & Socialize security findings and remediation solutions in an enterprise knowledge base.
+ Support the Information Assurance Branch and the SOC with scan analysis and partner with development teams to understand and remediate security findings.
**Qualifications**
**Required:**
+ Ability to obtain a U.S. government Security Clearance
+ Master's Degree and 3 years of relevant experience; OR
+ Bachelor's Degree and 5 years of relevant experience; OR
+ No degree and 9 years of relevant experience
+ Possesses at least one professional certification relevant to the technical service provided. Maintain a certification relevant to the product being deployed and/or maintained.
**Preferred:**
+ Former Developer or Systems Administrator experience
+ Working knowledge of technologies used for building and deploying enterprise applications, such as, Maven, Grade, GIT, Jenkins, Ansible, Java, C#/.NET, Apache Tomcat, Apache HTTP Server, IIS, F5, Oracle, MSSQLSEVER, PostGres
+ Working knowledge and experience in AWS and Azure GovClouds
+ Ability to analyze DISA STIG audit compliance scan results and provide recommendations for resolution
+ Analyze security environment, provide recommendations
+ Working knowledge of JIRA, Service Now or equivalent
+ Working knowledge of operating system and dynamic application security testing scan tools - Invicti, Web Inspect, DAST/IAST suites
+ Experience using Python to automate tasks
**Certifications:**
+ CEH, GFACT, GPEN, OSCP or other relevant industry certifications
+ Other Application based Technology specific certifiations
**About** **steampunk**
Steampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $100,000 to $155,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunk's total compensation package for employees. Learn more about additional Steampunk benefits here.
**Identity Statement**
As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Steampunk is a **Change Agent** in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our **Human-Centered delivery methodology** , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an **employee owned company** , we focus on investing in our employees to enable them to do the greatest work of their careers - and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit .
_We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program._
Refer a Friend ( help finding the right job?**
We can recommend jobs specifically for you!
**Job Location** _US-VA-McLean_
**Posted Date** _1 day ago_ _(10/8/2025 1:19 PM)_
**_Job ID_** _6561_
**_Clearance Requirement_** _Public Trust_

**Overview**
As a **Web Application Security Engineer** , you will provide technical expertise and solutions to remediate persistent and challenging portfolio-wide vulnerabilities. We're looking for someone who has passion for IT, resourceful problem-solving abilities, and a desire to learn our indicators of success in this role. The ideal candidate will have a breadth of experience over a variety of application and web based technologies. The candidate will not necessarily have deep experience in all domain areas but should have a good understanding of how the various layers of an enterprise application stack interact with one another. You will work directly with system admin teams to assist and remediate vulnerabilities and harden environments, while providing recommendations on ways to enhance vulnerability management. Additionally, you will work in a team environment to develop proactive solutions to improve overall enterprise security posture through process streamlining and automation.
**Contributions**
**Responsibilities include:**
+ Provide subject matter expertise for various risk assessments, working in an Agile environment with an understanding of the full software development lifecycle.
+ Advocate for and ensure appropriate security practices are communicated and implemented within application development portfolios.
+ Ability and proven experience in securing multiple areas of an enterprise application stack, including the OS, Database, Application Server, Load Balancer, and Web Server layers. Understanding how PKI/TLS certificates work is a must.
+ Integrate with both the application development and security assurance divisions to ensure vulnerability findings are understood, remediated or baselined as appropriate.
+ Document & Socialize security findings and remediation solutions in an enterprise knowledge base.
+ Support the Information Assurance Branch and the SOC with scan analysis and partner with development teams to understand and remediate security findings.
**Qualifications**
**Required:**
+ Ability to obtain a U.S. government Security Clearance
+ Master's Degree and 3 years of relevant experience; OR
+ Bachelor's Degree and 5 years of relevant experience; OR
+ No degree and 9 years of relevant experience
+ Possesses at least one professional certification relevant to the technical service provided. Maintain a certification relevant to the product being deployed and/or maintained.
**Preferred:**
+ Former Developer or Systems Administrator experience
+ Working knowledge of technologies used for building and deploying enterprise applications, such as, Maven, Grade, GIT, Jenkins, Ansible, Java, C#/.NET, Apache Tomcat, Apache HTTP Server, IIS, F5, Oracle, MSSQLSEVER, PostGres
+ Working knowledge and experience in AWS and Azure GovClouds
+ Ability to analyze DISA STIG audit compliance scan results and provide recommendations for resolution
+ Analyze security environment, provide recommendations
+ Working knowledge of JIRA, Service Now or equivalent
+ Working knowledge of operating system and dynamic application security testing scan tools - Invicti, Web Inspect, DAST/IAST suites
+ Experience using Python to automate tasks
**Certifications:**
+ CEH, GFACT, GPEN, OSCP or other relevant industry certifications
+ Other Application based Technology specific certifiations
**About** **steampunk**
Steampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $100,000 to $155,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunk's total compensation package for employees. Learn more about additional Steampunk benefits here.
**Identity Statement**
As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Steampunk is a **Change Agent** in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our **Human-Centered delivery methodology** , we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an **employee owned company** , we focus on investing in our employees to enable them to do the greatest work of their careers - and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit .
_We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program._
Refer a Friend ( help finding the right job?**
We can recommend jobs specifically for you!
**Job Location** _US-DC-Washington_
**Posted Date** _1 week ago_ _(10/1/ :38 AM)_
**_Job ID_** _6580_
**_Clearance Requirement_** _Public Trust_

**Your opportunity**
At Schwab, you're empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us "challenge the status quo" and transform the finance industry together.
We believe in the importance of in-office collaboration and fully intend for the selected candidate for this role to work on site in the specified location(s).
The Schwab Application Security Team, under the leadership of the Chief Information Security Officer (CISO), is tasked to protect information assets in support of Schwab business objectives and in conformity with Schwab policies. The Application Security Team is a core function of Schwab Cybersecurity Services and is primarily responsible for establishing and guiding the Secure Software Development Program within Schwab. These activities include creation and rollout of software security policies and best practices, software security architecture, software security scanning, penetration testing, and the education of Schwab software developers and testers in security best practices. The Software Security Engineer ensures the control and protection of software, improves the software development process, and minimizes defects and vulnerabilities in software production.
**Key Accountabilities:**
+ Ability to positively influence the behavior of peers and build relationships with other teams independently.
+ Thrives in dynamic and fast-paced environments, adjusting quickly to shifting priorities.
+ Works on problems of diverse scope where analysis of data requires evaluating specific factors.
+ Communicate emerging application security weaknesses, exploit patterns, and risk scenarios in clear, business-relevant terms.
+ Assist teams in mitigation and remediation efforts while operating within agile delivery environments.
+ Apply insight and initiative to raise the standard of secure development and streamline the path from policy to implementation.
**What you have**
**Required Qualifications:**
+ Bachelor's degree in computer science or related field
+ Ability to demonstrate knowledge of OWASP Top 10 and CWE Top 25
+ Knowledge of application-layer security controls, including authentication and authorization methods, input/output validation and sanitization, and defenses against injection attacks such as SQL or command injection
+ Understanding of secure cryptographic practices, including appropriate use of encryption algorithms, hashing functions, and protection of data at rest and in motion
+ Secure coding in Java or .NET web and service development, backed by hands-on programming and IT experience
+ Experience participating as a member of a team in an agile environment
+ Experience with the Secure Development Lifecycle
+ Experience with security tools including SAST, DAST, IDE plugins, decompilers, and threat modeling platforms
+ Experience with source code repository tools such as BitBucket and GitHub
+ Web application penetration testing, ethical hacking, red/blue teaming, or capture-the-flag experience a plus
**Desired certifications:**
+ Information Security and control certifications a plus (CISSP, CSSLP, GWEB, CISA, CISM, CEH, CRISC, etc.)
In addition to the salary range, this role is also eligible for bonus or incentive opportunities.
**What's in it for you**
At Schwab, you're empowered to shape your future. We champion your growth through meaningful work, continuous learning, and a culture of trust and collaboration-so you can build the skills to make a lasting impact. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.
We offer a competitive benefits package that takes care of the whole you - both today and in the future:
+ 401(k) with company match and Employee stock purchase plan
+ Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
+ Paid parental leave and family building benefits
+ Tuition reimbursement
+ Health, dental, and vision insurance
What's in it for you:
At Schwab, we're committed to empowering our employees' personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you'll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.
We offer a competitive benefits package that takes care of the whole you - both today and in the future:
401(k) with company match and Employee stock purchase plan
Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
Paid parental leave and family building benefits
Tuition reimbursement
Health, dental, and vision insurance
Schwab is an affirmative action employer, focused on employing and advancing in employment, qualified women, racial and ethnic minorities, protected veterans, and individuals with disabilities in the workplace. If you have a disability and require reasonable accommodations in the application process, contact Human Resources at or call .

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.
**Job Description**
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
**_The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**
+ Cincinnati, OH
+ Minneapolis, MN
+ Charlotte, NC
+ Irving, TX
+ Washington D.C.
+ Atlanta, GA
+ Denver, CO
**Preferred Skills/Experience**
+ Typically a Bachelor's degree, or equivalent work experience
+ Typically five or more years of relevant experience
+ Advanced technical and functional subject matter expert knowledge across security domain areas
The ideal candidate is going to have a well rounded Cyber Security background with an emphasis on Cloud Security and experience with DevOps for automation in a Azure Cloud environment.
**Additional Required Skills/Experience**
+ **8+ years of senior cloud security experience**
+ 8+ years experience in an IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
+ 3+ years Data security and privacy
+ 3+ years working in Cloud Computing (AWS, Azure, GCP)
+ 8+ years experience with information security technologies and administration
+ 2+ years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
+ 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
+ 5+ years demonstrated experience performing technical troubleshooting and technical documentation
+ 2+ years of experience working in IT systems management including change control, software process improvement
+ 4+ years crafting technical designs that are clear, well thought out, and considers dependencies, failure states, maintainability, testability and ease of support
+ 5+ years working in an Agile software development lifecycle and DevOps principles
+ 5+ years experience in an environment focused on continuous improvement with the ability to focus on the bigger picture, identifying and prioritizing initiatives with the aim to consider more than one domain in this analysis
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Considers scalability, reliability and performance of systems/contexts affected when defining technical designs
+ Strong verbal and written skills with the ability to communicate technical solutions to leadership and lines of business
+ Identifying opportunities to simplify product and technical design
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Strong verbal and written communication skills
**Preferred Skills/Experience**
- CISSP, Azure, AWS, or GCP Certification would be a plus
- DevSecOps
If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants ( .
**Benefits:**
Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):
+ Healthcare (medical, dental, vision)
+ Basic term and optional term life insurance
+ Short-term and long-term disability
+ Pregnancy disability and parental leave
+ 401(k) and employer-funded retirement plan
+ Paid vacation (from two to five weeks depending on salary grade and tenure)
+ Up to 11 paid holiday opportunities
+ Adoption assistance
+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
**E-Verify**
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program ( .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $111,605.00 - $131,300.00
U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.
Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
**Posting may be closed earlier due to high volume of applicants.**

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.
**Job Description**
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
**_The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**
+ Cincinnati, OH
+ Minneapolis, MN
+ Charlotte, NC
+ Irving, TX
+ Washington D.C.
+ Atlanta, GA
+ Denver, CO
**Preferred Skills/Experience**
+ Typically a Bachelor's degree, or equivalent work experience
+ Typically five or more years of relevant experience
+ Advanced technical and functional subject matter expert knowledge across security domain areas
The ideal candidate is going to have a well rounded Cyber Security background with an emphasis on Cloud Security and experience with DevOps for automation in a Azure Cloud environment.
**Additional Required Skills/Experience**
+ **8+ years of senior cloud security experience**
+ 8+ years experience in an IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
+ 3+ years Data security and privacy
+ 3+ years working in Cloud Computing (AWS, Azure, GCP)
+ 8+ years experience with information security technologies and administration
+ 2+ years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
+ 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
+ 5+ years demonstrated experience performing technical troubleshooting and technical documentation
+ 2+ years of experience working in IT systems management including change control, software process improvement
+ 4+ years crafting technical designs that are clear, well thought out, and considers dependencies, failure states, maintainability, testability and ease of support
+ 5+ years working in an Agile software development lifecycle and DevOps principles
+ 5+ years experience in an environment focused on continuous improvement with the ability to focus on the bigger picture, identifying and prioritizing initiatives with the aim to consider more than one domain in this analysis
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Considers scalability, reliability and performance of systems/contexts affected when defining technical designs
+ Strong verbal and written skills with the ability to communicate technical solutions to leadership and lines of business
+ Identifying opportunities to simplify product and technical design
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Strong verbal and written communication skills
**Preferred Skills/Experience**
- CISSP, Azure, AWS, or GCP Certification would be a plus
- DevSecOps
If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants ( .
**Benefits:**
Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):
+ Healthcare (medical, dental, vision)
+ Basic term and optional term life insurance
+ Short-term and long-term disability
+ Pregnancy disability and parental leave
+ 401(k) and employer-funded retirement plan
+ Paid vacation (from two to five weeks depending on salary grade and tenure)
+ Up to 11 paid holiday opportunities
+ Adoption assistance
+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
**E-Verify**
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program ( .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $111,605.00 - $131,300.00
U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.
Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
**Posting may be closed earlier due to high volume of applicants.**

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.
**Job Description**
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
**_The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**
+ Cincinnati, OH
+ Minneapolis, MN
+ Charlotte, NC
+ Irving, TX
+ Washington D.C.
+ Atlanta, GA
+ Denver, CO
**Preferred Skills/Experience**
+ Typically a Bachelor's degree, or equivalent work experience
+ Typically five or more years of relevant experience
+ Advanced technical and functional subject matter expert knowledge across security domain areas
The ideal candidate is going to have a well rounded Cyber Security background with an emphasis on Cloud Security and experience with DevOps for automation in a Azure Cloud environment.
**Additional Required Skills/Experience**
+ **8+ years of senior cloud security experience**
+ 8+ years experience in an IT environment including service-oriented and IT architecture, industry trends and direction, system and technology integration, and IT standards, procedures and policies, and emerging technologies
+ 3+ years Data security and privacy
+ 3+ years working in Cloud Computing (AWS, Azure, GCP)
+ 8+ years experience with information security technologies and administration
+ 2+ years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
+ 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
+ 5+ years demonstrated experience performing technical troubleshooting and technical documentation
+ 2+ years of experience working in IT systems management including change control, software process improvement
+ 4+ years crafting technical designs that are clear, well thought out, and considers dependencies, failure states, maintainability, testability and ease of support
+ 5+ years working in an Agile software development lifecycle and DevOps principles
+ 5+ years experience in an environment focused on continuous improvement with the ability to focus on the bigger picture, identifying and prioritizing initiatives with the aim to consider more than one domain in this analysis
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Considers scalability, reliability and performance of systems/contexts affected when defining technical designs
+ Strong verbal and written skills with the ability to communicate technical solutions to leadership and lines of business
+ Identifying opportunities to simplify product and technical design
+ Ability to work cooperatively and professionally with co-workers, customers and management
+ Strong verbal and written communication skills
**Preferred Skills/Experience**
- CISSP, Azure, AWS, or GCP Certification would be a plus
- DevSecOps
If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants ( .
**Benefits:**
Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):
+ Healthcare (medical, dental, vision)
+ Basic term and optional term life insurance
+ Short-term and long-term disability
+ Pregnancy disability and parental leave
+ 401(k) and employer-funded retirement plan
+ Paid vacation (from two to five weeks depending on salary grade and tenure)
+ Up to 11 paid holiday opportunities
+ Adoption assistance
+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
**E-Verify**
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program ( .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $111,605.00 - $131,300.00
U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.
Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
**Posting may be closed earlier due to high volume of applicants.**