Icon hamburger
What job do you want?
Apply to this job.
Think you're the perfect candidate?
Apply Now

You’re being taken to an external site to apply.

Enter your email below to receive job recommendations for similar positions.

Principal Engineer, Cloud Security

Green Dot Corporation Pasadena Full-Time
Apply Now

Job Summary
The Principal Engineer, Cloud Securityis a key member of the Information Security team at Green Dot Corporation. ThisEngineer will primarily be responsible for leading the development, implementation and maintenance of the Application Security program across all IT development groups. This is a hand's on position that works very closely with development teams, product owners, and other groups in IT. It requires someone who has had a great deal of application development and coding experience combined with a very deep understanding of Information Security and Secure Coding principles. The individual must also have a passion for taking those sets of deep understanding and be passionate about helping others, mentoring and training the people around him or her.

Job Responsibilities

  • Enhance the Application Security program through a very close collaboration with all Green Dot development teams.
  • Review application security controls and designs prior to live implementations of new features or products.
  • Lead application development teams through threat modeling exercises.
  • Identify application security risks and requirements for new projects and system developments.
  • Develop security test plans and integrate into the software development lifecycle.
  • Oversee security testing and ensure vulnerabilities are appropriately managed.
  • Monitor and proactively report on current threats and vulnerabilities to application security.
  • Conduct ad hoc Red Team penetration testing.
  • Work with 3rd party suppliers to promote secure design and security testing.
  • Prepare and monitor operational security metrics and trends.
  • Lead the assessment and acquisition of application security tools and technologies.
  • Evaluate new security technology & trends, and then makes recommendations to strengthen our information security environment.
  • Evangelize secure code development practices internally.
  • Participate as a subject matter expert in the Green Dot incident response program.
  • Significant contributor of the Application Security team.

Job Requirements

  • 5 years in a development role and 3-5 years in application security.
  • In depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework.
  • Understanding of Agile Scrum development methodologies.
  • Strong understanding of cryptographic algorithms and protocols.
  • In depth understanding of secure web application development, .Net, C#, web services and SOAP
  • In depth knowledge of SQL database architectures and database query languages.
  • In depth knowledge of regulations and security compliance requirements such as PCI DSS, GLBA, and SOX.
  • Good communication in English, both oral and written (presentations, technical reports and proposals).
  • Strong analytical, evaluative, and problem-solving abilities.
  • Membership and active participation in security organizations, such as OWASP, ISSA, and SANS is preferred.
  • Security qualifications, CEH, CISSP and/or CCSP certification preferred.
  • Familiarity with cryptographic principals, and common encryption schemes such as symmetric/asymmetric encryption, hashing, SSL/TLS, IPSec, PGP, S/MIME, SSH, PKI, mutual authentication.



Recommended skills

Penetration Testing
Application Security
Incident Response
Information Security
Pci Data Security Standards
Apply to this job.
Think you're the perfect candidate?
Apply Now

Help us improve CareerBuilder by providing feedback about this job: Report this job

Report this Job

Once a job has been reported, we will investigate it further. If you require a response, submit your question or concern to our Trust and Site Security Team

Job ID: 4960


For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.