Campus Pride Jobs

Overview

Since our founding in 1924, we've cut cardiovascular disease deaths in half, but there is still so much more to do. To overcome today’s biggest health challenges and accelerate this progress, we need passionate individuals like you. Join our movement, be part of the progress, and help ensure a healthier future for all. You matter, and so does the impact you can make with us.

The American Heart Association is excited to announce a fantastic opportunity for a Cloud Engineer .

The Application Security Engineer will be responsible for designing, implementing, and managing the security architecture for our applications. This role involves working closely with development teams to ensure that security is integrated into the software development lifecycle (SDLC) and that our applications are protected against potential threats.

The Association offers many resources to help you maintain work-life harmonization through your changing needs and life situations. To help you be successful, you will have access to Heart U, our award-winning corporate university, as well as additional training and support, locally.

#TheAHALife is our company culture, our way of life, reflecting our diversity, equity & inclusion, our focus on work-life harmonization and our Guiding Values. Discover why you will Be Seen. Be Heard. Be Valued™ at the American Heart Association by following us on LinkedIn, Instagram, Facebook, X (formerly Twitter), and at heart.jobs.

Responsibilities

• Conduct application security assessments to identify vulnerabilities and recommend remediation strategies.

• Conduct application architecture assessments to ensure proper security controls are in place

• Conduct data assessments to ensure encryption, access controls, and other security measures to safeguard data at rest and in transit.

• Conduct threat modeling sessions with development teams to identify and prioritize security risks.

• Develop and maintain application security policies, standards, and guidelines.

• Develop and maintain threat modeling methodologies, tools, and processes to identify potential threats and vulnerabilities in applications and systems.

• Collaborate with development teams to integrate security into the SDLC, including secure coding practices, threat modeling, and security testing.

• Implement and manage application security tools such as SAST, DAST, and SCA.

• Provide training and awareness programs to educate developers on secure coding practices and application security principles.

• Stay up-to-date with the latest security trends, vulnerabilities, and technologies to ensure our applications are protected against emerging threats.

• Work with cross-functional teams to ensure that security requirements are met throughout the application lifecycle.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field.

• Proven experience in application security, including secure coding practices, threat modeling, and security testing.

• Strong knowledge of application security tools and technologies such as SAST, DAST, SCA, and WAF.

• Experience with cloud security and securing applications in cloud environments.

• Excellent communication and collaboration skills, with the ability to work effectively with development teams and other stakeholders.

• Relevant certifications such as CSSLP, or CEH are a plus.

• Experience with DevSecOps and integrating security into CI/CD pipelines.

• Knowledge of regulatory requirements and industry standards related to application security.

• Familiarity with common security frameworks and methodologies such as OWASP, NIST, and ISO 27001.

Preferred Qualifications:

• Knowledge and ability to evaluate and integrate emerging technologies, such as AI/ML, and how they can be used to enhance application security.

• Experience in application security and penetration testing to identify and validate security vulnerabilities

Compensation & Benefits

The American Heart Association invests in its people. Here are the main components of our total rewards package. Visit Rewards & Benefits to see more details.

• Compensation – Our goal is to ensure you have a competitive base salary. That’s why we regularly review the market value of jobs and make adjustments, as needed.

• Performance and Recognition – You are rewarded for achieving success by merit increases and incentive programs, based on the type of position.

• Benefits – We offer a wide array of benefits including medical, dental, vision, disability, and life insurance, along with a robust retirement program that includes an employer match and automatic contribution. As a mark of our commitment to employee well-being, we also offer an employee assistance program, employee wellness program and telemedicine, and medical consultation.

• Professional Development – You can join one of our many Employee Resource Groups (ERG) or be a mentor/mentee in our professional mentoring program. HeartU is the Association’s national online university, with more than 100,000 resources designed to meet your needs and busy schedule.

• Work-Life Harmonization – The Association offers Paid Time Off (PTO) at a minimum of 16 days per year for new employees. The number of days will increase based on seniority level. You will also have a total of 12 paid holidays off each year, which includes several days off at the end of the year.

• Tuition Assistance - We support the career development of all employees. This program provides financial assistance to employees who wish to further their education and career in relation to their current duties and responsibilities, or for potential future positions in the organization.

The American Heart Association’s 2028 Goal: Building on over 100 years of trusted leadership in cardiovascular and brain health, by 2028 the AHA will drive breakthroughs and implement proven solutions in science, policy, and care for healthier people and communities. The greatest discoveries in health must reach everyone where they are.

At American Heart Association | American Stroke Association, our mission is to be a relentless force for a world of longer, healthier lives, regardless of race, ethnicity, gender, gender identity, religion, age, language, sexual orientation, national origin and physical or cognitive abilities. We're committed to ensuring our workforce, workplace culture and mission have a shared impact across a diverse set of backgrounds.

This position not a match with your skills? Click here to see other opportunities.

In accordance with local and state laws where applicable, qualified applicants with arrest or conviction records will be considered for employment.

EOE/Protected Veterans/Persons with Disabilities

#LI-Hybrid

Join our Talent Community!

Join our Talent Community to receive updates on new opportunities and future events.

Posted Date 1 day ago (12/11/2024 2:31 PM)

Requisition ID 2024-14125

Job Category Information Technology

Position Type Full Time