Regions Bank Application Security Engineer (REMOTE OPPORTUNITY) in Helana, Montana
Thank you for your interest in a career at Regions. At Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career --- a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.
Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored in accordance with regulatory requirements and in conjunction with Regions’ Retention Schedule for a minimum of three years. You may review, modify, or update your information by visiting and logging into the careers section of the system.
At Regions, the Application Security Engineer performs extensive security assessments on targeted applications and platforms in order to identify and assess risks, analyze scenarios, and provide solutions and recommendations to protect the enterprise and its customers.
Analyze the security of applications and services; discovers, and addresses security issues; builds security automation; takes action to mitigate emerging threats throughout a full secure development lifecycle.
Serve as security expert in application development, database design, network and/or platform (operating system) efforts; ensures project teams comply with enterprise and IT security policies, industry regulations, and best practices.
Ensure security architecture standards and solutions meet business objectives and regulatory compliance requirements.
Provide a leadership role in the development, implementation and maintenance of consistent application and infrastructure architecture security programs.
Evaluate third party products and services to verify that they meet security standards and will integrate seamlessly and securely into the IT computing architecture.
Contributes to the ongoing enhancement of the company’s security assessment capabilities through the development and implementation of improved methodology, processes, infrastructure, tools, and deliverables
Collaborates and shares knowledge with team members via formal and informal methods on a regular basis
Maintains knowledge with current emerging technologies and advancements within Information Security
Provides expertise and solutions for others as a subject matter expert
This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.
- High School Diploma or GED and ten (10) years of related post-secondary education and/or experience in Information Security or Information Technology
Bachelor’s degree in a related field
Professional security certification: CISSP, CISM, GIAC, GWEB, OSCP, CEH, GWAPT, or other similar credentials.
Deep technical understanding of the OWASP Top 10
An understanding of mapping and scanning applications and systems, including port scanning, identifying services and configurations, spidering, application flow charting, and session analysis
Skills and Competencies
Experience building/reviewing threat models, conducting security assessments, Git source code management, CI/CD pipeline automation, API design consuming service endpoints, Kubernetes and/or Docker, one or more programming languages (such as Java or Golang)
Understanding of networking and communication protocols (TCP/IP, UDP, SSL/TLS, IPSEC, HTTPS, BGP), cryptography, web service frameworks, mobile app architectures and service architectures (event-driven, service-oriented, or server-less architectures)
Knowledge of system and/or web application vulnerabilities and risk assessment methodologies such as Common Vulnerability Scoring System (CVSS) or OWASP Risk Rating Methodology
Pay ranges are job specific and are provided as a point-of-market reference for compensation decisions. Other factors which directly impact pay for individual associates include: experience, skills, knowledge, contribution, job location and, most importantly, performance in the job role. As these factors vary by individuals, pay will also vary among individual associates within the same job.
The target information listed below is based on the national range and level of the position.
Job Range Target:
Incentive Pay Plans:
This job is not incentive eligible.
Regions offers a benefits package that is flexible, comprehensive and recognizes that "one size does not fit all" for associates. Listed below is a synopsis of the benefits offered by Regions for informational purposes, which is not intended to be a complete summary of plan terms and conditions.
Paid Vacation/Sick Time
401K with Company Match
Medical, Dental and Vision Benefits
Health Savings Account
Flexible Spending Account
Employee Assistance Program
Associate Volunteer Program
Please note, benefits and plans may be changed, amended, or terminated with respect to all or any class of associate at any time. To learn more about Regions’ benefits, please click or copy the link below to your browser.
Regions Center - Birmingham
Bring Your Whole Self to Work
We have a passion for creating an inclusive environment that promotes and values diversity of race, color, national origin, religion, age, sexual orientation, gender identity, disability, veteran status, genetic information, sex, pregnancy, and many other primary and secondary dimensions that make each of us unique as individuals and provide valuable perspective that makes us a better company and employer. More importantly, we recognize that creating a workplace where everyone, regardless of background, can do their best work is the right thing to do.
OFCCP Disclosure: Equal Opportunity Employer/Disabled/Veterans
At Regions, our culture focuses on five core values that are a commitment to how we will do business:
Put people first
Do what is right
Focus on your customer
Through these values, our mission to make life better drives our desire to improve and make a positive difference in the communities where we work and live through financial investments and volunteering.