Job Description

FIS IT Security Analyst

We are FIS. Our technology powers the world's economy and our teams bring innovation to life. We champion diversity to deliver the best products and solutions for our colleagues, clients, and communities. If you're ready to start learning, growing, and making an impact with a career in fintech, we'd like to know: Are you FIS?

As an IT Security Analyst with FIS, your skills will be put to the test on the front lines of cyber-crime. Information security is at the heart of fintech and you'll help protect and secure highly-sensitive financial data for customers around the world.

The Appsec Architecture and Engineering is responsible for developing and maintaining policies and standards for the FIS API Security Program and collaborate with internal development teams to implement security controls in APIs, conducting secure design reviews and automating workflows to track and remediate API vulnerabilities. The team identifies and addresses gaps in incumbent security tools (SAST, SCA, Container security), collaborates with vendors to address/enhance scanning coverage and define/refine the internal processes to ensure the efficiency and strengthen overall security program.

What You Will Be Doing

• Develop and maintain policy and standards for FIS API security program.
• Collaborate with internal development teams to build/advocate security controls in Application Programming Interface (API), and performing the secure design review of the APIs.
• Assist in the security strategy, standards, architecture, and processes of SDLC to protect application, APIs, DevSecOps, and CI/CD.
• Identify the gaps in SAST/SCA/Container tool's rule/configuration and work with vendor to engineer them to provide the maximum scanning coverage to FIS software.
• Primarily responsible for API application security but with a good working knowledge of other security domains (Cryptography, Identity and Access Management, Threat and Vulnerability Management)
• Create software/automated workflows to track the API findings and collaborate with development team to remediate them.
• Collaborate with WAF team to define/modify the rules to protect the APIs.

What You Bring

• At least 4 years of working experience in application security with focus on API security and good understanding of SAST, SCA, DAST, and Container scanning.
• At least 2 years of professional development experience in programming language like Java/C#/python.
• Experience conducting secure design review, risk assessments and performing threat modeling of applications
• Expert knowledge of information security principles, API security, web applications security, and intermediate familiarity with malicious code and common hacking techniques used by malicious actors.
• Experience in performing SAST, SCA, IaC, Container security assessments with tools such as Checkmarx One.
• Knowledge of OWASP API Top 10/ OWASP Top 10, identify vulnerabilities via manual and automated testing methods and how to effectively remediate vulnerabilities associated with each.
• Knowledge of various security domains (encryption, IAM, etc.)
• Proficiency in time management, communications, decision making, presentation and organizational skills
• Proficiency in planning, reporting, establishing goals and objectives, standards, priorities and schedules
• Excellent decision-making, analytical and problem solving skills
• Excellent verbal and written communication skills to technical and non-technical audiences of various levels in the organization
• Experience establishing and maintaining effective working relationships with employees and/or clients
• Strong knowledge of development and application security
• Ability to collaborate with teams remotely

Added Bonus if you have:

• Knowledge of FIS products and services a plus but not required
• Knowledge of Financial Industry preferred.

What We Offer You: At FIS, you can learn, grow, and make an impact in your career. Our benefits include:

• Flexible and creative work environment
• Diverse and collaborative atmosphere
• Professional and personal development resources
• Opportunities to volunteer and support charities
• Competitive salary and benefits

Note: 1. If candidates are located within commutable distance of an FIS office location then expectations would be to be hybrid in the office 3 days/week. 2. Current and future sponsorship are not available for this position.

FIS is committed to providing its employees with an exciting career opportunity and competitive compensation. The pay range for this full-time position is $84,720.00 - $142,320.00 and reflects the minimum and maximum target for new hire salaries for this position based on the posted role, level, and location. Within the range, actual individual starting pay is determined by additional factors, including job-related skills, experience, and relevant education or training. Any changes in work location will also impact actual individual starting pay. Please consult with your recruiter about the specific salary range for your preferred location during the hiring process.

FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients.

FIS is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, genetic information, national origin, disability, veteran status, and other protected characteristics.

Fidelity National Information Services

Job Tags

Full time, Work experience placement, Work at office, Remote work, Flexible hours, 3 days per week,

Similar Jobs