Application Security Analyst or Analyst Senior

Company

Federal Reserve Bank of Cleveland

The Federal Reserve Bank of Cleveland is part of the nation’s central bank and we’ve provided many opportunities for professional growth during our history.

For twenty-four years in a row, we’ve been named “One of Northeast Ohio’s Best Places to Work” by North Coast 99.

This prestigious award honors organizations with outstanding employment practices, including compensation, benefits, training, recruitment, retention, community services, and employee communications.

Our People Make the Difference! The Federal Reserve Bank of Cleveland is seeking innovative thinkers with vision to build the framework that will carry the Bank into the future.

Follow us on LinkedIn, Twitter, Instagram, and our YouTube channel – Cleveland Fed

To be considered for this role, candidates must be a U.S.

citizen.

This role is based in Cleveland, Ohio, and is a hybrid work arrangement - individuals may be required to work some days in the Federal Reserve Bank of Cleveland while working the other days from home.

Organizational Expectations:

In this role you will provide leadership in protecting the confidentiality, integrity, and availability of web and/or mobile applications by establishing and enforcing system access controls.

You will define system security requirements, recommend improvements to system security frameworks, ensure authorized access to systems through monitoring, performing testing, or scanning for security vulnerabilities, and raising security awareness.

General Responsibilities:


* As needed, lead the Identification of security related issues and definition of security requirements during all phases of the application development lifecycle.


* Review program/development documents to ensure adherence to secure coding standards, guidelines, and security requirements.


* Draft, review, and approve security related test cases.


* Coordinate or lead application security software testing efforts with other testing stakeholders.


* Guide monitoring for atypical usage of information system accounts and other abnormalities to identify possible breaches.


* Assist with FISMA initiatives, e.g., updating security plans, to support ISSO responsibilities.


* Perform Penetration Testing activities to ensure web vulnerabilities are not present within Treasury Services applications.


* Deliver conclusions and security recommendations to Treasury Services management, Fiscal Service, and other stakeholders.

Performs other duties as assigned or requested.


* Adheres to the Banks attendance policies through regular and prompt attendance.

Education and Experience:


* Application Security Analyst: Bachelor’s degree with 3+ years of related work experience or Associate's degree with 5+ years of related work experience - Strong preference of at least one security certification (CISSP, CSSLP, CCSP, CEH, AWS Security, etc.)


* Application Security Analyst Senior: Ba...