NCR Application Security Architect - Digital Banking in Atlanta, Georgia
NCR Corporation (NYSE: NCR) is the global leader in consumer transaction technologies, turning everyday interactions with businesses into exceptional experiences. With its software, hardware, and portfolio of services, NCR enables nearly 700 million transactions daily across retail, financial, travel, hospitality, telecom and technology, and small business. NCR solutions run the everyday transactions that make your life easier. NCR is headquartered in Atlanta, Georgia, with approximately 29,000 employees and does business in 180 countries.
Work as the lead to design, implement and govern the overall security architecture of the digital banking products. Aligning the secure development lifecycle to industry standards, including Microsoft SDL, OWASP development guides and PII/GDPR related topics. Perform proof-of-concept and proof-of-technology testing for integrating new 3rd party security products into the development and deployment processes. Perform threat modeling, design reviews and code reviews as part of the development lifecycle. Design and deploy state-of-art technology to meet the business needs and interface with business units regarding technical planning and application security topics. Lead the implementation of proposed solutions while interfacing with the Project Management Office (PMO) to ensure the coordination, communication and successful delivery of projects. Leading the integration of security engineering automation tools, as SAST, IAST, Software Composition Analysis, and Container Security. Develop and maintain security procedures and guidelines for the products. Manage relationships and interactions with human resources, legal, customers and internal audit departments.
Bachelor’s Degree in Computer Science or related field. Equivalent work experience will be considered. Software development background of 4 -7 years. Security certifications are desirable, e.g. CISSP, CSSLP, CEH etc. Retail, financial, healthcare payment transaction processing software security testing experience (not only running automatic tools, but actually executing manual testing). Experience with providing application security for financial institutions, including familiarity with FFIEC regulatory requirements. Soft skills - effective communication (internal, customer, legal counsel), collaboration (internal, external) and effective written skills (white papers, vulnerability specifications etc.). Active participation in cybersecurity forums/conventions, e.g. DEFCON, Black Hat. Public speaking is a plus.
EEO Statement Integrated into our shared values is NCR’s commitment to diversity. NCR is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential. We believe in understanding and respecting differences among all people. NCR does not discriminate in employment based on sex, age, race, color, creed, religion, national origin, disability, sexual orientation, veteran status, military service, genetic information, or any other characteristic or conduct protected by law. Every individual at NCR has an ongoing responsibility to respect and support a globally diverse environment.
Statement to Third Party Agencies To ALL recruitment agencies: NCR only accepts resumes from agencies on the NCR preferred supplier list. Please do not forward resumes to our applicant tracking system, NCR employees, or any NCR facility. NCR is not responsible for any fees or charges associated with unsolicited resumes.
Job Software Engineering
Title: Application Security Architect - Digital Banking
Requisition ID: 0068543_P0227613