Jobs at StatFunding
We are constantly on the lookout for fantastic new colleagues in a variety of areas including finance and information technology.


Details on this open position:

Miami, FL
Job Title:
Application Security Manager
The Role:
Provide strong team leadership to a talented team of security engineers by establishing clear direction, a productive culture, and measurable goals in pursuit of the overall security strategic plan;
Become an expert in the StatFunding software stack to understand points of weakness and opportunities for application security solutions;
Manage and improve our internal Software Security Development Lifecycle;
Drive and manage automated security testing at scale to measure vulnerability and report on risk across StatFunding applications;
Collaborate with internal stakeholders on addressing systemic security issues;
Evaluate and prioritize security reviews to ensure timely evaluation per risk based approaches;
Evangelize security within the development organization;
Recruit, mentor, foster and grow a talented team of application security experts;
Review application security tools and services to determine quality and applicability within StatFunding's Software Security Development Lifecycle;
Ideal Candidate:
Experience leading an application security team at a fast-paced, successful, innovative, Agile technology company;
Demonstrated success with planning and execution of large security projects with multiple business stakeholders;
Software engineering experience with Java web applications;
Experience building tools and/or processes to reliably identify security issues such as SQLi, XSS, CSRF, and business logic flaws across large code bases (SAST, DAST, PenTesting, Security Unit Testing, etc.);
Expertise with browser security controls (CSP, XFO, HSTS, etc.), web application security topics such as OWASP Top 10, and authentication infrastructure (SAML, OAUTH) ;
Knowledgeable regarding back end security topics such as secret management and service authentication;
Comfortable dealing with ambiguity and conflicting priorities;
Strong ethics and understanding of ethics in information security;
Excellent project management skills;
Excellent communication skills in English;