Student Veterans of America Jobs

Welcome to SVA’s jobs portal, your one-stop shop for finding the most up to date source of employment opportunities. We have partnered with the National Labor Exchange to provide you this information. You may be looking for part-time employment to supplement your income while you are in school. You might be looking for an internship to add experience to your resume. And you may be completing your training ready to start a new career. This site has all of those types of jobs.

Here are a few things you should know:
  • This site is mobile friendly. You do not need a log-in or password to access information.
  • Jobs on this site are original and unduplicated and come from three sources: the Federal government, state workforce agency job banks, and corporate career websites. All jobs are vetted to ensure there are no scams, training schemes, or phishing.
  • The site is refreshed daily to remove out-of-date content.
  • The newest jobs are listed first, so use the search features to match your interests. You can look for jobs in a specific geographical location, by title or keyword, or you can use the military crosswalk. You may want to do something different from your military career, but you undoubtedly have skills from that occupation that match to a civilian job.
Home View All Jobs (2,285,374)

Job Information

COMERICA MANAGEMENT CO INC Application Security Engineer North Dallas or Detroit Metro in AUBURN HILLS, Michigan

Application Security Engineer The Application Security Engineer provides a higher level of security in Comerica's web application environments. Generally working with dynamic and static code analyzers, communicates vulnerabilities to development teams and coaches as necessary to remediate these vulnerabilities. Integrates tool output into development pipelines. Creates and shares proof of concept code to demonstrate application attacks. Onboards applications and vulnerability tracking into management system and reports on progress. Hosts threat modeling exercises based on STRIDE or other industry standard methodology to draw out vulnerabilities during design phase. Guides aspiring application security individuals, leads implementation of new tools and methods. Significant overlap and interplay with Penetration Testing team. Position Responsibilities: Static and Dynamic Code Analysis * Performs integration of static and dynamic code scan output into CI/CD pipeline. * Reviews of code analysis output and translation into findings. * Utilizes the finding management software and tracking remediations with the development teams. * Performs development and application team education resolution training. * Performs emerging threat and threat landscape research. * Provides forensic cyber event analysis. * Identifies means to reduce cyber-attack effectiveness. * Looks for continuous improvement of detections for operationalization. Threat Modeling and Emerging Vulnerability Detection * Leads threat modeling workshops to draw out vulnerabilities. * Champions industry standard Threat Modeling framework (such as STRIDE). * Updates detection tools as new vulnerabilities emerge. * Stays aware of new vulnerabilities to articulate their inner workings against Comerica's environment. Company Expert Application Security Consulting * Works closely with partners in Cyber and Technology to solve security problems. * Serves as the escalation point for cyber incidents, events, and application vulnerability research. * Identifies and provides guidance to mitigate threat vectors unique to the shared cyber-attack surface. * Proactively communicates with application development teams to illustrate vulnerabilities and solutions. Planning and Organizing * Identifies and evaluates projects, products, and solutions to enhance threat detection and other capabilities. * Provides expert guidance on highly complex, large projects to incorporate cyber and fraud detection capabilities and considerations. * Participates in industry working and information sharing groups. Administration * Keeps management informed of status of threats, the threat landscape, and current incidents and events through appropriate reporting. * Actively participates on committees representing Cybersecurity. * Keeps abreast of leading-edge technologies in the application security space. * Other duties as assigned.

Position Qualifications: * Bachelor's degree from an accredited university in Computer Science, Mathematics, Information Technology, Big Data, Cyber Security or equivalent through a combination of education and/or technology experience or 12 years of technology experience * 8 years progressive cyber security technology experience * 5 years of experience in application security engineering * 2 years of Static Application Security Testing (SAST)  Snyk experience preferred * 2 years of Dynamic Application Security Testing (DAST) Rapid7 experience preferred * 2 years web application development/object-oriented programming * 2 years working with attack vectors in OWASP top 10 * 1 year of threat modeling

Auburn Hills Operations Center 8:00am - 5:00pm Monday - Friday

Comerica is proud to be an Equal Opportunity Employer - veterans/individuals with disabil ities, committed to workplace diversity.

DirectEmployers