First-Citizens Bank & Trust Company
First-Citizens Bank & Trust Company

Cyber Security Analyst III - App Security & Vulnerability (Remote)

Remote in Raleigh, NC, US • Posted 4 hours ago • Updated 4 hours ago
Full Time
On-site
depends on experience
Company Branding Image
Fitment

Dice Job Match Score™

⭐ Evaluating experience...

Job Details

Skills

  • Cyber Security
  • Software Security
  • Vulnerability Management
  • Reporting
  • Fortify
  • Burp Suite
  • Optimization
  • Information Security
  • SCA
  • Web Application Security
  • Testing
  • OWASP
  • Software Development
  • Software Development Methodology
  • DevSecOps
  • Authentication
  • Scripting
  • Python
  • Java
  • JavaScript
  • Bash
  • Continuous Integration
  • Continuous Delivery
  • Jenkins
  • GitHub
  • DevOps
  • Cloud Security
  • Amazon Web Services
  • Microsoft Azure
  • Google Cloud Platform
  • Google Cloud
  • Certified Ethical Hacker
  • Security+
  • SSCP
  • Analytical Skill
  • Conflict Resolution
  • Problem Solving
  • Attention To Detail
  • API
  • Security QA
  • POSTMAN
  • SoapUI
  • ISO/IEC 27001:2005
  • System On A Chip
  • Emerging Technologies
  • Machine Learning (ML)
  • Artificial Intelligence
  • Threat Analysis
  • Risk Management
  • Threat Modeling

Summary

Overview

This is aremote role in NC, AZ, and TX.

We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role focuses on identifying, analyzing, and mitigating security risks across software development pipelines using SAST, DAST, and SCA tools. The ideal candidate combines hands-on technical expertise with knowledge of modern security practices and emerging technologies, including AI/ML.

Responsibilities

Application Security & Code Analysis
  • Perform static (SAST), dynamic (DAST), and software composition analysis (SCA) to identify vulnerabilities in applications and third-party components
  • Analyze scan results, triage findings, and prioritize remediation efforts based on risk
  • Partner with development teams to remediate vulnerabilities and improve secure coding practices

Vulnerability Management
  • Conduct regular security assessments and vulnerability scans across applications and environments
  • Validate and reproduce vulnerabilities, including false positive elimination
  • Track and report vulnerability metrics, risk trends, and remediation progress

Security Tools & Automation
  • Configure, deploy, and maintain security scanning tools (e.g., Checkmarx, Veracode, Fortify, Snyk, Burp Suite, OWASP ZAP)
  • Automate security testing processes using scripting or APIs
  • Improve scanning efficiency and coverage through tuning and optimization


Qualifications

Bachelor's Degree and 6 years of experience in Information Security OR High School Diploma or GED and 10 years of experience in Information Security

Required Qualifications
  • Hands-on experience with:
    • SAST, DAST, and SCA tools
    • Web application security testing (OWASP Top 10, API security)
  • Strong understanding of:
    • Secure software development lifecycle (SDLC / DevSecOps)
    • Common vulnerabilities (e.g., injection, XSS, authentication flaws)
  • Proficiency in one or more programming/scripting languages (e.g., Python, Java, JavaScript, Bash)
  • Experience interpreting and prioritizing scan results and remediation plans

Preferred Qualifications
  • Experience integrating security tools into CI/CD pipelines (e.g., Jenkins, GitHub Actions, Azure DevOps)
  • Familiarity of container and cloud security (AWS, Azure, Google Cloud Platform)
  • Familiarity with AI/ML concepts and security implications
  • Industry certifications such as:
    • CEH, Security+, SSCP, GIAC or comparable.

Key Skills
  • Strong analytical and problem-solving skills
  • Provide risk-based recommendations to stakeholders
  • Ability to communicate technical findings to both technical and non-technical stakeholders
  • Experience working cross-functionally with development and engineering teams
  • Attention to detail with a risk-based security mindset

Nice-to-Have Experience
  • API security testing tools (Postman, SoapUI)
  • AI-assisted security tooling (e.g., anomaly detection, code analysis assistants)
  • Knowledge of regulatory frameworks (NIST, ISO 27001, SOC 2)
  • AI/ML & Emerging Technologies
    • Leverage AI/ML-based security tools for enhanced detection and analysis
    • Assess risks related to AI/ML models (e.g., data poisoning, model inversion, adversarial attacks)
    • Participate in securing AI-driven applications and data pipelines
  • Threat Analysis & Risk Management
    • Assess potential threats and attack vectors relevant to applications and APIs
    • Apply threat modeling techniques (e.g., STRIDE) during development lifecycle


Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at

$descr2

$descr3
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 10122789
  • Position Id: 34516
  • Posted 4 hours ago

Company Info

About First-Citizens Bank & Trust Company

Why First Citizens?

As America’s largest family-controlled bank, we have a unique legacy of strength, stability and vision.In recent years, we’ve grown to become a top 20 U.S. bank and a member of the Fortune 500.

With growth comes opportunities to learn and advance.

Technology is mission-critical here – from innovations that make banking easier to ensuring funds and data are secure, we constantly seek to create efficiencies for our associates and customers.

Our technology team makes a lasting difference by delivering solutions that empower our customers to take charge of their financial future.

Discover what it’s like to make better happen every day at a bank that’s committed to offering you a supportive, vibrant and flexible work environment.

Equal Opportunity Employer.

Member FDIC.

 

Market Position
Top 20 U.S. Bank

Total Assets
$221B

About_Company_One
Go to company profile
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Cyber Security Analyst III - App Security & Vulnerability (Remote)

Remote or Raleigh, North Carolina

Today

Full-time

depends on experience

Cyber Security Analyst III - App Security & Vulnerability (Remote)

Remote or Texas

Today

Full-time

depends on experience

Cyber Security Analyst III - App Security & Vulnerability (Remote)

Remote or Arizona

Today

Full-time

depends on experience

Search all similar jobs
Remote jobs at First-Citizens Bank & Trust Company