Sr. Staff - Application Security Architect

company banner
Charles Schwab & Co., Inc.
Full Time
Work from home not available Travel not required

Job Description


Westlake - TX, TX2050R, 2050 Roanoke Road, 76262-9616
Christine Marie Hill

We believe that, when done right, investing liberates people to create their own destiny. We are driven by our purpose to champion every client’s goals with passion and integrity. We respect and appreciate the diversity of our employees, our clients, and the communities we serve. We challenge conventions strategically to create value for our clients, our firm and the world. We live and bring to life the concept of ‘own your tomorrow’ every day. We champion our employee strengths, guide their development, and invest in their long-term success. We hire optimistic, results-oriented, curious, innovative, and adaptable people with the desire to help our clients and one another succeed.

As a company, we were established by Chuck over 40 years ago to champion Main Street over Wall Street, and to help Americans transform themselves from earners to owners. Through advocacy and innovation, we work to make investing more affordable, accessible and understandable for all. As we enter our fifth decade, we are looking for talented, innovative and driven people who believe they can help themselves, and our clients, create a better future.

Our Opportunity:

Charles Schwab’s Software Security Applications Architects thrive in a leading-edge work culture while developing capabilities that help Schwab protect its own assets and reputation as well as its clients. The Schwab Cybersecurity Services team is looking for a software engineer/architect with a strong desire to learn and leap into the cybersecurity career path to architect, design, develop, build, evolve and run an overall application security program and capabilities that positively impact our clients and those who serve our clients. This position requires a self-motivated individual with strong problem solving skills who can contribute in a highly collaborative culture and Agile team environment. We are looking for a strong development engineer who has a strong passion and drive to learn and integrate security practices into the Security Software Development Lifecycle. The ability to deliver innovative, secure, and reliable solutions are keys to success in this role. Our Software Security Applications Architects are driven to learn, grow and continuously contribute to evolving the Schwab experience and technology.

What you’ll do:

  • Provide leadership in defining secure development and coding practices for C#, Java, APIs, microservices, non-functional requirements and security user-stories while leveraging both manual and code scanning tools for security code audits.
  • Develop and sustain a security operating model for all internally-developed (including cloud) applications that emphasizes the role of security functions “shift left” in the SDLC.
  • Lead and participate in development and implementation of application security architecture guidance, principles and standards.
  • Provide security consulting including design, reviews, and recommendations for projects and initiatives.
  • Help to effect positive changes in Secure DevOps for improving security controls.
  • Conduct research to identify new attack vectors facing Internet facing systems. Evaluate, track and oversee remediation of application security concerns that may impact multiple internally developed external Schwab websites and APIs.
  • Lead and leverage current and evolving technologies to enable automation and efficiency of application security processes - design, code, test, log, debug, document, and analyze current and future applications and integrations.
  • Lead implementation of processes, controls and tools to assure compliance with corporate risk policies and standards and achieve risk levels within approved thresholds. Take appropriate action, when needed, to modify processes, systems and controls that cause risk appetite metrics to be exceeded.
  • Scope, plan and execute manual and/or automated controls testing to validate the adequacy and effectiveness of technology and security controls in accordance with firm’s risk policies and standards.
  • Evaluate and decide on sufficiency of application flaw mitigation proposals from Schwab development teams.
  • Collaborate with business contacts to ensure 3rd party applications comply with our policies and principles.
  • Work with and influence business contacts in regards to technology controls, risk mitigation techniques related to application layer security.
  • Act as a mentor to junior staff members.
  • Act as security champion and partner across Schwab Technology and Business groups.

What you have:

  • Bachelor degree in Computer Science, Information Technology or equivalent experience desired.
  • 5+ years professional experience in software development.
  • 5+ years leveraging object oriented languages such as C#, Java, and/or C++.
  • 5+ years experience with HTML, CSS, and leading JavaScript frameworks such as Angular and Node.js.
  • Demonstrated experience designing, creating, testing, and consuming REST APIs with a focus on security and performance.
  • Subject matter expertise in application security.
  • Strong familiarity with OWASP Top 10 and prevention/remediation techniques.
  • Static & dynamic security scanning concepts and tooling.
  • Ability to develop tests and effectively automate test execution.
  • Excellent oral and written communication skills.
  • Ability to fully support security maturity in all phases of the SDLC.
  • Requirements review.
  • Translating requirements into a Design.
  • Design implementation.
  • All aspects of testing.
  • Production implementation and support.
  • Data analysis.
  • Participation in review and governance activities.

You demonstrate these behaviors:

Innovative: Defines a compelling vision of the future, and develops breakthrough ideas, whether big or small, that support that vision 

Talent Magnet: Seeks out and attracts strong internal and external talent 

Overcomes Barriers: Takes responsibility for addressing obstacles that hinder our people and our business 

Challenger: Takes risks when the opportunity warrants it and the potential downside is understood; is no disheartened by failure but uses it as an opportunity to learn 

Emotionally Mature: Demonstrates strong self-awareness and ability to adjust to the emotion & drive of others; embraces others’ perspectives and recognizes limits of own point of view 

What you’ll get:

  • Comprehensive Compensation and Benefits package
  • Financial Health: 401k Match, Employee Stock Purchase Plan, Employee Discounts, Personalized advice, Brokerage discounts
  • Work/Life Balance: Sabbatical, Paid Parental Leave, New Mothers returning to work Program, Tuition Reimbursement Programs, Time off to volunteer, Employee Matching Gifts Program
  • Everyday Wellness: Health and Lifestyle Wellness Rewards, Onsite Fitness Classes, Healthy Food Choices, Wellness Champions
  • Inclusion: Employee Resource Groups, Commitment to diversity, Strategic partnerships
  • Not just a job, but a career, with an opportunity to do the best work of your life

Learn more about Life@Schwab.

Schwab is committed to building a diverse and inclusive workplace where everyone feels valued. As an equal employment opportunity employer, our policy is to provide equal employment opportunities to all employees and applicants without regard to any status that is protected by law. (Please click here to see policy.) Schwab is also an affirmative action employer, focused on advancing women, minorities, veterans, and individuals with disabilities in the workplace. We believe diversity and inclusion are part of our success as a company and our purpose of serving every client with passion and integrity.

If you need an accommodation in the application process, please email or call HR Direct at 800-725-3535.

Job Specifications
Relocation Offered?:No
Work Schedule:Days
Languages:English - spoken
Current Licenses / Certifications:None
Relevant Work Experience:IT-Other Specialty Engineering-6+ yrs
Position Located In:TX - Westlake
Job Type:Full Time

Category:Information Technology
Activation Date: Friday, May 17, 2019
Expiration Date: Saturday, August 31, 2019
Apply Here

Company Information

At Schwab, we inspire the driven; individuals who want to take ownership of their career and their future. You are appreciated for your work, respected for your unique strengths and rewarded for the possibilities you create for our clients. Working in Schwab Technology is not just a job; it's an opportunity to do the best work of your life. This team drives Schwab's mission to harness the power of data to deliver the next gen client experience. They relentlessly pursue simplification and modernization, laying the foundation for the digital enterprise. They act boldly together to provide security for our clients and enterprise, safeguarding client trust all while delivering on their core commitments to availability, capacity and project execution with excellence and efficiency. If you are looking to be challenged with projects that stretch and grow your abilities, and push you towards further developing your expertise, apply to one of our openings today.
Dice Id : 10228622
Position Id : 20190426-2633

Similar Positions at Charles Schwab & Co., Inc.

Sr. Staff - Cloud Security Engineer
  • Westlake, TX
  • 15 hours ago
Sr. Staff - DLP Security Engineer
  • Westlake, TX
  • 15 hours ago
Sr. Security Analyst - IAM
  • Westlake, TX
  • 15 hours ago
Sr. Manager - IAM Product Manager
  • Westlake, TX
  • 15 hours ago
Sr. Cyber Resilience
  • Westlake, TX
  • 15 hours ago
Sr. Virtual Infrastructure Engineer
  • Westlake, TX
  • 15 hours ago
Staff Reliability Engineer
  • Austin, TX
  • 15 hours ago
Sr. Release Manager
  • Fort Worth, TX
  • 15 hours ago