Leveraging deep integrations into retailers’ point-of-sale systems, InComm provides connectivity to a variety of service providers that allow consumers to conduct everyday business at more than 450,000 points of retail distribution worldwide. Whether those consumers are activating prepaid products, paying bills, enjoying real-time discounts through a membership card, purchasing digital goods in-store or adding funds to an online account, InComm is there to provide unique gift-gifting opportunities, cater to on-the-go shoppers, deliver added value through loyalty programs and serve cash-based consumers. With 186 global patents, InComm is headquartered in Atlanta with a presence in over 30 countries in North and South America, Europe and the Asia-Pacific region. Learn more at www.incomm.com or connect with us on www.twitter.com/incomm, www.facebook.com/incomm, www.linkedin.com/company/incomm or www.incomm.com/blog.
We are creating a Center of Excellence for Security, responsible for implementing secure coding practices and preventing and resolving security vulnerabilities, by integrating security tools within application development.
The Security Engineering Analyst will be focusing on the tactical delivery of secure software and systems, knowledgeable in secure system design, this individual will be key contributor to the Secure Software Development Life Cycle process and procedure. He/She will support in evaluating the application platform (application, OS - server, infrastructure, networking) and understanding potential vulnerabilities. This individual will work closely in helping the teams in supporting remediation process. Responsible for coordinating with cross-functional teams and follow the process established.
Have experience with OWASP, Secure Application Development, Vulnerability Detection/Resolution,. Penetration Testing, Security Risk Assessment, Ethical Hacking, Dala Loss Prevention, Data Encryption?
We are looking for someone who has a background and experience in implementing the OWASP Practices as well as NIST Security CIA Triad across all aspects of platform development.
This individual is self-motivated to learn about the secure coding practices, and make recommendations in implementing and improving the process. This role will work with multiple teams of developers and applications to proactively resolve vulnerabilities. This role will be support in application scanning (Dynamic and Static) tools platform, integrating tools with application build process and IDE, configuring tools for cross-functional teams to effectively manage vulnerabilities.
Why InComm? InComm offers an opportunity to work in the interesting niche of fin-tech. We are producing technologies and services that impact consumer shopping in most parts of the world and partner with many of the world’s well-known brands and retailers.
Candidate must have at least three or more years of experience with the one of the Application Security Scanning tools: Fortify, Qualys, IBM App scan, Veracode (or others)
Preferred candidate with experience of software development with one of these languages: Java, C, C++, C#, .Net, Python
Preferred candidate with experience of Databases: Oracle, Mongo DB, SQL Server
Familiar with SDLC (Software Development Life Cycle), CI/CD tools Jenkins, TeamCity, TFS
Familiar with Server and Network configurations, Application server: JBOSS, Tomcat – Apache, IIS
Educational Background or Certifications: Two or Four-Year Degree/Diploma in Computer Science or Information Technology or equivalent work experience.
InComm provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity or national origin, citizenship, veteran’s status, age, disability status, genetics or any other category protected by federal, state, or local law.
*This position is eligible for the Employee Referral Bonus Program #LI-TH1