Job Description:
Senior Application Security Queue Co-Ordinator
The Role
The mission of the Application Security team is to protect Fidelity's assets and our customers’ livelihoods from the threat of exploitation by malicious adversaries.
The role of the queue coordinator is to actively manage the AppSec teams’ annual planning and work intake. This includes liaising with key BU stakeholders and application points of contact, gathering the testing pre-requisites and ensuring the teams are executing in alignment with the planned KPIs.
- Complete ownership of the queue management process
- Act as the front of house point of contact for the AppSec teams with respect to work intake, general queries, scoping and testing requirements.
- Develop strong relationships with key BU Stakeholders, ISO’s and SISO’s to strengthen partnership
- Develop the annual plan outlining which applications will be tested each month
- Track progress against the annual plan providing regular status updates and escalating where necessary
- Work with the application points of contact to ensure that testing pre-requisites are gathered and verified in a timely manner
- Work with the teams and application points of contact to resolve blocking issues
- Actively track the finding retest queue to ensure team are completing retests in line with our SLA.
- Work with the business to identify opportunities for improvement in business operations and processes
- Help design and document requirements for identified automation and process improvements
- Collaborate with other teams within Enterprise Cybersecurity to improve the overall security of Fidelity's applications and infrastructure.
The Expertise and Skill You Bring
- Bachelor’s degree or equivalent experience
- 5+ years of IT experience
- Project management experience
- Experience using Jira or a similar tool.
- Preferred: PMP, CSPO, CSM or equivalent certifications in project management or business analysis.
- Preferred: Application Security knowledge and certifications
- Preferred: Software development knowledge
- Excellent communication and presentation skills.
- Excellent interpersonal skills with a strong interest in the application security domain.
- Proven analytical and problem-solving skills, as well as the desire to assist others in solving issues.
- Basic knowledge of or the willingness to learn about application security mechanisms such as authentication and authorization, data validation, and access controls would be an advantage.
The Team
The Pre-Release Assessment team forms part of Security Assessment group within Enterprise Cybersecurity (ECS). Our goal is to proactively identify and remediate vulnerabilities in Fidelity’s applications. We work very closely with all the key Business Units to ensure that they remain secure while they deliver key projects to advance the firm.
Certifications:
Category:
Information Technology
Fidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.