Job Location: United States:North Carolina : Cary
Role Value Proposition:
MetLifes Global Application Security team is responsible for the protection of a complex distributed application portfolio across the enterprise against internal and external threats. The Application Security Consultant is a hands-on technical role performing core application security testing services. Responsibilities include but not limited to defining concise security requirements, developing robust secure development standards, SDLC alignment across regional teams, supporting senior leadership, managing global testing efforts and reporting key performance metrics. This is a highly visible role where analytical thought leadership and disciplined operational rigor are keys to success.
Oversee risk based application security testing services across the enterprise
Enforce compliance with MetLifes application security policies and standards
Promote a security by design culture across MetLifes development organization
Increase global program efficacy (planning, communication, execution & continuous improvement)
Provide consultative security services to application development and architecture teams
Bachelors degree in Computer Science, Information Systems, Cybersecurity or a related field
5+ years of combined Software Development Application Security & Cyber Security or Application Security Testing
Experience with managed security services & application security practices (SAST, DAST, WAF, RASP, SCA)
Technology integration, security testing automation, tooling & remediation tracking (DevSecOps)
Must be well versed in OWASP Top 10 and SANS/CWE Top 25
Experience with white-box/black-box testing, application ethical hacking (AEH) & penetration testing
Experience with IDEs & defect tracking systems in an Agile Scrum environment
Strong knowledge of SDLC and working experience with multiple concurrent large scale development projects
Experience working in large global enterprise environments & across matrixed organization boundaries
Strong communication skills to effectively & succinctly convey technical matters to any audience (non-techies)
Experience with eGRC platforms (ex. Archer) and scripting skills
Professional certifications such as CSSLP, CEH or OSCP
At MetLife, were leading the global transformation of an industry weve long defined. United in purpose, diverse in perspective, were dedicated to making a difference in the lives of our customers. #LI-WRAPJOB
MetLife is a proud equal opportunity/affirmative action employer committed to attracting, retaining, and maximizing the performance of a diverse and inclusive workforce. It is MetLife's policy to ensure equal employment opportunity without discrimination or harassment based on race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, uniformed service member or veteran status, or any other characteristic protected by law.
MetLife maintains a drug-free workplace.
For immediate consideration, click the Apply Now button. You will be directed to complete an on-line profile. Upon completion, you will receive an automated confirmation email verifying you have successfully applied to the job.
Requisition #: 109604