300 TBK Bank, SSB is looking for a Senior Application Security Analyst to join its cybersecurity defense team. In this hands-on role, you will help protect the applications and systems supporting critical business operations by working closely with developers, engineers, and security partners to identify risks, reduce vulnerabilities, and embed security from design through deployment.
What You'll Do
- Analyze application architectures to identify security risks and potential attack paths
- Perform secure code reviews and vulnerability assessments, recommending effective remediation
- Integrate security tools and automated checks into CI/CD and DevOps pipelines
- Use static and dynamic scanning tools to identify, prioritize, and track security findings
- Partner with developers and operations teams to embed security throughout the SDLC
- Document and report application security issues, including remediation guidance and validation
- Support new application and technology launches to prevent misconfigurations and data exposure
- Collaborate with red teams, threat intelligence, and risk teams to reduce overall attack surface
- Communicate security risks clearly to both technical and non-technical audiences
- Support internal and external audits focused on compliance and risk reduction
- Help define metrics and KPIs that demonstrate the effectiveness of the application security program
- Participate in change management discussions and continuous improvement initiatives
What We're Looking For
- 3–5+ years of experience in application security, with exposure to secure software development practices
- Solid understanding of application architecture, APIs, microservices, and web and mobile security
- Experience with static and dynamic application security testing and vulnerability management tools
- Working knowledge of DevSecOps concepts and CI/CD security integration
- Ability to script or work with languages such as Python, Bash, PowerShell, or Perl
- Familiarity with OWASP Top 10, CVSS, MITRE ATT&CK, and the software development lifecycle
- Comfortable reviewing code and understanding security risks across different programming languages
- Strong communication skills with the ability to explain security risks in business-friendly terms
- Analytical mindset, attention to detail, and a collaborative approach to problem-solving
- Bachelor’s degree in Information Security, Computer Science, Information Systems, or equivalent experience
Nice to Have
- Security certifications such as GWEB, CSSLP, or GPEN are a plus
Technical Stack
- Python
- Bash
- PowerShell
- Perl
Team & Environment
You will be a member of the cybersecurity defense team, working closely with developers, engineers, and security partners.
Benefits & Compensation
- Medical, Dental, and Vision coverage
- Paid Time Off
- 401k
- Compensation range: $130,205.00 - $201,818.00
Work Mode
This is a hybrid role based in Dallas, TX, with remote work options available within the United States.
300 TBK Bank, SSB is an equal opportunity employer.
