SAST/DAST Specialist at CNA

| Chicago, IL
Sorry, this job was removed at 2:59 p.m. (CST) on Wednesday, November 17, 2021
Find out who's hiring in Nationwide.
See all Operations jobs in Nationwide
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Job Summary
Under technical direction the Static and Dynamic Application Security Testing (S/DAST) Specialist enhances the security of the internally developed source code and applications to identify and minimize security vulnerabilities and code weaknesses. This position is a key member of the Application Security Team (AppSec) which manages the Secure Development Life Cycle (SDLC) throughout CNA's Technology organization. This position works closely with project teams across the organization and support multi-faceted engagements spanning legacy and modern technologies.
Essential Duties & Responsibilities
Performs a combination of duties in accordance with departmental guidelines:
  • Executes day-to-day responsibilities of testing enterprise applications for vulnerabilities both dynamically and statically.
  • Establishes vulnerability testing and scanning requirements with AppSec Leadership.
  • Supports enterprise policy and technical standards with specific regard to SDLC and secure configuration.
  • Partners with other Security and Technology professionals to support and enable strategies for enhanced developer experience.
  • Acts as a subject matter expert with the Enterprise Architecture and Infrastructure teams during engagements and project meetings.
  • Works with applications both on-premises and in the cloud.
  • Understands business requirements and work with them to define appropriate solutions for security objectives while meeting the business need.
  • Provides guidance technical expertise and support to team members regarding the SLDC framework and software composition analysis per CNA AppSec standard.
  • Participates and leads new projects as needed.

May perform additional duties as assigned.
Reporting Relationship
Typically Manager or above
Skills Knowledge & Abilities
  • Solid written and verbal communication skills with the ability to collaborate with peers Technology leadership and team members and internal and external business partners.
  • High performance skillset which not only understands the threat spaces as it relates to risks but also able to translate technical gaps to business risk when communicating with senior leaders and other key stakeholders.
  • Solid experience with application vulnerability scanning software composition analysis SDLC and programming. Highly skilled with application scanning tools such as Burp Suite Nessus or equivalent.
  • Demonstrated experience with a wide range of programming languages: Perl .Net Python database platforms (SQL NoSQL) etc. and with detecting and securing applications from vulnerabilities including the OWASP top 10.
  • Solid understanding of application-level security issues and risks. Experience with manual and automated composition analysis tools and techniques.
  • Comfort in a diverse technology environment spanning multiple operating systems and architectures.

Education & Experience
  • Bachelor's degree in Computer Science or related discipline or equivalent work experience.
  • Typically a minimum of four years' related work experience in Information Technology.
Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • .NETLanguages
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PerlLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • jQueryLibraries
    • jQuery UILibraries
    • ReactLibraries
    • AngularJSFrameworks
    • Node.jsFrameworks
    • SpringFrameworks
    • AccessDatabases
    • DB2Databases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • Google AnalyticsAnalytics
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • SalesforceCRM
    • SendGridEmail
    • MarketoLead Gen

What are CNA Perks + Benefits

CNA Benefits Overview

One of the many advantages of working at CNA is the benefits program we offer you and your eligible dependents,
beginning on the first day of your employment. The program features a variety of plans that provide health care
benefits, well-being, disability and survivor protection, and 401(k) savings, among others. Below are highlights
of the offerings.

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Open door policy
Team owned deliverables
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Diversity Employee Resource Groups
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Onsite Gym
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Adoption Assistance
Vacation & Time Off Benefits
Generous PTO
Paid Holidays
Paid Sick Days
Perks & Discounts
Relocation Assistance
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Online course subscriptions available
More Jobs at CNA159 open jobs
All Jobs
Finance
Data + Analytics
Dev + Engineer
HR + Recruiting
Internships
Legal
Marketing
Operations
Product
Project Mgmt
Sales
Content
Operations
new
Lake Mary
Operations
new
Chicago, IL
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Operations
new
Lisle
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Sales
new
Lake Mary
Sales
new
Minneapolis–Saint Paul, MN
Sales
new
Philadelphia, PA
Sales
new
Chicago, IL
Operations
new
Dallas-Fort Worth, TX
Finance
new
Philadelphia, PA
Operations
new
Atlanta, GA
Data + Analytics
new
Lake Mary
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Content
new
Houston, TX
Data + Analytics
new
Chicago, IL
Operations
new
Lake Mary
Operations
new
Lake Mary
Marketing
new
Chicago, IL
Finance
new
Dallas-Fort Worth, TX
Operations
new
Wyomissing
HR + Recruiting
new
Chicago, IL
HR + Recruiting
new
Chicago, IL
Finance
new
Kansas City, MO
Data + Analytics
new
Detroit, MI
Finance
new
Chicago, IL
Operations
new
Minneapolis–Saint Paul, MN
Operations
new
Phoenix – Mesa – Scottsdale, AZ
Developer
new
Chicago, IL
Operations
new
Chicago, IL
Project Mgmt
new
Chicago, IL
Developer
new
Chicago, IL
Finance
new
Minneapolis–Saint Paul, MN
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Sales
new
New Orleans, LA
Data + Analytics
new
Chicago, IL
Finance
new
Philadelphia, PA
Product
new
Chicago, IL
Finance
new
Dallas-Fort Worth, TX
Finance
new
Chicago, IL
Operations
new
Lake Mary
Marketing
new
Chicago, IL
Finance
new
Chicago, IL
Developer
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Developer
new
Chicago, IL
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Lisle
Operations
new
Sioux Falls
Operations
new
Lake Mary
Operations
new
Lake Mary
Operations
new
Lake Mary
Operations
new
Lisle
Operations
new
Miami, FL
Sales
new
Lake Mary
Data + Analytics
new
Chicago, IL
Operations
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Finance
new
Chicago, IL
Finance
new
Chicago, IL
Finance
new
Chicago, IL
Finance
new
Chicago, IL
Finance
new
Dallas-Fort Worth, TX
Operations
new
Dallas-Fort Worth, TX
Content
new
Minneapolis–Saint Paul, MN
Internships
new
Wyomissing
Operations
new
Wyomissing
Finance
new
Chicago, IL
Internships
new
Chicago, IL
Operations
new
Sioux Falls
Sales
new
Melville
Data + Analytics
new
Chicago, IL
Data + Analytics
new
Chicago, IL
Operations
new
Sioux Falls
Operations
new
Wyomissing
HR + Recruiting
new
Chicago, IL
Developer
new
Chicago, IL
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView CNA's full profileSee more CNA jobs