Product Security Testing Engineer

Product Security Testing Engineer

FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential!

The Opportunity

"You will act as a partner between FICO internal security standards and our expanding global supply chain. In this high-impact role, you will lead the charge in supporting multiple audits across both our internal IT landscape and third parties. You will act as a trusted advisor to FICO senior leadership, ensuring that our technical growth remains aligned with our risk appetite and strategy in a data-driven analytics environment"- Cyber Security, Director

What You'll Contribute 

• Collaborate with engineers, consultants, and leadership to identify security risks and recommend mitigations within the Secure Development Lifecycle (SDLC).
• Perform activities such as secure code reviews, security testing, and vulnerability triage across various applications. 
• Regularly interact with internal and external customers on security-related projects and operational tasks. 
• Develop understanding of business functionality and apply testing methodology as appropriate to technologies and risks. 
• Analyse test results, draw conclusions from results, and develop targeted exploit examples. 
• Clearly and professionally document root cause and risk analysis of findings. 
• Champion product security testing process and be an advocate for secure development practices, fostering a culture of collaboration and continuous improvement across engineering and product teams. 
• Collaborate with other teams to improve the overall security posture of applications/infrastructure.
• Stay current on security best practices, vulnerabilities, and attacker tactics, techniques, and procedures. 
• Develop and test effective functional security testing strategies for new/emerging product security requirements. 
• Suggest improvements to existing processes/tooling; ideate and implement automation where possible. 
• Take ownership of the functionality, configuration, and continuous improvement of DAST and API security tools, ensuring they are effectively integrated into the security testing lifecycle 

What We're Seeking 

• Bachelor's degree in Computer Science, Cybersecurity, or a related field. 
• Relevant cyber security certifications (e.g., CEH, CCSP, CISSP, OSCP etc) are highly desirable. 
• Proven experience of at least 5+ years in product security, pen testing and security automation. 
• Strong understanding of AWS infrastructure and cloud security principles. 
• In-depth knowledge of cybersecurity principles, methodologies, frameworks and best practices. (OSI, NIST, OWASP, SANS, PCI etc) 
• Knowledge of secure coding principles and experience with code review processes and tools. 
• Experience with Pen testing - WebApp, APIs, infrastructure as a code scan reviews and dynamic application security testing (DAST) methodologies and tools. 
• Knowledge and experience in CI/CD, shift left security and exposure to testing analytical models, AI/ML security testing will be a plus. 
• Strong analytical and problem-solving skills with a keen attention to detail.
• Strong written and oral communication skills with the ability to convey complex security concepts to non-technical stakeholders. 
• Strong organizational and interpersonal skills.
  

​Our Offer to You

• An inclusive culture strongly reflects our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.
• The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences.
• Highly competitive compensation, benefits, and rewards programs that encourage you to bring your best every day and be recognized for doing so.
• An engaging, people-first work environment offering work/life balance, employee with employee resource groups and social events to promote interaction and camaraderie.

Why Make a Move to FICO?

At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today – Big Data analytics.  You’ll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more.

FICO makes a real difference in the way businesses operate worldwide:

•    Credit Scoring — FICO® Scores are used by 90 of the top 100 US lenders.

•    Fraud Detection and Security — 4 billion payment cards globally are protected by FICO fraud systems.

•    Lending — 3/4 of US mortgages are approved using the FICO Score.

Global trends toward digital transformation have created tremendous demand for FICO’s solutions, placing us among the world’s top 100 software companies by revenue. We help many of the world’s largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people – just like you – who thrive on the collaboration and innovation that’s nurtured by a diverse and inclusive environment. We’ll provide the support you need, while ensuring you have the freedom to develop your skills and grow your career.  Join FICO and help change the way business thinks!

Learn more about how you can fulfil your potential at www.fico.com/Careers

FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and we’re proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they don’t meet all stated qualifications. While our qualifications are clearly related to role success, each candidate’s profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply.

Information submitted with your application is subject to the FICO Privacy policy at https://www.fico.com/en/privacy-policy

Experience Level

Senior Level