Application Security Engineer - Tempus

Position Overview

At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company’s success. As an Application Security Engineer within PNC's Tempus Technologies organization, you may be based in a remote location. This is a remote position. Work may be performed from a quiet, confidential space in a home location, approved by PNC. This position may not be available in all geographic locations.

Founded in 1987, Tempus Technologies is the expert leader of secure payments at the point of interaction. We're committed to developing exceptional point-of-sale payment integration technology and software solutions to meet the growing needs of our customers' business requirements. As a leader in the industry, we recognize our employees as one of our greatest assets. Tempus is growing and our team is growing with us, allowing for unlimited possibilities for career advancement and the potential for employees to develop their own individual career paths.

As an Application Security Engineer, you will utilize a strong technical background in information security and software development, with an expertise in establishing security standards and performing regular security assessments to protect our organization’s applications and data assets. Responsibilities include:
• Security Policy and Compliance: Assist with the development, implementation, and enforcement of application security policies, standards, and guidelines to ensure compliance with regulatory requirements and industry best practices.
• Collaboration and Communication: Work closely with cross-functional teams, including IT operations, development, and business units, to integrate security requirements and testing into projects and initiatives and ensure a secure-by-design approach.
• Security Assessments: Conduct regular application security assessments, secure code reviews, and penetration tests to identify security weaknesses and vulnerabilities in systems, applications, and networks, and work with relevant teams to remediate them.
• Security Monitoring: Monitor security logs and alerts generated by security tools and systems, investigate, and analyze security incidents, and escalate as necessary to ensure timely resolution.
• Security Documentation and Reporting: Maintain accurate documentation of security configurations, procedures, and incidents, and prepare regular reports and metrics to demonstrate the effectiveness of security controls and initiatives.
• Emerging Threat Monitoring: Stay current with the latest security threats, vulnerabilities, and trends, and assess their potential impact …