Application Security Analyst/ Senior

Company Federal Reserve Bank of Cleveland The Federal Reserve Bank of Cleveland is part of the nationu2019s central bank, and weu2019ve provided many opportunities for professional growth during our history. For twenty-six years in a row, weu2019ve been named u201cOne of Northeast Ohiou2019s Best Places to Worku201d by North Coast 99. This prestigious award honors organizations with outstanding employment practices, including compensation, benefits, training, recruitment, retention, community services, and employee communications. Our People Make the Difference The Federal Reserve Bank of Cleveland is seeking innovative thinkers with vision to build the framework that will carry the Bank into the future. Follow us on LinkedIn, X, Instagram, and our YouTube channel u2013 Cleveland Fed To be considered for this role, candidates must be a U.S. citizen. Organizational Expectations : In this role you will provide leadership in protecting the confidentiality, integrity, and availability of web and/or mobile applications by establishing and enforcing system access controls. You will define system security requirements, recommend improvements to system security frameworks, ensure authorized access to systems through monitoring, performing testing, or scanning for security vulnerabilities, and raising security awareness. General Responsibilities : + Identify security related issues and define security requirements during all phases of the application development lifecycle. + Review program/development documents to ensure adherence to secure coding standards, guidelines and security requirements. + Coordinate with developers to ensure secure and resilient design, prototyping, development, testing, support, and documentation of moderately complex application software. + Monitor for atypical usage of information system accounts and other abnormalities to identify possible breaches. + Assist with FISMA initiatives, e.g., updating security plans, to support ISSO responsibilities. + Coordinate the identification of security-related issues and definition of security requirements during all phases of the software development lifecycle (SDLC). + Perform penetration testing activities to ensure web vulnerabilities are not present within Treasury Services applications. + Conducts analysis and interpreting of cybersecurity trends and emerging risks, quantifies potential impact, and develops conclusions and recommended application security responses. + Performs other duties as assigned or requested + Adheres to the Banks attendance policies through regular and prompt attendance. Education and Experience : + Application Security Analyst : Bacheloru2019s degree with 3+ years of related work experience or Associate's degree with 5+ years of related work experience - Strong preference of at least one security certification (CISSP, CSSLP, CCSP, CEH, AWS Security, etc.) + Application Security Analyst Senior : Bacheloru2019s degree with 5+ years of related work experience or Associate's degree with 7+ years of related work experience - Strong preference of at least one security certification (CISSP, CSSLP, CCSP, CEH, AWS Security, etc.) Knowledge and Skills : + Ability to analyze highly complex business requirements. + Thorough understanding of industry based security controls relating to applications, services, and systems. + Knowledge of cloud-based platforms and technologies and how to ensure these environments are secure. + Thorough understanding of security controls relating to access control, authentication, and auditing. + Demonstrated knowledge and understanding of information security industry trends and emerging technologies, especially relating to application security vulnerabilities. + Proficient at testing web application for security vulnerabilities, such as those listed in the OWASP Top 10 and familiar with the tools used for testing. + Demonstrated ability to learn new systems and technologies + Excellent time management skills, and the ability to prioritize and multi-task. Location: Cleveland, OH, Columbus, OH, Cincinnati, OH, or Pittsburgh, PA and Remote within the United States The expected starting salary range for the Application Security Analyst is between u200b$79,500 and $109,300 annually and for the Application Security Analyst Senior is between $97,800 and $134,400 . Final salary and offer will be determined by the applicantu2019s background, experience, skills, internal equity, and market data. Final salary and offer will be determined by the applicantu2019s background, experience, skills, internal equity, and market data. The Cleveland Fed offers benefits to support overall health and financial security. Learn more about our benefits here: Physical Demands and General Working Conditions This is not necessarily an exhaustive list of all responsibilities, duties, standards or requirements, efforts, skills or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, the Federal Reserve Bank of Cleveland reserves the right to revise this or any job description at any time. Reasonable Accommodation Statement _-_ The Federal Reserve Bank of Cleveland is committed to ensuring that individuals with disabilities are provided with reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. To request a reasonable accommodation for any part of the employment process, please send an email to . Banku2019s Ethics Rules and Drug Testing : As a condition of employment, Federal Reserve Bank of Cleveland employees must comply with the Banku2019s ethics rules which generally prohibit employees, their spouses/domestic partners, and minor children from owning or controlling, directly or indirectly, any debt or equity interest in a depository institution or an affiliate of a depository institution. A

Created: 2026-03-13