A career at CoBank can offer you the opportunity to make a personal impact on the people and communities where we do business. When you choose a career with CoBank, you make a difference by doing work that matters. In order to be the best, we hire the best!

Remarkable Benefits offered by CoBank

• Competitive Compensation & Incentive
• Hybrid work model – flexible arrangements for most positions
• Benefits Packages, including: Medical, Dental and Vision coverage, Disability, AD&D, and Life Insurance
• CoBank University robust curriculum –associate training and development, including higher education tuition reimbursement
• Outstanding 401k – up to 6% matching and additional 3% non-elective contribution
• Time-Off Packages – Vacation 15+ days, 10 Paid Sick Days, and 10 Paid Holidays
• Community Impact – United Way Angel Day, Volunteer Day and Associate Directed Contribution
• Associate Resource Groups – creating a culture of diversity and inclusion
• Recognize a fellow associate with “GEM” awards, including a monetary value
• On-site Fitness Center and Cafe
• ECO transportation pass provided to every Denver associate

At CoBank, our Senior Application Security Analyst evaluates current and emerging security technologies and implements new systems, processes and procedures to maintain the security of bank personnel and information assets. Ensures the bank security practices comply with legal and regulatory requirements, meet or exceed currently accepted standards, and remain applicable and relevant in the current security environment

Essential Duties and Responsibilities

• Responsible for supporting enterprise security functions, activities, and projects within the business, focusing on integrating sound security practices and controls into the application development lifecycle.
• Participates in large scale projects as an application security subject matter expert. Advises on secure architectural design, controls, and security best practices.
• Works with the business and IT to identify and document application security vulnerabilities and track remediation of issues and findings. Understands risk and works with stakeholders to mitigate risk to an acceptable level.
• Responsible for the daily administration and oversight of application security controls, including Web application firewalls and application vulnerability scanning tools.
• Performs or facilitates application-level security testing, including managing third party penetration testing engagements.
• Researches, evaluates and makes recommendations on emerging security trends and technologies.
• Occasionally assist other teams with analysis of system alerts and participate in incident response activities as-needed.
• Reviews and provides input to security policies, standards, procedures and guidelines.
• Remains up-to-date with current security concepts, practices, technologies, and regulations.
• Conducts investigations of potential non-compliance with Enterprise Security policies and procedures.

Basic Qualifications

• Bachelor’s degree in information technology, computer science, or comparable technical field.
• Four (4) years of experience focused on application security, or a combination of education and experience.
• CISSP, CISM, CISA, GCIH, CCSP, or other related security and risk certification.

Preferred Qualifications

• Experience with DevOps/DevSecOps methodologies and processes.
• Experience with scripting languages, software development, and Web development practices and languages.
• Ability to perform network and Web application penetration testing using both automated tools and manual techniques. Capable of managing third party penetration testing engagements.
• Ability to configure and maintain Web application firewalls and WAF security policies.
• Experience with common cloud platforms and cloud security controls.
• Able to conduct security reviews and risk assessments for on premise, SaaS, and cloud technologies. Able to research and evaluate security controls and make recommendations for remediation or improvement.
• Knowledge and experience with network protocols, network technologies, and identity management principles.
• Experience with logging, monitoring, and log analysis tools.
• Understanding of common security frameworks and implementing best practices, such as NIST, ISO, and MITRE ATT&CK.
• Able to configure and manage Web application scanning and static code analysis tools.
• Thorough understanding of Web application security concepts, principles and guidelines, such as OWASP.
• Knowledge of PKI and current cryptographic concepts, principles, algorithms, and technologies
• Excellent analytical, decision making and problem solving skills.
• Excellent customer service, interpersonal, and verbal and written communication skills, with the ability to build and maintain effective relationships with all levels of management, team members and customers.
• Strong organizational and time management skills and detail orientation, with the ability to prioritize and multi-task under tight time frames and competing priorities
• Ability to work independently, as well as collaboratively in a team environment.
• High degree of personal integrity and trustworthiness.
• Ability to provide off-hour, on-call production support.
• Availability for occasional travel.

Compensation Information

• Estimated Base Salary Range: $106,000-$140,000
• Target short-term incentive opportunity: 15%

CoBank stands strong as an enterprise dedicated to the financial needs of rural communities. That means we help fund new ways to grow food, generate energy, access technology, and otherwise improve life in America. When you choose a career with us, you make a difference by doing work that matters. A career at CoBank can offer you the opportunity to make a personal impact on the people and communities where we do business. We also provide competitive compensation, health and wellness benefits, company-funded retirement plan, matching 401(k), and professional development programs.

CoBank will not sponsor a work visa (e.g. H1B, etc.) to fill this position
CoBank is an Equal Opportunity Employer

CoBank requires all newly hired associates to be fully vaccinated against COVID-19, and new hires will be asked to register their proof of vaccination. Any offer of employment will be conditioned upon an applicant supplying proof of vaccination against COVID-19; provided, however that CoBank may provide a reasonable accommodation for an applicant’s known disability or sincerely held religious belief.