Job Description

It’s about taking care of people, our people.

Are you described as someone with an inquisitive mind and an innovative personality? Are you never satisfied with good enough? Does solving complex problems and ensuring top-quality security excite you? If so, being an Application Security Analyst II with Frost could be for you.

At Frost, it’s about more than a job. It’s about having a flourishing career where you can thrive, both in and out of work. At Frost, we’re committed to fostering an environment that reflects our values and encourages team members to be the best they can be. In joining our adaptable, integrity-driven team, you’ll become part of Frost’s over 150-year legacy of providing unparalleled banking services.

Who you are:

As an Application Security Analyst II, you are our security champion, responsible for supporting and enhancing Frost’s application security program. You will provide support and consultation to other application security analysts and development teams during the integration of security into all phases of the software development lifecycles. You are not afraid to ask the question why and thrive in a collaborative environment.

What you’ll do: 

• Identify application security vulnerabilities, and work closely with development teams to remediate any detected weaknesses
• Lead risk assessments and contribute to threat modeling to determine the levels and types of controls needed
• Research and evaluate the tools, technologies, processes, and standards necessary to maintain and enhance the security of applications
• Make recommendations to enhance policies and procedures for the application security program
• Research and facilitate the appropriate security training for application development staff
• Participate on software development project teams as an application security advisor. Make recommendations to management regarding IT Security aspects of software development projects
• Gather metrics and assist in the development of metrics to formulate process improvement initiatives for the application security process
• Always take action using Integrity, Caring, and Excellence to achieve all-win outcomes 

What you’ll need:

• Bachelor’s degree in IT Security, in a related field, or equivalent experience
• 2+ years of experience in Software Development, Applications Security, and/or IT Operations with a minimum of 1 years of experience in Application Security
• Understanding of both server-side and client-side security issues
• Understanding of identifying common vulnerabilities identified in OWASP Top 10 and secure coding techniques to address these issues

Additional Preferred Skills:

• CSSLP and Security+ certifications
• Familiarity with an application security maturity model such as OWASP, SAMM or BSIMM
• Experience working with Waterfall and Agile development teams
• Experience with evaluation of API and microservices security controls

Our Benefits:

At Frost, we care about your health, your family, and your future and strive to have our benefits reflect that. This includes:  

• Medical, dental, vision, long-term, and life insurance
• 401(k) matching
• Generous holiday and paid time off schedule
• Tuition reimbursement
• Extensive health and wellness programs, including our Employee Assistance Program
• Referral bonus program + more!

Since 1868, Frost has dedicated their expertise to provide exceptional banking, investment, and insurance services to businesses and individuals throughout Texas. Frost is one of the 50 largest U.S. banks by asset size and is a leader in banking customer satisfaction. At Frost, it’s about being part of something bigger. If this sounds like you, we encourage you to apply and see what’s possible at Frost.