✦ Luna Orbit — Cybersecurity

Tech Lead - Information Security

at Ameriprise Financial

📍 2 Locations Hybrid Posted March 13, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Full-Time
Experience mid
Exp. Years 5+ years
Education Not specified
Category Cybersecurity

About this role

This role involves reviewing and validating code fixes, assessing false positives, and evaluating design controls to ensure application security and high-quality secure applications.

Key Responsibilities

  • Identify, analyze, and remediate code vulnerabilities
  • Partner with development teams to validate fixes
  • Review security findings and false positives
  • Evaluate design controls and risk
  • Provide guidance on secure coding

Technical Overview

The technical environment includes application security, vulnerability remediation, OWASP Top 10, SAST/DAST tools, and ServiceNow for ticketing and workflow management.

Ideal Candidate

The ideal candidate is a mid-level security engineer with 5+ years of experience in application security, vulnerability remediation, and secure coding practices. They possess deep knowledge of OWASP Top 10 vulnerabilities and experience working with SAST/DAST tools and ServiceNow ticketing systems.

Must-Have Skills

5+ years in software developmentStrong understanding of OWASP Top 10Ability to interpret vulnerability reportsServiceNow ticketing process

Nice-to-Have Skills

Experience with SAST/DAST toolsKnowledge of secure design principlesThreat modeling

Tools & Platforms

ServiceNowOWASPSAST toolsDAST toolsServiceNow ticketing

Required Skills

Java.NETPythonOWASP Top 10Secure CodingVulnerability AssessmentCode RemediationSASTDASTServiceNow

Hard Skills

Java.NETPythonOWASP Top 10Secure CodingVulnerability AssessmentCode RemediationSASTDASTServiceNow

Soft Skills

CommunicationCollaborationProblem-solvingRisk AssessmentTeamwork

Industry & Role

Industry Financial Services / Banking
Job Function Application Security and Code Vulnerability Remediation

Keywords for Your Resume

Security Code RemediationOWASP Top 10Vulnerability assessmentSecure codingSASTDASTServiceNowCode security flawsRemediation techniquesVulnerability reportsRisk-based decisionsSecurity findingsThreat modelingSecure design principlesApplication Security

Deal Breakers

Less than 5 years in software development, Lack of experience with OWASP Top 10, No experience with vulnerability assessment tools, Unfamiliarity with ServiceNow

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile