Discover. A brighter future.
With us, you’ll do meaningful work from Day 1. Our collaborative culture is built on three core behaviors: We Play to Win, We Get Better Every Day & We Succeed Together. And we mean it — we want you to grow and make a difference at one of the world's leading digital banking and payments companies. We value what makes you unique so that you have an opportunity to shine.
Come build your future, while being the reason millions of people find a brighter financial future with Discover.
Job Description
At Discover, be part of a culture where diversity, teamwork and collaboration reign. Join a company that is just as employee-focused as it is on its customers and is consistently awarded for both. We’re all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career.
As a Principal Cybersecurity Analyst, you will optimize cybersecurity program processes and output. Principal Cybersecurity Analysts at Discover contribute to the broader program roadmap. You’ll play a key role in driving reporting accuracy and demand excellence in department deliverables.
Responsibilities
- Proactively identifies and reports control deficiencies as issues within action plans
- Collaborates with application development teams on triaging and remediating Application Security vulnerabilities
- Act as the product owner of threat modeling and develop a roadmap to establish and evolve threat modeling processes.
- Leverage threat modeling methodologies such as STRIDE or PASTA to identify areas of potential attacks to products or applications and inform decisions about risk and priorities for fixes.
- Collaborate with various stakeholders in Cybersecurity to maintain a threat inventory.
- Collaborate with the Application Security Engineering to host immersion events focused on Application Security themes to raise awareness and educate software engineers
- Partner with the Application Security Engineering team to build new products and services to identify, manage and reduce risk during the software delivery pipeline with user experience at the forefront.
Minimum Qualifications
At a minimum, here’s what we need from you:
- Bachelors – Information Security, Information Technology, Analytics, Business or Project Management
- 6+ Years – Information Security, Information Technology, Business, Analytics, Project Management or related
- In lieu of a degree 8+ Years – Information Security, Information Technology, Business, Analytics, Project Management or related
- Internal applicants only: technical proficiency rating of proficient on the Dreyfus cybersecurity scale
Preferred Qualifications
If we had our say, we’d also look for:
- PMP
- GIAC
- CISSP
- Experience in the Application Security space
- Experiencing working with threat modeling methodologies such as STRIDE or PASTA
- Experience with the MITRE ATT&CK framework
- Experience interpreting software architectures built with the C4 framework and data flow diagrams.
External applicants will be required to perform a technical interview.
What are you waiting for? Apply today!
The same way we treat our employees is how we treat all applicants – with respect. Discover Financial Services is an equal opportunity employer (EEO is the law). We thrive on diversity & inclusion. You will be treated fairly throughout our recruiting process and without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status in consideration for a career at Discover.
