Location: New York, NY
BlackRock is one of the world's preeminent asset management firms and a premier provider of global investment management, risk management and advisory services to institutional, intermediary and individual investors around the world. BlackRock offers a range of solutions - from rigorous fundamental and quantitative active management approaches aimed at maximizing outperformance to highly efficient indexing strategies designed to gain broad exposure to the world's capital markets. Our clients can access our investment solutions through a variety of product structures, including individual and institutional separate accounts, mutual funds and other pooled investment vehicles, and the industry-leading iShares® ETFs.
The Aladdin trading and risk management system, used internally at BlackRock and by BlackRock Solutions clients, enables customers to manage over $5 trillion in financial assets. Aladdin is central to our technology strategy, unifying BlackRock by providing everyone with a common language and a central point of reference for our investment activities globally.
The Aladdin and Application Engineering teams within the Aladdin & Technology group use the latest technologies to design and develop applications that make up the firm's investment management platform. The systems support the full lifecycle of the investment management process, from quantitative risk management to order entry, trade routing and settlement.
BlackRock''s Application Security Program is a shared initiative between the Information Security and Software Engineering Groups. The individuals on this team are responsible for identifying and remediating security vulnerabilities, developing critical security infrastructure, deploying processes, tools and techniques to prevent security issues, and enhancing a defense in depth security strategy for the company. The team works directly with other development teams to build more secure applications and enhance the software development lifecycle. Additionally, the application security team writes and maintains common security-related libraries used throughout the firm.
This position is for a developer in the Software Engineering Group (SEG) with a strong background in information and application security concepts. The position requires a very strong technical foundation and the ability to work in a collaborative atmosphere with end-users and members of development teams.
. Designing, implementing and testing software development projects . Analyzing and automating networking flows and identifying shared software components among systems . Enhancing and implementing advanced security service interfaces for authentication, authorization, and cryptography . Developing standard libraries, frameworks, and platforms to be used by other development teams . Enhancing existing software profiling techniques and tools to identify software vulnerabilities . Contribute to the internal knowledge base and support training activities for other development groups . Defining design and coding standards and performing peer code reviews . Building migration and integration scripts between 3rd party products and internal data sources
While a strong Information Security background is a benefit, the ideal candidate will possess a strong software development and systems background. It is equally important that the successful candidate demonstrates great attention to detail and is able to meet deadlines consistently and efficiently. Preferred candidates will possess a Bachelor's degree in Computer Science, Information Technology, or a related field, although qualified candidates with significant backgrounds in software development will also be considered. The successful candidate will also possess the following:
. 4-year degree in Computer Science or related field, MS/PhD a plus . 3-6 years of experience with software development projects . Strong programming foundation in one of the following languages: C , C, Java . Strong scripting founding in one of the following languages: Perl, Python, Ruby . Additional programming and scripting languages are a plus . Experience with frameworks such as JBoss, Hibernates, Swing, JSP, etc. . SQL experience with a major database such as MySQL, Postgres, MS SQL, Sybase, Oracle . Familiarity with build systems such as Maven and Hudson . Testing experience with JUnit or comparable testing framework . Working knowledge of JIRA or comparable bug tracking software . Experience working in an Agile development environment and adhering to an SDLC . Strong knowledge of networking protocols such as TCP/IP and HTTP . Working knowledge of Linux and Solaris . Strong understanding of security principles such as defense in depth . General understanding of cryptography principles such as PKI, HMAC, Kerberos . Experience with LDAP and Active Directory is a plus . Application security skills involving identifying and remediating bugs in the OWASP Top 10 or SANS Top 25 is a strong plus . Knowledge of compiler internals is an additional plus
BlackRock is proud to be an E-Verify & Equal Opportunity/Affirmative Action Employer-M/F/D/V.
Job: TechnologyOrganization: Tech %26 Ops-A%26T-Aladdin Product Group