AppSec Jobs
← Back to all jobs

Swift

Application Security Engineer - Hybrid

Manassas, VAWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Swift

Swift, formally known as the Society for Worldwide Interbank Financial Telecommunication, is a global cooperative based in La Hulpe, Belgium. Founded in 1973, it is owned by its member financial institutions and governed by central banks. Swift provides secure and reliable financial messaging services that facilitate the exchange of transaction information worldwide, supporting the global economy. The company offers a range of services, including secure solutions for cross-border and domestic payments, messaging for securities transactions, and support for treasury operations and foreign exchange. Swift also provides tools for risk and compliance, ensuring adherence to regulatory requirements. Its platform includes innovative features like Swift GPI for enhanced payment tracking and ISO 20022 messaging standards. With over 50 specialized products, Swift emphasizes digital transformation and security, serving more than 11,000 member institutions globally.

Industry

financial services

Employees

5,700

1055 engineers

Revenue

$1.3B

Website

Visit →

Security at Swift

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

Swift's AppSec mission, as seen through its Customer Security Programme (CSP), is to help financial institutions ensure their defences. The company's oversight objectives focus on risk identification, management, and information security. They acknowledge that the cyber threat landscape evolves, and so does the CSP. Information regarding developer enablement vs. gatekeeping is not publicly available, and no explicit public statements were found on internal AppSec philosophy language.

Security Team

Swift's Executive Committee is chaired by the CEO, with leaders including the CTO and Chief Risk and Control Officer, but no explicit AppSec reporting line is publicly available. Key public-facing AppSec leaders and team size estimates are not publicly available. As of, at least 2 active AppSec job postings were found, referencing application/system management and security roles, such as "Associate Sys - App Mgt - Sup Specialist". The LinkedIn search query used was "Swift Application Security"site:linkedin.com. There is no clear public organizational chart or named AppSec leads.

Key Initiatives

  • No evidence was found for a Security Champions Program or explicit public evidence of "Shift Left"practices like pre-commit/IDE/CI security actions.
  • For vulnerability management, "Vulnerability scanning is performed in line with the Swift Customer Testing Policy,"and "The outcome of the vulnerability scanning is documented and analysed for appropriate action."Regarding Secure SDLC Artifacts, "Application hardening is conducted and maintained on all in-scope components."No explicit public evidence of new AppSec-specific programs in the last 6 months was found.
  • Public documents primarily focus on customer security controls rather than Swift's internal AppSec team operations.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.