AppSec Jobs
← Back to all jobs

State Street

Application Security Programmer-Engineer - Vice President

Boston, MAWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About State Street

State Street Corporation is a leading American financial services holding company, founded in 1792 in Boston, Massachusetts. As the second oldest financial institution in the U.S., it has grown to operate in over 100 markets globally, employing more than 46,000 people. State Street manages approximately $41.8 trillion in assets under custody and administration and $4.1 trillion in assets under management, making it the fourth-largest asset manager in the world. The company provides a wide range of financial services tailored for institutional investors, including investment servicing, management, research, trading, and liquidity solutions. State Street is known for its innovative technology platforms, such as State Street Alpha®, which enhance operational efficiency. Its clients include asset managers, pension funds, insurance companies, sovereign wealth funds, and non-profits, among others. State Street plays a significant role in the global financial landscape, processing 11.5% of global financial assets daily.

Industry

financial services

Employees

53,000

2028 engineers

Revenue

$23B

Website

Visit →

Security at State Street

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • State Street's AppSec philosophy centers on integrating cybersecurity into agile practices and DevSecOps strategies.
  • The team emphasizes developer enablement over strict gatekeeping, focusing on 'influencing without authority' and partnering with the development community to triage and remediate vulnerabilities.
  • Their goal is to continuously improve security processes and tools to support organizational adoption of agile methodologies.

Security Team

  • State Street's Application Security function resides within the Cyber Security Architecture & Engineering team.
  • The overall information security program is led by Elizabeth (Liz) Joyce, Executive Vice President and Chief Information Security Officer (CISO).
  • As of April 2026, there are at least three active job postings for Application Security roles, including an Application Security Engineer and a Senior Security Testing Analyst (VP).
  • Common skill patterns across these roles include expertise in SAST, DAST, SCA, container security, and cloud platforms like Azure and AWS.

Key Initiatives

State Street is currently focused on building a comprehensive DevSecOps and AppSec Strategy. Key operational workflows include the automation of security processes within CI/CD pipelines and the implementation of a Secure Software Development Lifecycle (SSDLC). Vulnerability management involves threat-led penetration testing and partnering with engineering teams to operationalize security principles. There is no public evidence of a formal Security Champions program.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.