Senior Java Security Engineer (Job #6259)
Location: Washington
Posted on: January 14, 2021
|
|
Job Description:
Work with product teams and product owners to understand and
formulate security requirements for large internet-facing,
enterprise software applications.
• Serve as SME on application security and collaborate with
software development teams to provide technical guidance to
implement appropriate security solutions, mechanisms and/or
controls that address business requirements.
• Consult on technical security issues/incidents as needed.
• Initiate and conduct manual/automated code reviews (via risk
assessments)
• Act as a liaison between software engineers and Information
System Security Office (ISSO)
• Conduct and coordinate vulnerability assessments and code-reviews
of software application under development
• Conduct risk assessment planning sessions and results
read-outs
• Experience writing automated unit tests.
• Experience in performing code reviews.
• Participate in Agile SCRUM activities such as daily standup,
sprint planning and retrospective meetings
• Monitor the marketplace for application security related tools,
conduct tool analysis and provide recommendations.
Requirements
Must have:
• 7+ years of Java/Enterprise Java development experience
• Expertise with application server technologies, Spring Framework,
Spring Security, Web Services (JAX-RS/JAX-WS), REST and
Hibernate
• In-depth knowledge of and experience with Java security
technologies, Single-sign-on and identity management
technologies
• Expertise with web system security concepts, including
multi-factor authentication , authorization (RBAC),
encryption/hashing, SAML (mandatory), LDAP
• Knowledge of cross-site scripting (XSS), session hijacking, SQL
injection, CSRF (Cross-Site Request Forgery), OWASP Top 10, and
other attack vectors
Desirable:
• Knowledge of TCP/IP, HTTP/S and related protocols
• Knowledge of network-based, system-level and application layer
attacks and mitigation methods
• Experience with static code analysis tools including HP Fortify,
FindBugs, PMD
• Knowledge of and experience with agile software development
methodologies
• BS in Computer Science or related field
Keywords: , Washington DC , Senior Java Security Engineer (Job #6259), IT / Software / Systems , Washington, DC
Click
here to apply!
|
Didn't find what you're looking for? Search again!
Other IT / Software / Systems JobsSenior Emulation Developer II Description: We're building a sustainable future.Where does your future begin Senior Emulation Developer II Apply Now Businesses Raytheon Intelligence Space Clearance type None / Not Required Relocation eligible (more...) Company: Raytheon Technologies Corporation Location: Annapolis Posted on: 01/18/2021 Software Defined Radio Engineer Description: Do you have experience with software-defined radio engineering Are you passionate about using innovation and technology to solve technical challenges involving the defense of the US If so, this is the (more...) Company: Johns Hopkins Applied Physics Laboratory (APL) Location: Laurel Posted on: 01/18/2021 Information System Security Officer Description: TCOM L.P., a world-class supplier of Aerostat ISR Systems is seeking an experienced Senior Information Systems Security Officer ISSO who enjoys the challenges of contributing to an emerging cyber security (more...) Company: TCOM, L.P. Location: Columbia Posted on: 01/18/2021 GEICO: Master Software Developer. Net - Duckcreek Description: Job DescriptionGovernment Employees Insurance Company GEICO is building out a highly motivated team of DuckCreek Developers to contribute to the EDGE Service Application. As an associate in this role, (more...) Company: GEICO Location: Annapolis Posted on: 01/18/2021 Software Engineer Description: Linux / Software Engineer Description The primary objectives for this contract position are to join a process-oriented team in developing and deploying Company: Corporate Brokers Location: Annapolis Posted on: 01/18/2021 GEICO: Senior. Net Developer Description: Job DescriptionSenior .NET Software Developer We know you know GEICO. But you should get to know us for great careers, too. And, right now, we're looking for a Senior .NET Software Developer to start (more...) Company: GEICO Location: Annapolis Posted on: 01/18/2021 GEICO: Sr. Ios Mobile Developer Description: Job DescriptionGEICO a proven online and mobile industry leader seeks an experienced Mobile App Developer to join our growing team. With more than 2,000 people working in IT at GEICO, not only are we (more...) Company: GEICO Location: Annapolis Posted on: 01/18/2021 Junior / Mid Java Developer with Security Clearance Description: MUST HAVE: Bachelor's Degree in software engineering or a related technical field Active Department of Defense TS/SCI security clearance with a Full Scope Polygraph Supporting the MD customer Company: Techbay Inc Location: Hanover Posted on: 01/18/2021 Senior Software Engineer Description: Founded 8 years ago, CallTrackingMetrics is a subscription software service with over 100,000 users in 90 different countries. As early creators in the SaaS/UCaaS space, our technology provides marketing (more...) Company: CallTrackingMetrics Location: Severna Park Posted on: 01/18/2021 Penetration Tester Description: BSI Consulting Services has an immediate opening for a Network Penetration Tester-Red Teamer to join our growing consulting company. This regular, full-time position is a great opportunity for someone (more...) Company: BSI Location: Baltimore Posted on: 01/18/2021 |