WashingtonRecruiter Since 2001
the smart solution for Washington DC jobs

Senior Java Security Engineer (Job #6259)

Location: Washington
Posted on: January 14, 2021

Job Description:

Work with product teams and product owners to understand and formulate security requirements for large internet-facing, enterprise software applications.


• Serve as SME on application security and collaborate with software development teams to provide technical guidance to implement appropriate security solutions, mechanisms and/or controls that address business requirements.


• Consult on technical security issues/incidents as needed.


• Initiate and conduct manual/automated code reviews (via risk assessments)


• Act as a liaison between software engineers and Information System Security Office (ISSO)


• Conduct and coordinate vulnerability assessments and code-reviews of software application under development


• Conduct risk assessment planning sessions and results read-outs


• Experience writing automated unit tests.


• Experience in performing code reviews.


• Participate in Agile SCRUM activities such as daily standup, sprint planning and retrospective meetings


• Monitor the marketplace for application security related tools, conduct tool analysis and provide recommendations.



Requirements


Must have:


• 7+ years of Java/Enterprise Java development experience


• Expertise with application server technologies, Spring Framework, Spring Security, Web Services (JAX-RS/JAX-WS), REST and Hibernate


• In-depth knowledge of and experience with Java security technologies, Single-sign-on and identity management technologies


• Expertise with web system security concepts, including multi-factor authentication , authorization (RBAC), encryption/hashing, SAML (mandatory), LDAP


• Knowledge of cross-site scripting (XSS), session hijacking, SQL injection, CSRF (Cross-Site Request Forgery), OWASP Top 10, and other attack vectors


Desirable:


• Knowledge of TCP/IP, HTTP/S and related protocols


• Knowledge of network-based, system-level and application layer attacks and mitigation methods


• Experience with static code analysis tools including HP Fortify, FindBugs, PMD


• Knowledge of and experience with agile software development methodologies


• BS in Computer Science or related field

Keywords: , Washington DC , Senior Java Security Engineer (Job #6259), IT / Software / Systems , Washington, DC

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other IT / Software / Systems Jobs


Senior Emulation Developer II
Description: We're building a sustainable future.Where does your future begin Senior Emulation Developer II Apply Now Businesses Raytheon Intelligence Space Clearance type None / Not Required Relocation eligible (more...)
Company: Raytheon Technologies Corporation
Location: Annapolis
Posted on: 01/18/2021

Software Defined Radio Engineer
Description: Do you have experience with software-defined radio engineering Are you passionate about using innovation and technology to solve technical challenges involving the defense of the US If so, this is the (more...)
Company: Johns Hopkins Applied Physics Laboratory (APL)
Location: Laurel
Posted on: 01/18/2021

Information System Security Officer
Description: TCOM L.P., a world-class supplier of Aerostat ISR Systems is seeking an experienced Senior Information Systems Security Officer ISSO who enjoys the challenges of contributing to an emerging cyber security (more...)
Company: TCOM, L.P.
Location: Columbia
Posted on: 01/18/2021


GEICO: Master Software Developer. Net - Duckcreek
Description: Job DescriptionGovernment Employees Insurance Company GEICO is building out a highly motivated team of DuckCreek Developers to contribute to the EDGE Service Application. As an associate in this role, (more...)
Company: GEICO
Location: Annapolis
Posted on: 01/18/2021

Software Engineer
Description: Linux / Software Engineer Description The primary objectives for this contract position are to join a process-oriented team in developing and deploying
Company: Corporate Brokers
Location: Annapolis
Posted on: 01/18/2021

GEICO: Senior. Net Developer
Description: Job DescriptionSenior .NET Software Developer We know you know GEICO. But you should get to know us for great careers, too. And, right now, we're looking for a Senior .NET Software Developer to start (more...)
Company: GEICO
Location: Annapolis
Posted on: 01/18/2021

GEICO: Sr. Ios Mobile Developer
Description: Job DescriptionGEICO a proven online and mobile industry leader seeks an experienced Mobile App Developer to join our growing team. With more than 2,000 people working in IT at GEICO, not only are we (more...)
Company: GEICO
Location: Annapolis
Posted on: 01/18/2021

Junior / Mid Java Developer with Security Clearance
Description: MUST HAVE: Bachelor's Degree in software engineering or a related technical field Active Department of Defense TS/SCI security clearance with a Full Scope Polygraph Supporting the MD customer
Company: Techbay Inc
Location: Hanover
Posted on: 01/18/2021

Senior Software Engineer
Description: Founded 8 years ago, CallTrackingMetrics is a subscription software service with over 100,000 users in 90 different countries. As early creators in the SaaS/UCaaS space, our technology provides marketing (more...)
Company: CallTrackingMetrics
Location: Severna Park
Posted on: 01/18/2021

Penetration Tester
Description: BSI Consulting Services has an immediate opening for a Network Penetration Tester-Red Teamer to join our growing consulting company. This regular, full-time position is a great opportunity for someone (more...)
Company: BSI
Location: Baltimore
Posted on: 01/18/2021

Log In or Create An Account