Java Developer- Vulnerability Remediation Specialist (Public Sector)
Arlington, VA, United States
Applications have closed
Publicis Groupe
Company Description
Publicis Sapient is a digital transformation partner helping established organizations get to their future, digitally-enabled state, both in the way they work and the way they serve their customers. We help unlock value through a start-up mindset and modern methods, fusing strategy, consulting, and customer experience with agile engineering and problem-solving creativity. United by our core values and our purpose of helping people thrive in the brave pursuit of next, our 20,000+ people in 53 offices around the world combine experience across technology, data sciences, consulting, and customer obsession to accelerate our clients’ businesses through designing the products and services their customers truly value.
Please check us out at https://www.publicissapient.com/ for more!.
Job Description
Publicis Sapient is looking for a Senior JAVA Vulnerability Remediation Specialist to work as a software developer and design SME in the field of application security. You'll be an active member of several Java development teams, with the primary responsibility of scanning and remediating cyber security findings in JAVA code using various approved security tools. Responsibilities includes implementing parts of the system architecture using defined best practices, supporting ongoing software security initiatives, working with clients and stakeholders to understand requirements and how they will be implemented, coding solutions, performing unit testing, conducting code reviews and design reviews, learning new technologies, and becoming an expert in one or many parts of the system.
Responsibilities:
- Work with the project manager/and or team lead in the estimation effort for projects and work to identify and manage risk
- Providing application security implementation and design consultation for development projects
- Conduct hands-on development activities using Agile methodology for JAVA-based systems
- Conduct JAVA application development/coding activities including security design and code reviews
- Research security trends and best practices for JAVA and JavaScript languages
- Document technical design as well as other technical documents based on the project’s compliance and security requirements
Qualifications
Requirements and Experience Guidelines:
- 4+ yrs in systems integration and development, package implementation, and/or interactive design
- 3 yrs design and architecture experience with major JAVA technologies, such as Spring (including Spring Boot, Spring Cloud, and Spring Data) and Hibernate frameworks
- US citizen OR Permanent Resident (GC)
- Working experience with web services and APIs (REST, SOAP)
- Exp in design, development, and production support for projects using JAVA/Spring-based Microservices Architecture
- Ability to communicate about cyber security issues both verbally and in writing
- Exp creating Technical Design Documents
- Exp working with Security Technical Implementation Guides (STIG) and application security checklists
- Solid understanding of OWASP Top 10 vulnerabilities such as SQL Injection, XSS, XML Injection, Path Traversal, etc.
- Exp with IAST, SCA, and SAST products
- Solid understanding of all parts of Software Engineering (e.g. Requirements, Design, Implementation, Testing) and the Software Development Life Cycle (SDLC)
- Exp with SQL and data structure design
- Excellent OOPs, data structure, and algorithm knowledge
- Working exp with data platforms (relational and/or NoSQL) and messaging technologies
- Proven leadership skills to independently manage a track of work with 2-4 people, during various phases of the project lifecycle
EDUCATION
- Bachelor’s degree in computer science, engineering, or a related field
Additional Information
Pay Range: $75,000 - $146,000
The range shown represents a grouping of relevant ranges currently in use at Publicis Sapient. The actual range for this position may differ, depending on location and the specific skillset required for the work itself.
As part of our dedication to an inclusive and diverse workforce, Publicis Sapient is committed to Equal Employment Opportunity without regard for race, color, national origin, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity, or religion. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at hiring@publicissapient.com or you may call us at +1-617-621-0200.
Tags: Agile APIs Application security Cloud Compliance Computer Science IAST Java JavaScript Microservices NoSQL OWASP SAST SDLC SQL SQL injection Strategy Vulnerabilities XML XSS
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs