RaleighRecruiter Since 2001
the smart solution for Raleigh jobs

Senior Software Engineer - Application Security - Remote

Company: Zywave
Location: Raleigh
Posted on: May 15, 2022

Job Description:

Brief Description
Why we need you:
We are in the business of building market leading SaaS products that disrupt and change our vertical. Our people, products and services keep us in our position as the innovator and thought leader in our market space. We are dedicated to the continuous improvement of our products and are growing our DevSecOps team to ensure our software is and remains secure in an ever-changing threat landscape.
What You Will do:
When you first arrive, you'll learn about Zywave, our story, our products, our vision, and our process. Once you're up and running, you will work as a member of our DevSecOps team, tasked with enabling Zywave delivery teams with modern DevSecOps patterns and practices in order to increase velocity, security and quality.
In This Role You Will:
Take ownership over development and enablement efforts in regards to Application Security as a member of the DevSecOps team
Mentor individuals and teams on security best practices
Develop, test, document, troubleshoot and debug Zywave's web-based applications to meet the needs of our internal and external customers
Contribute, provide input and continuously look for ways to improve all aspects of the product development lifecycle
Work with all team members to design, develop, test, deliver, and make Zywave's multi-tenant, SaaS application best in class
Serve as a technical resource and make sound decisions based on department standards
Make Zywave, Inc. the best in our business while learning, growing and having fun

You Are The Right Fit If You Can:
Work with and guide multiple development teams on application security best practices
Provide or facilitate training to engineers on application security best practices and tooling
Document and maintain tooling used to report on and remediate application security issues
Reasonably context-switch as issues and questions arise from multiple development teams
Maintain a high level of industry knowledge in regards to application security threats and remediations
Implement automated tooling to perform and report on static and dynamic application security testing (SAST/DAST)

What you should have:
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
B.S. in information systems technology, computer science or software engineering, plus 5 or more years of relevant experience, or equivalent combination of education and experience
Experience in application vulnerability detection and remediation
Demonstrate out-of-the-box thinking and a high level of creativity and problem-solving skills
Ability to demonstrate solid development technical concepts
Possess excellent written and oral communication skills
Possess a high level of organizational, creativity and problem-solving skills
Familiar with using various Internet design methodologies, patterns, and architecture
Knowledge of application security concepts (OWASP Top 10, Secure Software Development Lifecycle, etc)

What would be nice to have:
There are a variety of application technology stacks used across the development teams including .NET/ASP.NET, PHP, Java, Python, React, Angular, Vuejs, etc. The following are some of the more prominent technologies in use.
Working knowledge of current .NET development technologies (C#, ASP.NET, .NET Core)
Working knowledge of current JavaScript development technologies (Web Components, Vuejs, React)
Working knowledge of Microsoft SQL Server, and T-SQL development
Working knowledge of containerization
Working knowledge of Kubernetes based technologies
Working knowledge of CI/CD pipelines such as GitLab CI or Azure DevOps
Industry security certifications such as Security+, eJPT, OSCP, eCPPT, CISSP, etc.

Zywave is a cutting-edge, fast-growing SaaS company leading the digital revolution of the insurance industry at every stage of the client lifecycle. Headquartered in Milwaukee, WI with employees across the globe, Zywave is consistently voted by employees as a Top Workplace. Our employees enjoy a remote first, highly flexible work environment with endless opportunity for internal advancement!

Keywords: Zywave, Raleigh , Senior Software Engineer - Application Security - Remote, IT / Software / Systems , Raleigh, North Carolina

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest North Carolina jobs by following @recnetNC on Twitter!

Raleigh RSS job feeds