
Security Engineer
TopQuadrant
full-time
Posted on:
Location Type: Remote
Location: Anywhere in the World
Visit company websiteExplore more
Tech Stack
About the role
- Design and implement security solutions for Java-based applications
- Secure applications, microservices, APIs, and databases against vulnerabilities
- Perform static (SAST) and dynamic (DAST) security testing
- Perform quarterly Vulnerability Scans and annual Penetration Test
- Manage application dependencies and vulnerabilities within established SLAs
- Implement and support authentication (OAuth, SAML), authorization (RBAC), and encryption
- Integrate security into the CI/CD pipeline to automate security testing and compliance checks
- Monitor, analyze, and respond to security incidents and security questionnaires
- Manage Drata for security monitoring, compliance automation, and audit readiness
- Ensure compliance with data protection regulations (GDPR, CCPA, HIPAA) and security frameworks (ISO 27001, NIST, SOC 2)
- Collaborate with development teams to enforce secure coding best practices via code reviews
- Work with Spring Security to enforce access controls and secure distributed applications
- Maintain and publish TopQuadrant’s Authorized Software List
- Stay updated on the latest security vulnerabilities affecting Java and Spring ecosystems
Requirements
- Bachelor's degree in Computer Science, Cybersecurity, or a related field
- Strong Java development experience, with proficiency in Spring Boot and Spring Security
- Experience with secure coding practices (OWASP Top 10, CWE, etc.)
- Hands-on experience with security tools such as SonarQube and Snyk
- Knowledge of encryption techniques (AES, RSA), authentication protocols (OAuth, OpenID Connect), and API security
- Experience with cloud security best practices (AWS, Azure, or GCP)
- Certifications such as CISSP, CEH, CSSLP, or AWS Security are a plus
Benefits
- Flexible work arrangements
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
JavaSpring BootSpring SecuritySASTDASTOAuthRBACencryptionsecure coding practicescloud security
Certifications
CISSPCEHCSSLPAWS Security