Security Software Engineer III

About The Position

Requirements

• Bachelor’s degree in computer science, Software Engineering, Cybersecurity, or a related field
• Typically requires 5+ years of industry experience
• In-depth ability to: Work across multiple environments including cloud and on-premises, and multiple operating systems
• Use modern web development technologies and techniques (e.g., HTML5, CSS, Java Script, etc.)
• Perform design (e.g., prototype, user interface (UI) design, user experience (UX) design, interaction design)
• Develop solutions for both mobile and desktop
• Collaborate with both business and IT stakeholders and develop constructive working relationships with team and non-team members
• Use judgment to form conclusions that may challenge conventional wisdom
• Consistently apply original thinking to produce new ideas and innovate
• In-depth understanding of: How components throughout the technology “stack” interact
• Front and back-end programming languages/tools
• In-depth knowledge of: Continuous integration / continuous delivery (CI/CD), Agile, and automated deployment best practices
• Databases and database interaction
• Code versioning tools
• Use cases for architectural components and how to apply them
• Applicants must be authorized to work in the U.S. without sponsorship now or in the future.

Nice To Haves

• CISSP(Certified Information Systems Security Professional)
• OSCP(Offensive Security Certified Professional)

Responsibilities

• Secure Software Development Designs and develops software with security best practices in mind
• Implements secure coding standards to prevent vulnerabilities like SQL injection, XSS, and buffer overflows
• Conducts code reviews to ensure compliance with security guidelines
• Threat Modeling & Risk Assessment Identifies potential security threats during the design phase
• Performs risk assessments and recommend mitigation strategies
• Develops threat models for applications and systems
• Vulnerability Management Conducts regular security testing (static/dynamic analysis, penetration testing)
• Identifies, prioritizes, and remediates vulnerabilities in software and infrastructure
• Stays updated on emerging threats and apply patches promptly
• Security Architecture & Design Defines and implements secure architecture for applications and systems
• Ensures proper authentication, authorization, encryption, and data protection mechanisms
• Integrates security controls into CI/CD pipelines
• Incident Response & Forensics Assists in investigating security breaches related to software
• Provides root cause analysis and implement preventive measures
• Collaborates with security operations teams during incidents
• Compliance & Documentation Ensures software meets regulatory and industry compliance standards (e.g., GDPR, HIPAA, PCI-DSS)
• Maintains documentation for security policies, procedures, and system configurations
• Collaboration & Training Works closely with developers, QA, and DevOps teams to embed security in the SDLC
• Provides training and guidance on secure coding practices
• Communicates security risks and solutions to stakeholders
• Performs other duties as assigned

Benefits

• Health, Dental and Vision Insurance
• Generous 401(k) with company match
• Paid Time Off (PTO) with Paid Holidays
• Flexible/Hybrid Work Schedule
• Paid Volunteer Program