Sr Software Lead Engineer
Accela
·
Posted:
August 30, 2023
·
Onsite
About the position
As a Senior Lead Security Engineer at Accela, you will be responsible for ensuring the security and integrity of the company's software applications. Your role will involve identifying and addressing potential security vulnerabilities, implementing secure coding practices, and leading a new Engineering team in adopting best practices for application security. Additionally, you will be responsible for ensuring compliance with relevant security standards and regulations. This position requires expertise in application security, secure coding practices, vulnerability assessment, and penetration testing, as well as strong leadership and communication skills.
Responsibilities
- Lead a new Security focused team and refactor/improve core security applications
- Evaluate web application security, including identifying and mitigating OWASP Top Ten vulnerabilities
- Define requirements and lead analysis for application security, including secure coding practices, vulnerability assessment, and penetration testing
- Develop and apply remediations and mitigations for vulnerabilities identified from security assessment tools
- Lead the development of the product and drive the team through Agile methodologies
- Perform code reviews, write unit tests, and implement software best practices
- Collaborate with QA engineers to develop testing protocols and correct defects
- Build and maintain working relationships with peers across organizations
- Contribute to the full software development lifecycle from ideas to implementation, release, and deployment
- Evaluate emerging software technologies and third-party solutions
- Possess a Bachelor's degree or equivalent experience in Computer Science, Information Security, or a related field
- Have at least 8+ years of professional development experience as a software engineer
- Prior leadership or principal engineer experience
- Proven experience in application security, including secure coding practices, vulnerability assessment, and penetration testing
- Expert knowledge and understanding of secure software development principles and methodologies
- Familiarity with relevant government regulations and security standards
- Strong experience with programming languages commonly used in software development (e.g., Java, C#, Python) and associated security vulnerabilities and controls
- Experience with Java Unit Testing Frameworks and Tools
- Experience working in continuous integration and continuous deployment systems
- Knowledge of build systems and software integration systems
- Analytical thinking and problem-solving skills
- Ability to work independently and as a team player
- Experience and ability to coach, mentor, and train junior team members
- Ability to demonstrate technical leadership and decision making
- Experience and understanding of software source control systems, preferably Git
- Good understanding and working experience in cloud computing platforms such as Azure Cloud
- Strong communication skills, both verbal and written, with the ability to convey complex security concepts to technical and non-technical stakeholders
- Desired qualifications include relevant certifications (e.g., CISSP, CEH, OSCP), experience with Docker/containerization, experience with microservices architecture/SOA, and experience with enterprise SAAS systems.
Requirements
- Bachelor's degree or equivalent experience in Computer Science, Information Security, or a related field and at least 8+ years of professional development experience as a software engineer.
- Prior Leadership or Principal Engineer experience
- Proven experience in application security, including secure coding practices, vulnerability assessment, and penetration testing.
- Expert knowledge and understanding of secure software development principles and methodologies.
- Familiarity with relevant government regulations and security standards (e.g., NIST, FIPS) in the context of software development.
- 5 years of experience in the following programming languages commonly used in software development (e.g., Java, C#, Python) and associated security vulnerabilities and controls.
- Strong experience with Java Unit Testing Frameworks and Tools such as JUnit, TestNG, Mockito etc.
- Experience working in continuous integration and continuous deployment systems (CI/CD).
- Knowledge of build systems and software integration systems.
- Analytical thinking - able to simplify complex problems, processes or projects into component parts explore and evaluate them systematically.
- Independent thinker with creative, resourceful, and proactive problem-solving skills.
- Ability to work both independently and as a team player.
- Experience and ability to coach, mentor and train junior team members.
- Ability to demonstrate technical leadership and decision making.
- Experience and understanding of software source control systems, preferably Git.
- Good understanding & working experience in cloud computing platforms such as Azure Cloud.
- Strong communication skills, both verbal and written, with the ability to convey complex security concepts to technical and non-technical stakeholders.
- Relevant certifications (e.g., CISSP, CEH, OSCP) are a plus
- Docker/containerization
- Experience working with microservices architecture/SOA
- Enterprise SAAS systems
Benefits
- 25 vacation days
- Ireland Standard Holidays
- Pension Contribution
- Supplemental Healthcare Package