Application Security Developer (C# or Java)

A financial firm is looking for an Application Security Developer (C# or Java) to join their team.

Responsibilities:

• Design, develop, and maintain enterprise-grade applications using .NET, ASP.Net, Windows Services, and SQL Server
• Participate, contribute, assimilate, and provide opinion on increasing the security focus on all stages of SDLC during any changes, enhancements and design being done to the applications
• Optimize code for performance, scalability, and security
• Identify, analyze, and resolve security vulnerabilities in Windows applications, Windows servers, and web applications; Apply security best practices in development and deployment processes
• Work proactively, independently and with global teams to address project requirements
• Integrate with existing systems and APIs while ensuring adherence to secure coding standards and best practices
• Code and Test cases reviews and ensure code developed meets the requirements

Qualifications:

• 5 years of IT experience of which 3 years should be in Microsoft application development (web/backend services/desktop clients)
• Excellent knowledge of Windows application architecture, server configurations, web server configuration
• Hands on full-stack experience with Web Apps built on Asp.NET, .NET Core, MVC
• Experience in a diverse set of web app development tools and technologies such as JavaScript , Typescript, HTML5, Bootstrap, Angular
• Excellent database skills required; SQL Server/DB2 preferred
• Excellent knowledge of DevSecOps process and remediating OWASP vulnerabilities
• Working knowledge and experience on scripting languages like Python or Erlang is plus
• Knowledge of Data Structures and Algorithms
• Hands-on working experience with DAST/SAST tools like Mend/SonarQube etc is a plus
• Knowledge/experience on CI/CD pipeline using Jenkins/Bamboo with Bitbucket/Git

Certifications:

• Professional certifications on Cloud – AWS is a plus
• Any Security related certifications is a plus