Developer - Java
4 weeks ago
Story Behind the Need:
• Client’s Information Security & Control (IS&C)’s Vulnerability Management Services – Application Security is responsible to improve security practices and, through that, to find and preferably prevent security issues within applications.
• The Application Security team has global accountability and is highly supportive of the Bank’s business, enabling execution of the Bank’s strategies, operations and services, while ensuring that appropriate application security practices are adhered to.
• This function provides core competency in proactively detecting application code flaws and/or bugs while working with the appropriate teams in instituting appropriate controls to mitigate risks, specifically as it pertains to web application vulnerabilities and threats.
• This candidate will be expected to conduct assessments and utilize the SAS too to scan codes before it progresses into production. This includes thorough analysis of findings and collaboration with the development team to address any identified issues before deployment.
• The successful candidate will have the opportunity to work within client. We are technology partners who help the business transform how our employees around the world work. You will get to work with and learn from diverse industry leaders, who have hailed from top technology.
Typical Day in Role: • The incumbent is responsible for supporting the Senior Manager, Director, VP, SVP and CISO in achieving IS&C Strategic goals through various processes, including:
o Build and support within the lower environments and supporting the deployment of applications and users into production.
o Application production support.
o Develop and/or enhance strategies and processes to manage web application security vulnerabilities and threats for both transactional and marketing/informational web sites.
o Develop and/or enhance communication model to manage web application vulnerability remediation with the development and infrastructure support teams in support of risk management practices on behalf of the business owner.
o Develop and/or enhance reporting to development teams and all levels of management in order to provide proper tracking and measurement of remediation relative to established objectives
o Recommend, design, assess, implement, deploy and maintain application security controls required to protect client and its customers.
o Responsible for developing and/or enhancing the strategies and processes to identify, analyze, and communicate application vulnerabilities as per the CISO Directive and published communication process flows.
o Responsible for adherence to an established process flow that ensures development support teams, infrastructure support teams, and business risk owners implement control measures that effectively mitigate or eliminate the identified risk.
o Responsible for timely and accurate reporting of all findings to the development teams, appropriate levels of management and the business risk owner
• 10+ years of experience with Java application development and more than one of the following languages: Java/JavaScript (preferred), Swift, Kotlin, React, Angular, Ruby, Python C#.
• 3+ years of experience building security applications.
• 3+ years of experience with multi-tier Web Applications, web services, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such as OWASP (Open Web Application Security Project) and CVE (Common Vulnerabilities and Exposures).
• 3+ years of experience performing source code reviews manually and experience with any Static Application Security Testing (SAST) tools.
• 3+ years of experience and knowledge of technologies and processes such as Agile Software Delivery, Continuous Integration and Continuous Delivery, DevOps, GitOps, Cloud Native Technologies including Docker Containers, Kubernetes, and Deployment Automation & Orchestration.
• Experience in an Agile development workshop and leveraging tools such as Confluence, JIRA, Bit Bucket, Gradle, Maven and Jenkins.
• Experience on reporting tools such as Cognos, JasperReport and Microsoft Power BI.
• Excellent written, presentation, and verbal communication skills to be able to work well with technical peers and business stakeholders at different levels within the organization.
• Strong decision making, forward thinking and creative problem-solving skills to anticipate and respond quickly to technological/market influences.
• Ability to work as part of a team, as well as work independently or with minimal direction.
• Candidate who is an expert in the security world and can hit the ground running with a minimal learning curve. Preferably, someone who has team lead experience and can communicate incidents and progress to the executive leadership.
Education:• University degree or college diploma and a minimum of four (4) years equivalent security industry-related experience required.
Candidate Review & Selection: • 1st round video interview – Panel with Senior Manager and Technical Team (45 minutes):
o Team will discuss background and technical skills (development and application security experience)
• 2nd round video interview – Senior Manager and Director (45 minutes):
o Assess team fit/soft skills and technical skills
Job Details
11919
Contract
6 months
Scarborough
#J-18808-Ljbffr-
Senior Developer
4 weeks ago
Scarborough, North Yorkshire, United Kingdom ProViso Staffing Full timeClient’s Information Security & Control (IS&C)’s Vulnerability Management Services – Application Security is responsible to improve security practices and, through that, to find and preferably prevent security issues within applications. • This function provides core competency in proactively detecting application code flaws and/or bugs while...
-
Java Technical Lead
4 weeks ago
York, North Yorkshire, United Kingdom SearchData Full timeSearchDATA is currently partnered with a retail firm who are recruiting for a Java Technical Lead, this is a critical role in the IT department, providing technical leadership to an agile cross-functional software development team comprising software engineers, QA and business analysts. It is predominantly remote with travel to York office. You will be...
-
Software Architect
4 weeks ago
York, North Yorkshire, United Kingdom Cordius Ltd Full timeCordius are currently hiring for a fully remote consultancy company that work with customers across the UK helping private and public sector organisations modernise and transform their teams and technology via cloud, data, automation architecture. They are looking for application architects / Senior consultants who have experience in cloud transformations to...
-
Software Engineer
4 weeks ago
Scarborough, North Yorkshire, United Kingdom ProViso Staffing Full timeStory Behind the Need: • The GIAM IAM Engineering team oversees the management of staff authentication processes, and provides IAM platform system set up and support. Currently, the team is involved in transitioning towards a Cloud-based Multi-Factor Authentication system. The IAM Software Engineer will be supporting the migration from the legacy...
-
Software Engineer with DevOps training
4 weeks ago
York, North Yorkshire, United Kingdom Anaplan Full timeWe are currently searching for a Software Engineer to join our team! The Feature teams work within the Core system of Anaplan. The main skillset is Java, along with supportive technologies like maven, git, jenkins. An understanding of how code can be written with a focus on efficiency and scalability is nice to have, and in all work, there is a strong...
-
Graduate Developer
2 days ago
West Yorkshire, United Kingdom Chroma Recruitment Ltd Full timeGraduate Developer Chroma are currently recruiting for a Graduate Developer to join a unique digital agency based in Leeds. This is a permanent position role, and you will be meeting up in the office 4 days a week throughout probation. The company themselves are a UK leader in their field, specialising in live sports content creation. A digital powerhouse...
-
Graduate Developer
2 days ago
West Yorkshire, United Kingdom Chroma Recruitment Ltd Full timeGraduate Developer Chroma are currently recruiting for a Graduate Developer to join a unique digital agency based in Leeds. This is a permanent position role, and you will be meeting up in the office 4 days a week throughout probation. The company themselves are a UK leader in their field, specialising in live sports content creation. A digital powerhouse...
-
Software Engineer
4 weeks ago
York, North Yorkshire, United Kingdom Anaplan Full timeWe are currently searching for a Software Engineer to join our team! The Feature teams work within the Core system of Anaplan. The main skillset is Java, along with supportive technologies like maven, git, jenkins. An understanding of how code can be written with a focus on efficiency and scalability is nice to have, and in all work, there is a strong...
-
Principal Software Engineer, Data
4 weeks ago
York, North Yorkshire, United Kingdom Anaplan Full timeAnaplan are looking for a motivated PRINCIPAL SOFTWARE ENGINEER to work in an autonomous Agile team with an emphasis on collaboration, innovation, and honesty. We’re serious about attracting the best…we have hugely complex technical problems to solve, and offer unrestricted progression, a relaxed working environment, superb packages and much more. This...
-
Principal Software Engineer
4 weeks ago
York, North Yorkshire, United Kingdom Anaplan Full timeAnaplan are looking for a motivated PRINCIPAL SOFTWARE ENGINEER to work in an autonomous Agile team with an emphasis on collaboration, innovation, and honesty. We’re serious about attracting the best…we have hugely complex technical problems to solve, and offer unrestricted progression, a relaxed working environment, superb packages and much more....
-
Applications Architect
4 weeks ago
York, North Yorkshire, United Kingdom Cordius Ltd Full timeCordius are currently hiring for a fully remote consultancy company that work with customers across the UK helping private and public sector organisations modernise and transform their teams and technology via cloud, data, automation architecture. They are looking for application architects / Senior consultants who have experience in cloud transformations to...
-
Associate Software Engineer
4 weeks ago
Harrogate, North Yorkshire, United Kingdom Certinia Full timeHARROGATE / HYBRID WHO WE ARE Certinia (formerly FinancialForce) delivers a Services-as-a-Business platform that powers and connects all aspects of services operations, from services estimation and delivery to customer success management and financial planning and accounting. The company's Professional Services Automation (PSA), Customer Success, and...
-
Solutions Architect
4 weeks ago
York, North Yorkshire, United Kingdom Candour Solutions Full timeSolution Architect – York, Leeds (hybrid remote 1-2 days in office)#TeamCandour have been retained to source an accomplished Solutions Architect on behalf of their market leading client to work out of their fabulous central York based office. The work set up is hybrid remote and they would only want to see you once or twice a week maximum making it...
-
Modelling Analyst
3 weeks ago
York, North Yorkshire, United Kingdom Anaplan Full timeAt Anaplan we have an enormously powerful platform that enables users to collaboratively build models of their businesses. From budgeting and forecasting to supply planning and strategic policy management, the range of problems to which the Anaplan platform provides a connected planning solution is large and always growing. As you might expect, at the...
-
Software Engineering Team Lead
4 weeks ago
Chorley, Lancashire, North West, United Kingdom Erin Associates Full timeSoftware Engineering Team Lead Chorley (hybrid)Submit your CV and any additional required information after you have read this description by clicking on the application button.Software Engineering Team Lead Agile, Java, Hibernate, Spring, Junit, HTML, CSSThis well-established software solutions provider is looking to add a Software Engineering Team Lead to...
-
Service Modeller
7 days ago
Sheffield, South Yorkshire, United Kingdom Experis Full timeAPI Service ModelerIs this the role you are looking for If so read on for more details, and make sure to apply today. 12 month Contract Sheffield 2 days a week £530 via Umbrella Would you like to join a global leader in consulting, technology services and digital transformation?Our client is at the forefront of innovation to address the entire breadth of...
-
AI Engineer, NLP, LLMs
4 weeks ago
West Yorkshire, United Kingdom NLP PEOPLE Full timePrincipal AI Engineer, NLP, Large Language Models, Biotech West London – office based 4 days per week To £82.5k + BUPA + high Bonus Were looking for an MSc/PhD level AI Engineer / AI Scientist. An Artificial Intelligence / Machine Learning expert to contribute to a transformational change in the way drug discovery is done with a high growth,...
-
IT Engineer
4 days ago
North West Leicestershire, Leicestershire, United Kingdom Proactive Global Full timeIT Engineer (Logistics Operating Engineer) The Logistic Operations Engineer (LOE) will make sure a company's logistic operations, such as manufacturing and shipping, work properly and meet customers' and other specifications, which are measured through key performance indicators. An Operations Engineer handles all matters to the logistic operations and its...
-
IT Engineer
3 weeks ago
North West Leicestershire, Leicestershire, United Kingdom Proactive Global Full timeIT Engineer (Logistics Operating Engineer) The Logistic Operations Engineer (LOE) will make sure a company's logistic operations, such as manufacturing and shipping, work properly and meet customers' and other specifications, which are measured through key performance indicators. An Operations Engineer handles all matters to the logistic operations and its...
