Java API Security Engineer

Fort Worth, TX company is seeking an Application Security Engineer to join their team for a contract opportunity.

Leverage the latest technology to solve business problems in a collaborative environment at this Fortune 500 transportation giant. Top technical resources are retained on long-term contract engagements. Responsible for leveraging cutting edge technology to solve business problems by participating in all phases of the development process from inception through transition, advocating the agile process and test-driven development, using object-oriented development tools to analyze, model, design, construct and test reusable objects, and making the codebase better.

Contract Duration: 6 Months

Required Skills & Experience

• Bachelor’s degree in Computer Science, Computer Engineering, Technology, Information Systems (CIS/MIS), Engineering or related technical discipline, or equivalent experience/training.
• 2 years of experience working as a frontend or backend software developer.
• API: Experience with HashiCorp Vault APIs, Cloud APIs and API gateway.
• Experience as a developer on a team consisting of five or more software developers.
• Ability to conduct independent research.
• Broad understanding of web service implementation paradigms (REST, SOAP).
• Basic understanding of Cryptography concepts: hashing, signing, symmetric/asymmetric encryption and decryption.
• Basic understanding microservice application architecture, software cohesion and software coupling.
• Comfortable learning new programming languages as needed to conduct code reviews.
• Comfortable with the following tools and technologies: Git, SoapUI, Jenkins, Artifactory, SonarQube, Find Bugs, Docker Experience with deploying and configuring API scanning tools.
• Experience in Identity and access management concepts and technical specifications.
• Experience creating continuous integration pipelines (Cloud bees, Jenkins, Buddy, Urban Code, etc.).
• Experience using integrated development environments (e.g. Visual Studio, Visual Studio Code, Eclipse).
• Experience with Azure Resource Manager (ARM) and scripting tools, including PowerShell, Azure CLI, JavaScript, Shell scripts, Python, or similar languages.
• Experience developing solutions that combine data from APIs, endpoints, and databases.
• Outstanding communication, analytical skills and ability to function in a globally diverse work environment.
• Experience working within an agile team (Scrum, Rally, etc.).
• Familiarity with OWASP and the San’s Top 25.
• API security 1 year.
• 2 years working as a Security Engineer.
• 1-year experience developing automation solutions in Python, Java or PowerShell.
• Ability to analyze complex problems and implement solutions and/or workarounds.
• Familiarity with NIST Special Publications (e.g. 800-171,800-53, CSF).

What You Will Be Doing

• Define specifications and develop code and utilities, modifies existing programs, prepares test data, and prepares functional specifications.
• Establish, participate, and maintain relationships with customers and subject matter experts to remain apprised of direction, architectural and technology trends, risks, and functional/integration issues.
• Analyze, design, develop, code and implement programs in one or more programming languages, for Web and Rich Internet Applications. Create various automated security integration solutions.
• Work with the API Management platforms to develop APIs, Products, Plans, etc. and test them.
• Develop UI and API functionality in languages including, but not limited to JavaScript, TypeScript and python.
• Work with application development personnel and other technical team members to review existing and/or new APIs/web services in support of quality implementations that align with Security policies, procedures, and generally-accepted best practices.
• Work closely with DevOps and cloud infrastructure architects and engineers to design, implement and manage secure, scalable, and reliable cloud infrastructure environments.
• Participate as a technology advisor to collaborate with Agile squads to deliver business benefits with effective and efficient use of technology Platform(s).
• Ensure teams are validating for OWASP and performing industry leading application security practices.
• Perform application program interface security assessments and remediation activities as part of the API security program.
• Leverage the enterprise SSDLC processes and toolset.

You will receive the following benefits:

• Medical Insurance - Four medical plans to choose from for you and your family
• Dental & Orthodontia Benefits
• Vision Benefits
• Health Savings Account (HSA)
• Health and Dependent Care Flexible Spending Accounts
• Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
• Hospital Indemnity Insurance
• 401(k) including match with pre and post-tax options
• Paid Sick Time Leave
• Legal and Identity Protection Plans
• Pre-tax Commuter Benefit
• 529 College Saver Plan

Motion Recruitment Partners is an Equal Opportunity Employer, including Veterans/Disability/Women. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Accommodation will be provided in all parts of the hiring process as required under Motion Recruitment Employment Accommodation policy. Applicants need to make their needs known in advance.