Application Security Developer

$77,840 - $122,000/Yr

Blue Cross Blue Shield Kansas - Topeka, KS

posted 16 days ago

Full-time - Mid Level
Remote - Topeka, KS

About the position

The Application Security Developer is tasked with securing APIs, developing and maintaining security applications, and identifying and mitigating vulnerabilities in both new and existing applications. This role emphasizes collaboration with software development, identity, and security teams to ensure the delivery of secure products, embedding security principles into the software development lifecycle (SDLC). The developer will also implement security controls and practices across development teams to protect against cyber threats.

Responsibilities

  • Securing APIs by collaborating with development teams to secure both internal and external APIs using Azure API Management.
  • Maintaining existing security solutions and developing new software solutions for the organization.
  • Partnering with development teams to ensure security is integrated into application designs and providing secure design guidance.
  • Conducting code reviews and penetration tests to identify vulnerabilities such as SQL injection, XSS, and CSRF.
  • Promoting and ensuring adherence to secure coding practices by establishing coding standards and offering training.
  • Developing and maintaining threat models to identify potential risks and implementing preventive security measures early in the development cycle.
  • Assisting in incident response, investigating security breaches, and providing recommendations for securing applications against similar threats in the future.
  • Collaborating closely with software developers and DevOps to ensure alignment and execution of security best practices across the entire SDLC.
  • Ensuring that applications meet compliance requirements such as HIPAA and participating in audits as necessary.
  • Staying up to date with the latest security trends, threats, and tools to proactively defend against evolving cyber risks.

Requirements

  • High school diploma or equivalent required; Bachelor's Degree or completion of a Computer Science Program from a Technical Trade School preferred.
  • Minimum of two years of experience in application development with thorough knowledge of at least one programming language.
  • Experience with C# .NET, Azure Isolated Functions and App Services, Blazor, and .NET 6 & 8 is a bonus.
  • Extensive experience with RESTful APIs, Swagger, and Open API docs.
  • Deep understanding of web application security vulnerabilities and their remediation (e.g., SQL injection, XSS, CSRF).
  • Strong knowledge of secure coding practices in languages such as Java, C#, JavaScript, Vue, React.
  • Knowledge of Authorization and Authentication concepts such as SAML, OIDC, OAuth 2.0, and PKCE.
  • Experience with securing APIs and understanding of Zero Trust security models and Identity & Access Management (IAM).
  • Experience with OKTA and familiarity with cloud security (AWS, Azure, or GCP).

Nice-to-haves

  • Experience with Azure API Management product.
  • Knowledge of security design principles and practices.

Benefits

  • Incentive pay program (EPIP)
  • Health/Vision/Dental insurance
  • 6 weeks paid parental leave for new mothers and fathers
  • Fertility/Adoption assistance
  • 2 weeks paid caregiver leave
  • 5% 401(k) plan matching
  • Tuition reimbursement
  • Health & fitness benefits, discounts and resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service