ClevelandRecruiter Since 2001
the smart solution for Cleveland jobs

Senior Software Engineer - Application Security - Remote

Company: Zywave
Location: Cleveland
Posted on: August 7, 2022

Job Description:

Brief Description

Why we need you:

We are in the business of building market leading SaaS products that disrupt and change our vertical. Our people, products and services keep us in our position as the innovator and thought leader in our market space. We are dedicated to the continuous improvement of our products and are growing our DevSecOps team to ensure our software is and remains secure in an ever-changing threat landscape.

What You Will do:

When you first arrive, you'll learn about Zywave, our story, our products, our vision, and our process. Once you're up and running, you will work as a member of our DevSecOps team, tasked with enabling Zywave delivery teams with modern DevSecOps patterns and practices in order to increase velocity, security and quality.

In This Role You Will:

  • Take ownership over development and enablement efforts in regards to Application Security as a member of the DevSecOps team
  • Mentor individuals and teams on security best practices
  • Develop, test, document, troubleshoot and debug Zywave's web-based applications to meet the needs of our internal and external customers
  • Contribute, provide input and continuously look for ways to improve all aspects of the product development lifecycle
  • Work with all team members to design, develop, test, deliver, and make Zywave's multi-tenant, SaaS application best in class
  • Serve as a technical resource and make sound decisions based on department standards
  • Make Zywave, Inc. the best in our business while learning, growing and having fun

    You Are The Right Fit If You Can:
    • Work with and guide multiple development teams on application security best practices
    • Provide or facilitate training to engineers on application security best practices and tooling
    • Document and maintain tooling used to report on and remediate application security issues
    • Reasonably context-switch as issues and questions arise from multiple development teams
    • Maintain a high level of industry knowledge in regards to application security threats and remediations
    • Implement automated tooling to perform and report on static and dynamic application security testing (SAST/DAST)

      What you should have:

      To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
      • B.S. in information systems technology, computer science or software engineering, plus 5 or more years of relevant experience, or equivalent combination of education and experience
      • Experience in application vulnerability detection and remediation
      • Demonstrate out-of-the-box thinking and a high level of creativity and problem-solving skills
      • Ability to demonstrate solid development technical concepts
      • Possess excellent written and oral communication skills
      • Possess a high level of organizational, creativity and problem-solving skills
      • Familiar with using various Internet design methodologies, patterns, and architecture
      • Knowledge of application security concepts (OWASP Top 10, Secure Software Development Lifecycle, etc)

        What would be nice to have:

        There are a variety of application technology stacks used across the development teams including .NET/ASP.NET, PHP, Java, Python, React, Angular, Vuejs, etc. The following are some of the more prominent technologies in use.
        • Working knowledge of current .NET development technologies (C#, ASP.NET, .NET Core)
        • Working knowledge of current JavaScript development technologies (Web Components, Vuejs, React)
        • Working knowledge of Microsoft SQL Server, and T-SQL development
        • Working knowledge of containerization
        • Working knowledge of Kubernetes based technologies
        • Working knowledge of CI/CD pipelines such as GitLab CI or Azure DevOps
        • Industry security certifications such as Security+, eJPT, OSCP, eCPPT, CISSP, etc.

          Why work at Zywave?

          Zywave is a cutting-edge SaaS company that has led the digital revolution of the insurance industry over the last 25 years. We continue to make waves by launching new product functionality and integrations to deliver a world-class customer experience. Since 2020, Zywave has acquired seven insurtech companies representing over 1,100 employees globally. With our remote-first environment and core values that encourage employees to grow, belong and transform professionally there are endless opportunities to build new skills and relationships. Why wait to hop aboard the rocket ship? Get onboard now!

Keywords: Zywave, Cleveland , Senior Software Engineer - Application Security - Remote, IT / Software / Systems , Cleveland, Ohio

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest Ohio jobs by following @recnetOH on Twitter!

Cleveland RSS job feeds