It's fun to work in a company where people truly BELIEVE in what they're doing!
We're committed to bringing passion and customer focus to the business.
Celink is a leading servicer of reverse mortgages. We own and operate a proprietary servicing system. Our servicing system and related applications are integral part of company success.
We are looking for an experienced and passionate Software Security Engineer to join our team. As a Software Security Engineer at our company, you will analyze our software designs and implementations from a security perspective٫ to identify and resolve security issues. Your duties will include closely working with the development teams to perform the appropriate security analysis٫ defenses and countermeasures at each phase of the software development lifecycle٫ to result in secure, robust and reliable software. In addition, there will be aspects of this job which will involve installing, configuring, and maintaining security solutions and reporting on software code scan findings and coordinating with the development teams to remediate such findings.
Responsibilities
- Analyze requirements, conduct threat models, code reviews and provide objective advice on security requirements to help mitigate security vulnerabilities
- Performs other duties and projects as assigned
Minimum Qualifications
Education
- Bachelor’s degree in computer science, information security
- Combination of education and experience may be considered.
Experience/Training
- 5+ years of experience in Software Security Engineer with emphasis on enterprise distributed software architectures across multiple networks.
- 5+ years of experience as a software developer.
- Excellent knowledge of web related technologies (Web applications٫ Web Services and Microservices Architectures) and of network/web related protocols
- Deep understanding of secure software development principles such as OWASP Top 10 (Web, API and LLM), SCA/Static/Dynamic scanning, etc.
- Detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorization, applied cryptography, security vulnerabilities and remediation
- Significant software development experience in languages such as: React, Angular, Node.js٫ Java٫ Javascript or .NET
- Experience with threat modeling web, API, database applications.
- Experience with AWS including serverless, containers, APIs, AWS security hub and other functionality.
Professional Certification/License
N/A
Skills and Abilities
- Able to articulate, plan, implement and manage software security best practices
- Demonstrated strong critical thinking, problem-solving and analytical ability
- Excellent communication skills (in English), both verbal and written, to articulate details in a clear and professional manner
Working Conditions
Work is performed in a professional office environment with no unusual hazards. There may be some travel with overnight stays. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.
Physical Requirements
While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand; walk; use hands to finger, handle or feel; and reach with hands and arms.
Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
EEO Statement
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
- Perform designs for new software solutions to help mitigate security vulnerabilities
- Contribute at all levels of the architecture, including DevOps and CI/CD operations.
- Prepare and maintain technical documentation
- Provide technical leadership, advice and consulting to development teams on secure coding practices, new tools, techniques and best practices of the industry
- Collaborates with users to discuss alerts, security threats and violations
- Conduct security testing and report its results
- Install, configure, and update security technologies and software related to software development lifecycle.
- Develop or integrate security tools and automation scripts to improve efficiency and effectiveness
- Develop and deliver security awareness training programs for developers and other stakeholders
- Assist with security audits and certifications
- Research and evaluate new security technologies and tools
Job Type: Full-time
Pay: $90,000.00 - $115,000.00 per year
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Flexible spending account
- Health insurance
- Paid time off
- Vision insurance
Schedule:
- 8 hour shift
- Day shift
- Monday to Friday
Application Question(s):
- HOW MANY YEARS OF EXP Significant software development experience in languages such as: React, Angular, Node.js٫ Java٫ Javascript or .NET
- MUST HAVE •
Experience with AWS including serverless, containers, APIs, AWS security hub and other functionality.
- MUSAT HAVE-5+ years of experience as a software developer.
Excellent knowledge of web related technologies (Web applications٫ Web Services and Microservices Architectures) and of network/web related protocols
Work Location: Remote
