Vaco
Senior Software Engineer – Application Security
We are seeking a
Senior Software Engineer
with strong expertise in
application security
to join a forward‑thinking technology team focused on enhancing secure software development practices. This role combines deep technical knowledge with the ability to collaborate across engineering and security teams to ensure robust, secure applications.
Role Overview The ideal candidate will have a
software development background
(Java and JavaScript preferred) and hands‑on experience in
application security , including vulnerability analysis, remediation strategies, and secure coding principles. This position requires strong communication skills to act as a bridge between development and security teams, driving best practices and influencing architecture decisions.
Key Responsibilities
Implement and manage
software security testing techniques
aligned with enterprise standards.
Analyze and assess
open‑source vulnerabilities , including zero‑day threats, and determine impact on applications.
Develop and execute
remediation plans
for identified risks, including code refactoring and dependency updates.
Champion
secure coding practices
and lead security reviews across engineering teams.
Provide technical designs and recommendations to reduce vulnerabilities and improve security posture.
Collaborate with development, architecture, and security teams to integrate security into the software delivery lifecycle.
Stay current on emerging threats, tools, and best practices in application and cloud security.
Desired Skills & Competencies
Strong experience in
application security testing
and
software composition analysis .
Knowledge of
web application security ,
cloud security , and container security.
Familiarity with OWASP, CWE, CVE standards and vulnerability mitigation techniques.
Hands‑on experience with tools such as
Sonatype ,
Qualys ,
SonarQube , and
AWS Inspector .
Proficiency in
Java ,
JavaScript , and
Python .
Working knowledge of
AWS services ,
Docker ,
Terraform , and
DevSecOps practices .
Excellent communication skills and ability to influence technical and non‑technical stakeholders.
Preferred Qualifications
Bachelor’s degree in Computer Science or related field (AWS and security certifications a plus).
Experience collaborating with cross‑functional teams and driving secure development initiatives.
Familiarity with industry‑standard tools for code quality, repository management, and CI/CD pipelines.
Vaco by Highspring values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign‑born residents, and veterans to apply.
EEO Notice Vaco by Highspring is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race (including but not limited to traits historically associated with race such as hair texture and hair style), color, sex (includes pregnancy or related conditions), religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law.
Vaco by Highspring and its parents, affiliates, and subsidiaries are committed to the full inclusion of all qualified individuals. As part of this commitment, Vaco by Highspring and its parents, affiliates, and subsidiaries will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR@vaco.com .
Vaco by Highspring also wants all applicants to know their rights that workplace discrimination is illegal.
#J-18808-Ljbffr
Senior Software Engineer
with strong expertise in
application security
to join a forward‑thinking technology team focused on enhancing secure software development practices. This role combines deep technical knowledge with the ability to collaborate across engineering and security teams to ensure robust, secure applications.
Role Overview The ideal candidate will have a
software development background
(Java and JavaScript preferred) and hands‑on experience in
application security , including vulnerability analysis, remediation strategies, and secure coding principles. This position requires strong communication skills to act as a bridge between development and security teams, driving best practices and influencing architecture decisions.
Key Responsibilities
Implement and manage
software security testing techniques
aligned with enterprise standards.
Analyze and assess
open‑source vulnerabilities , including zero‑day threats, and determine impact on applications.
Develop and execute
remediation plans
for identified risks, including code refactoring and dependency updates.
Champion
secure coding practices
and lead security reviews across engineering teams.
Provide technical designs and recommendations to reduce vulnerabilities and improve security posture.
Collaborate with development, architecture, and security teams to integrate security into the software delivery lifecycle.
Stay current on emerging threats, tools, and best practices in application and cloud security.
Desired Skills & Competencies
Strong experience in
application security testing
and
software composition analysis .
Knowledge of
web application security ,
cloud security , and container security.
Familiarity with OWASP, CWE, CVE standards and vulnerability mitigation techniques.
Hands‑on experience with tools such as
Sonatype ,
Qualys ,
SonarQube , and
AWS Inspector .
Proficiency in
Java ,
JavaScript , and
Python .
Working knowledge of
AWS services ,
Docker ,
Terraform , and
DevSecOps practices .
Excellent communication skills and ability to influence technical and non‑technical stakeholders.
Preferred Qualifications
Bachelor’s degree in Computer Science or related field (AWS and security certifications a plus).
Experience collaborating with cross‑functional teams and driving secure development initiatives.
Familiarity with industry‑standard tools for code quality, repository management, and CI/CD pipelines.
Vaco by Highspring values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign‑born residents, and veterans to apply.
EEO Notice Vaco by Highspring is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race (including but not limited to traits historically associated with race such as hair texture and hair style), color, sex (includes pregnancy or related conditions), religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law.
Vaco by Highspring and its parents, affiliates, and subsidiaries are committed to the full inclusion of all qualified individuals. As part of this commitment, Vaco by Highspring and its parents, affiliates, and subsidiaries will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR@vaco.com .
Vaco by Highspring also wants all applicants to know their rights that workplace discrimination is illegal.
#J-18808-Ljbffr