We are seeking a Senior Full-Stack Engineer with deep security expertise to embed within a Scrum team and deliver secure software through hands-on engineering.
This is a builder / fixer role (not an analyst-only role).
You will work directly in Angular 19 / Type Script front-end code and.
NET (C#) back-end code to remediate vulnerabilities across legacy and modern applications, and you will also help own security in our cloud and infrastructure footprint.
You will ensure security scanning and testing are reliable, integrated into CI/CD, and provide actionable findings.
Our primary tools include Snyk, Invicti, Mend, and penetration testing.
This role will focus on our award-winning web portal and other customer facing web-based products, including applications targeted at mobile devices in addition to traditional software applications.
Required Qualifications Senior-level experience as a Full-Stack Engineer delivering production enterprise and multi-tenant software.
Strong hands-on development experience in: Angular, Type Script, React, and other Java Script frameworks and front-end applications.
NET / C# (APIs, services, web applications)MS SQL Server and related databases Experience in Azure development with Azure cloud computing (Azure VM, App Service, Kubernetes, SQL Azure, Batch, etc.)Experience integrating security tooling into CI/CD (Azure Dev Ops, Git Hub Actions, Jenkins, etc.).
Experience operating and remediating issues found by: Snyk (Static Application Security Testing SAST, dependency risk, code security when applicable)Invicti (Dynamic Application Security Testing DAST)Mend (open-source dependency governance and vulnerabilities)Penetration test reports (internal/external)Azure Guardrails or similar technology Or any similar scanning tools Demonstrated experience fixing security issues in code, not just identifying them.
Strong understanding of common vulnerability types and mitigations (OWASP Top 10), including: XSS, CSRF, injection, broken access control, auth N/auth Z flaws, supply chain attackssecure session handling, secure headers, error handling/loggingdependency risk management and patching strategies Experience working in Agile/Scrum teams and collaborating through PR-based workflows.
Bachelor’s Degree in Computer Science, Engineering, Information Systems, or related field; Advanced degree preferred Preferred Qualifications: Background in software architecture, including designing secure, scalable applications (e.g., layered architectures, microservices/service-based architectures, API security patterns, secure-by-design principles).
Networking fundamentals and security background, such as TCP/IP, DNS, TLS, HTTP(S), load balancing, proxies/WAF, routing, and troubleshooting connectivity/security issues across distributed system Experience integrating multiple websites and web applications, including cross-application authentication/SSO patterns, shared services/APIs, secure data exchange, and consistent security controls across sites.
Cloud security experience in one or more major platforms (Azure, AWS), including: Identity and Access Management (IAM) and privileged access controlsnetwork segmentation / security groups / firewall policiesencryption and key management (Key Vault equivalents)centralized logging/monitoring and alerting Familiarity with Infrastructure as Code Ia C (Terraform/Bicep/Cloud Formation), containerization, and supply-chain controls.
What Success Looks Like Security findings are rapidly and correctly remediated in Angular and.
NET code, with regression tests where appropriate.
Security scans run consistently, are correctly scoped, and provide actionable results (reduced noise, improved coverage).
Cloud/infra security posture improves through hardening, least privilege, secrets management, and policy-based controls in collaboration with Dev Ops.
The Scrum team ships features on time with fewer late-stage security issues and improved overall security maturity.
Working Style Hands-on, pragmatic, and delivery-oriented: you debug, you patch, you test, you ship.
Comfortable navigating legacy code and modern architectures.
Able to communicate security tradeoffs clearly and propose implementable solutions to the teams and leaders.
