We are seeking a Senior Full-Stack Engineer with deep security expertise to embed within a Scrum team and deliver secure software through hands-on engineering. This is a builder / fixer role (not an analyst-only role). You will work directly in Angular 19 / TypeScript front-end code and .NET (C#) back-end code to remediate vulnerabilities across legacy and modern applications, and you will also help own security in our cloud and infrastructure footprint.
You will ensure security scanning and testing are reliable, integrated into CI/CD, and provide actionable findings. Our primary tools include Snyk, Invicti, Mend, and penetration testing.
This role will focus on our award-winning web portal and other customer facing web-based products, including applications targeted at mobile devices in addition to traditional software applications.
Required Qualifications
- Senior-level experience as a Full-Stack Engineer delivering production enterprise and multi-tenant software.
- Strong hands-on development experience in:
- Angular, TypeScript, React, and other JavaScript frameworks and front-end applications
- .NET / C# (APIs, services, web applications)
- MS SQL Server and related databases
- Experience in Azure development with Azure cloud computing (Azure VM, App Service, Kubernetes, SQL Azure, Batch, etc.)
- Experience integrating security tooling into CI/CD (Azure DevOps, GitHub Actions, Jenkins, etc.).
- Experience operating and remediating issues found by:
- Snyk (Static Application Security Testing SAST, dependency risk, code security when applicable)
- Invicti (Dynamic Application Security Testing DAST)
- Mend (open-source dependency governance and vulnerabilities)
- Penetration test reports (internal/external)
- Azure Guardrails or similar technology
- Or any similar scanning tools
- Demonstrated experience fixing security issues in code, not just identifying them.
- Strong understanding of common vulnerability types and mitigations (OWASP Top 10), including:
- XSS, CSRF, injection, broken access control, authN/authZ flaws, supply chain attacks
- secure session handling, secure headers, error handling/logging
- dependency risk management and patching strategies
- Experience working in Agile/Scrum teams and collaborating through PR-based workflows.
- Bachelor's Degree in Computer Science, Engineering, Information Systems, or related field; Advanced degree preferred
Preferred Qualifications:
- Background in software architecture, including designing secure, scalable applications (e.g., layered architectures, microservices/service-based architectures, API security patterns, secure-by-design principles).
- Networking fundamentals and security background, such as TCP/IP, DNS, TLS, HTTP(S), load balancing, proxies/WAF, routing, and troubleshooting connectivity/security issues across distributed system
- Experience integrating multiple websites and web applications, including cross-application authentication/SSO patterns, shared services/APIs, secure data exchange, and consistent security controls across sites.
- Cloud security experience in one or more major platforms (Azure, AWS), including:
- Identity and Access Management (IAM) and privileged access controls
- network segmentation / security groups / firewall policies
- encryption and key management (Key Vault equivalents)
- centralized logging/monitoring and alerting
- Familiarity with Infrastructure as Code IaC (Terraform/Bicep/CloudFormation), containerization, and supply-chain controls.
What Success Looks Like
- Security findings are rapidly and correctly remediated in Angular and .NET code, with regression tests where appropriate.
- Security scans run consistently, are correctly scoped, and provide actionable results (reduced noise, improved coverage).
- Cloud/infra security posture improves through hardening, least privilege, secrets management, and policy-based controls in collaboration with DevOps.
- The Scrum team ships features on time with fewer late-stage security issues and improved overall security maturity.
Working Style
- Hands-on, pragmatic, and delivery-oriented: you debug, you patch, you test, you ship.
- Comfortable navigating legacy code and modern architectures.
- Able to communicate security tradeoffs clearly and propose implementable solutions to the teams and leaders.
- Proactively collaborates with other teams/team members (UX, Enterprise Architecture, Quality Assurance, SRE, DevOps, Product Managers, Product Owners, Business Analysts, Information Security, Software Support, Software Delivery, regional teams) across global time zones with the upmost professionalism, tact and resolve.
