About the Role
We are seeking a skilled .NET Developer with a strong focus on security to join our team. The ideal candidate will be responsible for identifying, analyzing, and remediating security vulnerabilities within our .NET applications. This role requires a deep understanding of the .NET framework, secure coding practices, Static Application Security Testing tools and methods, Dynamic Application Security Testing tools and methods, Continuous Integration and Continuous Deployment tools in Azure Dev Ops and the ability to work collaboratively with other developers and security professionals as well as business analysts and customer facing coordinators.
What you'll do
- Identify and Analyze Security Vulnerabilities: Utilize industry tools like Checkmarx, Invicti, SCA Mend, Cisco VM and others that identify on potential security vulnerabilities, conduct code reviews to identify potential vulnerabilities in .NET applications. Implement and utilize industry standard tools and methods in Azure Dev Ops to integrate security tools into the Continuous Integration and Deployment build process.
- Remediate Security Issues: Develop and implement solutions to remediate identified security vulnerabilities, ensuring compliance with security best practices and standards.
- Collaborate with Development Teams: Work closely with other developers to integrate security measures into the software development lifecycle (SDLC).
- Maintain Security Documentation: Document security issues and remediation steps, providing clear and concise reports to stakeholders.
- Stay Updated on Security Trends: Keep abreast of the latest security threats, vulnerabilities, and mitigation techniques relevant to .NET applications.
- Assist with Penetration Testing: Assis with security teams conducting penetration testing and vulnerability assessments to evaluate the security posture of .NET applications.
- Provide Training and Support: Educate and support development teams on secure coding practices and security best practices.
What you'll bring
- Minimum of 3 years of experience in .NET development with a focus on security.
- Proficiency in C#, ASP.NET, and the .NET framework.
- Experience with security tools and technologies such as OWASP, SAST, DAST, and penetration testing tools. Experience with Git code repositories. Knowledge of DevSecOps practices and tools.
- Strong analytical and problem-solving skills, excellent communication skills, and the ability to work effectively in a team environment.
What we'll prefer you to have
- Experience with cloud security (e.g., Azure, AWS).
- Relevant security certifications such as CISSP, CEH, or CSSLP are a plus.
- Familiarity with regulatory requirements and standards such as GDPR, HIPAA, and PCI-DSS.
