Web Developer Security Engineer - Nationwide IT Services

Key Responsibilities

• Design and implement secure coding practices for web applications and APIs throughout the SDLC.
• Integrate security controls into CI/CD pipelines, including automated scanning and remediation (DevSecOps).
• Manage and monitor Web Application Firewall (WAF) policies and File Integrity Monitoring (FIM) solutions.
• Conduct vulnerability assessments, prioritize findings, and coordinate remediation with development teams.
• Provide Tier II security operations support, including incident response and security monitoring.

Requirements

• Minimum 3 years of hands‑on experience in application security and secure software development.
• Proficiency with DevSecOps tools (e.g., SAST, DAST, container security) and CI/CD platforms.
• Experience configuring and managing WAFs and FIM technologies.
• Strong knowledge of API security standards (OAuth, OpenAPI, OWASP API Security Top 10).
• Ability to analyze vulnerability data, produce remediation plans, and communicate effectively with cross‑functional teams.