Any application security experience Static Composition Analysis (SCA), Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), API protocols/frameworks (e.g., REST, SOAP, GraphQL, gRPC), Authentication and Authorization Protocols (OAuth2/OIDC/JWT etc.) would be considered a plus. * You are capable of designing and developing tools/applications using some of the following technologies: Unix and Shell scripting; Common programming languages such as core Java, Python, etc.; Popular opensource frameworks/libraries (e.g. Spring, SpringBoot, Apache Commons, etc.); SOA and API frameworks such as SOAP and REST; Pipeline/Build tools including GIT, Maven, Jenkins, Jenkins Core, and AWS CFT/CDK; Front end languages/frameworks including JavaScript/Typescript, jQuery, Angular, NodeJS, Springboard and React a plus.
more