HN Jobs

FUJIFILM Medical Systems | Software Security Engineer | Morrisville, NC | Full-Time | Onsite The primary responsibility of the Software Security Engineer is to assist technical leads and developers with design-time cybersecurity efforts including threat modeling and attack surface analysis, security requirements/architectural review and final security reviews and recommendations. Duties and responsibilities - Work with software architects, technical leads and developers serving as an expert in software security design and implementation. - Collaborate on software security design concepts with engineers, testers and product owners, who have varying levels of security experience and knowledge. - Recommend mitigations or fixes for security bugs. - Recommend changes to feature design as needed to mitigate security vulnerabilities. - Provide security best practice guidance for common technologies. - Research new technologies and provide guidance for integrating them securely into products. - Develop training materials including papers and presentations, on secure software development and design. - Review source code for security vulnerabilities. Qualifications - Bachelor’s degree or higher in Computer Science, Engineering or a related field, or equivalent education and experience is required. - Deep understanding of web application development, specifically using ASP.NET, C# and Typescript/Javascript - Experience creating threat models and data flow diagrams to identity vulnerabilities and translate them into actionable plans for mitigation. - Strong knowledge of common web application security vulnerabilities, like injection attacks, XSS, CSRF, Spoofing, Repudiation and OWASP Top 10 - Experience with Identity Access Management solutions and protocols like, OpenID Connect, OAuth2, SAML, ADFS, etc. Contact: jpearce@fujifilm.com