Sr Software Security Lead Engineer

Position Overview

• Location Type: Not specified
• Employment Type: Not specified
• Job Type: Lead Software Engineer
• Salary: Not specified

As a Lead Software Engineer at Accela, Inc., supporting the Security team, you will play a critical role in ensuring the security and integrity of our software applications. Your expertise will be instrumental in identifying and addressing potential security vulnerabilities while implementing secure coding practices. Working closely with a new Engineering team, you will lead them in adopting best practices for application security and ensuring compliance with relevant security standards and regulations.

Responsibilities

• Lead a Scrum team, focusing on the development of new features, refactoring, and improvement of core applications.
• Conduct comprehensive evaluations of web application security, including in-depth analysis of OWASP Top Ten vulnerabilities and effective mitigation techniques.
• Define rigorous security requirements and lead detailed analysis, emphasizing secure coding practices, vulnerability assessment, and penetration testing.
• Develop and implement effective remediations for vulnerabilities using cutting-edge security assessment tools such as SAST/DAST vulnerability scanners and penetration testing frameworks.
• Take ownership of key services and design complex architectural deliverables, demonstrating both breadth and depth of knowledge in building software products and services.
• Guide the team throughout product development by actively engaging in Daily Scrum, Sprint Planning, and Backlog Grooming sessions.
• Define requirements and lead analysis and grooming for Scrum team deliverables.
• Perform meticulous Code Reviews, craft robust unit tests, document code, and implement software best practices.
• Collaborate seamlessly with QA engineers to design and execute testing protocols aimed at identifying and rectifying defects and performance impacts efficiently.
• Build and maintain excellent working relationships with peers across multiple departments, including QA, Development, Project Management, and User Experience (UX).
• Collaborate with architects and other technical leaders to develop robust enterprise-level solutions impacting multiple services.
• Contribute actively to the entire Software Development Life Cycle (SDLC) from ideation and design to full implementation, release, and deployment.
• Transform innovative ideas into prototypes and refine prototypes into high-quality products.
• Assess emerging software technologies and evaluate third-party solutions to identify and integrate best-suited solutions.
• Provide production support of services when required.

Requirements

• Bachelor's degree or equivalent experience in Computer Science, Information Security, or a related field.
• At least 10+ years of professional development experience as a software engineer.
• Proven experience in application security, including secure coding practices, vulnerability assessment, and penetration testing.
• Expert knowledge and understanding of secure software development principles and methodologies.