18 joburi disponibile

*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a strong Application Security Engineer. Candidate will work closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Debrief users and provide remediation strategy on findings. Ensure alignment of security controls in testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices. Perform ongoing reviews of application releases to ensure only secure and reviewed code is pushed to prod, with automation tasks as necessary. Develop scripts/automation to assist development teams with interpreting results from pipeline vulnerability verification reports to facilitate vulnerability remediation. Qualifications: Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, Google Cloud Platform, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API s (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, Google Cloud Platform) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)

NO SPONSORSHIP Associate Principal, Security Engineering (Application Security) SALARY: $160k - $170k plus 15% bonus LOCATION: DALLAS, TX On site 3 days a week Application security, web applications, network applications. This position works closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities include: Candidate would perform Network/Application and Web Application security. Also create custom scripts and perform automation while also perform security assessments on both Legacy on prem and cloud environments. Candidate would also Identify, document and communicate vulnerabilities. Primary Duties and Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes - designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, GCP, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API's (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, GCP) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years' experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)

Graduate Full Stack Technical Client Integration Engineer Location: Central London/Hybrid Salary: £28,000 - £30,000 + benefits About Us: Join an award-winning AI/ML software company at the forefront of innovation. We're looking for a bright, motivated graduate to join our team as a Full Stack Technical Client Integration Engineer. This is a fantastic opportunity to kick-start your career in tech, working on exciting projects and learning from experienced professionals in a supportive, fast-paced environment. Who We're Looking For: We're seeking a recent graduate who has completed a degree in Computer Science, Engineering, or a related field from a top-tier university (minimum 2:1 or international equivalent), and achieved at least AAB at A-level. Ideally, you'll also have completed a year-long internship or placement in a technical or software-focused role. You'll thrive in this role if you have: - Some hands-on experience with full-stack development, particularly using JavaScript, Node.js, Python, and APIs (through internships, university projects, or personal work). - Strong communication skills, with the ability to explain technical concepts clearly to both technical and non-technical audiences. - A proactive mindset, eager to learn and adapt in a fast-moving tech environment. - An interest in client-facing work, with a consultative and solutions-oriented approach. Key Responsibilities: - Support clients with technical integrations of our platform, acting as a trusted advisor. - Collaborate with internal teams to improve integration processes and tools. - Learn and grow into a subject matter expert on our platform and technologies. - Help identify and implement improvements based on client and team feedback. Why Join Us: This is an ideal role for a graduate looking to build a career that blends technical development with client interaction. You'll gain exposure to real-world projects, receive mentorship from experienced engineers, and be part of a company that values innovation and growth. How to Apply: If you're excited by this opportunity and ready to take the next step in your career, we'd love to hear from you. Apply via the link below. Adecco operates as an Employment Agency and is an equal opportunities employer. All applications will be handled with strict confidentiality.

We are recruiting for a SC Cleared UK eyes only Full stack developer for our client based in Stevenage, The role is based 4 days per week on site and 1 remotely. Job Title: Full Stack Software Development Engineer Responsibilities: You will be working within a small and will be responsible for: - The continued development of the Web UI components Maintenance and testing of .net microservices Creating the appropriate documentation Collaborating with and assisting other members of the team Skillset/experience required: Essential experience: Programming Languages:- JavaScript, Typescript, HTML, CSS, C# Framework & Libraries:- Svelte, Angular, Vue.js, React, .NET 7/8 Tools and Technologies Visual Studio, Jira, GitLab, Node.js, npm CI, Docker, Kubernetes, Artifactory You have experience of working on complex, distributed systems with Containerisation including a knowledge of Kubernetes/Docker You have a thorough understanding of Computer Science fundamentals such as OOP, Data Structures, Design Patterns, Algorithms You have experience working in an agile development environment. You are comfortable with all aspects of the software development life cycle (planning, analysis, design, implementation, testing and deployment, maintenance) You have the ability to identify and solve complex problems. You have the ability to design innovative and user-friendly interfaces. You are familiar with modern software testing and deployment practices such as TDD & CI/CD You can set up CI/CD Pipelines You have excellent communication skills and are comfortable collaborating across teams and with senior stakeholders You have mentored & assisted junior members of the team. Desirable experience: You have experience with other languages such as C++ Linux sysadmin/DevOps/deployment

Edinburgh based SaaS Organisation , that have a market leading product , are looking for an experienced Software Engineer (with good exposure using the .Net framework ) to join their agile team - modern tech and hybrid working on offer. They've been running really successfully now for several years and their product is used worldwide, largely both within the UK and the US. It's a data focused product that is proven to enhance the efficiency within organisations and ultimately lower costs. The platform has been so successful the company have recently been acquired by a global Powerhouse, as they're looking to expand their footprint, so it's a really exciting time to join. They're based in central Edinburgh and have a development squad of roughly seven, they'd describe themselves as a friendly and sociable bunch that endorse collaborate working and are looking for a similar fit. For this role (and all technical roles at the business) they're ideally looking for someone that can work onsite, roughly three days per week . You'd find yourself working on their core cloud platform , which is written with a modern tech stack ( .Net, SQL, Azure and VueJS ). They are ideally looking for a Developer that feels comfortable across the full stack or would be open to learning some of their tech stack - as they're happy to help people upskills here, they've got a great L&D environment. You'll ideally have experience with most of the following; * Modern .NET (.Net Core, ASP.NET MVC) * Databases (SQL Server or Entity Framework) * Modern JavaScript Libraries (ReactJS, Angular or VueJS) * Working with an Agile environment Experience with the following is highly desirable; * Microsoft Azure * Microservices * Working in a product environment The company have a great culture , several of the Software Engineers at the organisation have been there for a good amount of years, it's very rare someone would have a short stint here. I've personally helped a couple Engineers join the team and heard great things first hand. Their offices are just walking distance from Haymarket station in Edinburgh , and they support hybrid working , where you'd be expected in about three days per week . In return they're able to offer a salary from £30k to £43k for this role (although could be scope for more) on top of a good benefits package to match (Annual Bonus, 34 days holidays). If you're keen to find out more, please apply or drop Douglas Paget at Cathcart Technology a message.

Are you a PHP enthusiast looking to work for one of the UK's leading organisations on a range of enterprise-scale Web projects? Are you looking for a role where your progression is prioritised from day one and an environment where on-going learning, up-skilling and personal development is fully supported and encouraged? Seriously, look no further. This is your chance to join with a constantly evolving national brand at what couldn't be a busier and more exciting time for them. They're a hugely successful business with a large, established IT outfit - It's a fast paced environment and one where requirements can change at a moments notice So it's important that this is the type of environment that you thrive in! They work with a "fail fast" approach where they are always open to trying new things and explore better ways of working. It's a mega opportunity to join and make a difference! They have a large, yet Agile team of some of the very best PHP Engineers in the country - with dozens of projects on the horizon We're looking for multiple Engineers to join them. Technically, you'll be able to write clean, functional Object Oriented PHP code and have exposure to PHP7 or PHP8 systems. Their framework of choice is Symfony (version 4/5) so this is our preference in regards to your exposure, however we will consider candidates who are well versed with another MVC framework (Laravel, CodeIgniter, CakePHP etc) They also use MySQL v8 as a database. I'd also love you to have a full-stack approach with a good handle on the Front End - Solid JavaScript, HTML, CSS and ideally TypeScript, too. This is a chance to rub shoulders with some of the most talented PHP Engineers and wider techies in the UK. Whilst hiring for these new developers, it isn't necessarily about "how much" exposure you can bring to the table but more about having the right attitude, aptitude to pick up the tech and about finding developers who "do things the right way"! I'm looking for the type of Developer who keeps up to date with all the latest advances in the tech world and brings new ideas to the table This is an environment where your voice will be heard and valued. What I love about this company, is how the invest in their employees. You'll be given a personal progression plan from day one, with quarterly one-to-ones with your hiring manager to discuss your development and potential for growth. Learning is massively encouraged - they have their very own IT training team and a huge range of online materials in all things tech! I'm hiring across all levels with a salary range of £30,000 - £45,000 plus substantial bonus and exceptional benefits. You can work remotely with the odd trip to HQ for kick-offs/meetings when required. Call me anytime and I'll tell you all about it. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.

We're looking for a Senior .NET Developer for our professional services client based in Manchester on a permanent basis paying between £50,000 to £65,000 per annum + great benefits. This role allows hybrid working with an expectation to attend the office 2-3 days per week. You may also work from home for the remainder of the week. You'll be working as part of a small, agile team, helping design and develop internal applications and new products using the latest .NET stack. This is a hands-on full-stack role, ideal for someone who enjoys solving business problems with clean, scalable code and mentoring junior team members. You will need to either hold current UK Right to Work or have the ability to work without sponsorship. The successful Senior Software Developer will possess proven skills in: C# and .NET (Core/Framework) Angular (or modern JavaScript Front End frameworks) SQL Server and Entity Framework Docker & AWS ECS Architecture & Design Event-driven architecture (eg RabbitMQ) RESTful APIs and microservices DevOps, Git, CI/CD pipelines Interested? Please apply below. Senior software engineer, senior .net developer, architect tire, design, .net Architect, software Architect, senior software developer, .NET, C#, angular, SQL, AWS, Docker, RabbitMQ, hybrid, Manchester, full stack developer, software engineer, devops, professional services

Lead Golang Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in London. You MUST have the following: Strong experience as a Lead Full-Stack Developer/Software Engineer/Programmer Excellent Golang Experience building Front Office trading systems (portfolio management, execution or order management, risk or PnL analysis) Strong ability to lead and take concepts and ideas into technical solutions Excellent stakeholder interaction skills Agile The following is DESIRABLE, not essential: JavaScript and TypeScript Ag-Grid and GraphQL Python or Java Role: Lead Golang Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in London. You will be leading two small teams to build a new multi-asset portfolio management system. The stack is React, TypeScript, Redux, Ag-Grid, GraphQL, Playwright, Java, Golang, Kafka and AWS. The hiring manager is flexible on experience. Ideally, you will have some full-stack experience, or have led full-stack teams, but Golang is the focus here. You need experience building trading systems but it does not matter what the asset class is. If you have experience with execution management or order management systems, that would be ideal but is not essential. Similarly, it doesn't matter if your financial experience is from the buy-side or the sell-side. This is a well-backed company that is growing rapidly and will likely IPO in the next 24 months. There is hybrid working with a possibility for remote working. Salary: £120-150k + 50% Bonus + Pension

REMOTE Golang Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in London. You MUST have the following: Strong experience as a Lead Full-Stack Developer/Software Engineer/Programmer Excellent Golang Experience building Front Office trading systems (portfolio management, execution or order management, risk or PnL analysis) Strong ability to lead and take concepts and ideas into technical solutions Excellent stakeholder interaction skills Agile The following is DESIRABLE, not essential: JavaScript and TypeScript Ag-Grid and GraphQL Python or Java Role: REMOTE Golang Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in London. You will be leading two small teams to build a new multi-asset portfolio management system. The stack is React, TypeScript, Redux, Ag-Grid, GraphQL, Playwright, Java, Golang, Kafka and AWS. The hiring manager is flexible on experience. Ideally, you will have some full-stack experience, or have led full-stack teams, but Golang is the focus here. You need experience building trading systems but it does not matter what the asset class is. If you have experience with execution management or order management systems, that would be ideal but is not essential. Similarly, it doesn't matter if your financial experience is from the buy-side or the sell-side. This is a well-backed company that is growing rapidly and will likely IPO in the next 24 months. Remote working would require coming into the office 1-2 days/month. Salary: £120-150k + 50% Bonus + Pension

Lead Full-Stack Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in Manhattan, New York City. You MUST have the following: Strong experience as a Lead Full-Stack Developer/Software Engineer/Programmer Excellent JavaScript and TypeScript Golang or Java Experience building Front Office trading systems (portfolio management, execution or order management, risk or PnL analysis) Strong ability to lead and take concepts and ideas into technical solutions Excellent stakeholder interaction skills Agile The following is DESIRABLE, not essential: Ag-Grid and GraphQL Python Role: Lead Full-Stack Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in Manhattan, New York City. You will be leading two small teams to build a new multi-asset portfolio management system. The stack is React, TypeScript, Redux, Ag-Grid, GraphQL, Playwright, Java, Golang, Kafka and AWS. The hiring manager is flexible on experience. Ideally, you will have React Front End experience, but this could be substituted by Angular or Vue. Similarly, if you have Java but no Golang and GCP but not AWS, we could still proceed. You could also have Go experience but no Java. You need experience building trading systems but it does not matter what the asset class is. If you have experience with execution management or order management systems, that would be ideal but is not essential. Similarly, it doesn't matter if your financial experience is from the buy-side or the sell-side. This is a well-backed company that is growing rapidly and will likely IPO in the next 24 months. There is hybrid working with a possibility for remote working. Salary: $200-250k + 50% Bonus + 401k

Lead Java Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in Manhattan, New York City. You MUST have the following: Strong experience as a Lead Full-Stack Developer/Software Engineer/Programmer Java Experience building Front Office trading systems (portfolio management, execution or order management, risk or PnL analysis) Strong ability to lead and take concepts and ideas into technical solutions Excellent stakeholder interaction skills Agile The following is DESIRABLE, not essential: JavaScript and TypeScript Ag-Grid and GraphQL Python Role: Lead Java Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in Manhattan, New York City. You will be leading two small teams to build a new multi-asset portfolio management system. The stack is React, TypeScript, Redux, Ag-Grid, GraphQL, Playwright, Java, Golang, Kafka and AWS. The hiring manager is flexible on experience. Ideally, you will have some full-stack experience, or have led full-stack teams, but Java is the focus here. You need experience building trading systems but it does not matter what the asset class is. If you have experience with execution management or order management systems, that would be ideal but is not essential. Similarly, it doesn't matter if your financial experience is from the buy-side or the sell-side. This is a well-backed company that is growing rapidly and will likely IPO in the next 24 months. There is hybrid working with a possibility for remote working. Salary: $200-250k + 50% Bonus + 401k

Lead Golang Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in Manhattan, New York City. You MUST have the following: Strong experience as a Lead Full-Stack Developer/Software Engineer/Programmer Excellent Golang Experience building Front Office trading systems (portfolio management, execution or order management, risk or PnL analysis) Strong ability to lead and take concepts and ideas into technical solutions Excellent stakeholder interaction skills Agile The following is DESIRABLE, not essential: JavaScript and TypeScript Ag-Grid and GraphQL Python or Java Role: Lead Golang Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go Java AWS Kafka) required by our trading software client in Manhattan, New York City. You will be leading two small teams to build a new multi-asset portfolio management system. The stack is React, TypeScript, Redux, Ag-Grid, GraphQL, Playwright, Java, Golang, Kafka and AWS. The hiring manager is flexible on experience. Ideally, you will have some full-stack experience, or have led full-stack teams, but Golang is the focus here. You need experience building trading systems but it does not matter what the asset class is. If you have experience with execution management or order management systems, that would be ideal but is not essential. Similarly, it doesn't matter if your financial experience is from the buy-side or the sell-side. This is a well-backed company that is growing rapidly and will likely IPO in the next 24 months. There is hybrid working with a possibility for remote working. Salary: $200-250k + 50% Bonus + 401k

Lead React Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go) required by our trading software client in Manhattan, New York City. You MUST have the following: Strong experience as a Lead React Developer/Software Engineer/Programmer Excellent JavaScript, TypeScript and React Redux Experience building Front Office trading systems (execution or order management, risk or PnL analysis) Strong ability to lead and take concepts and ideas into technical solutions Excellent stakeholder interaction skills Agile The following is DESIRABLE, not essential: Ag-Grid and GraphQL Golang Java Role: Lead React Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System Portfolio Golang Go) required by our trading software client in Manhattan, New York City. You will be joining a small team to build a new multi-asset portfolio management system. The stack is React, TypeScript, Redux, Ag-Grid, GraphQL and Playwright. This all sits on Golang, Kafka, Java and AWS, which the other developers will be building. Although, any Back End experience would be advantageous. You need experience building trading systems but it does not matter what the asset class is. If you have experience with execution management or order management systems, that would be ideal but is not essential. Similarly, it doesn't matter if your financial experience is from the buy-side or the sell-side. This is a well-backed company that is growing rapidly and will likely IPO in the next 24 months. There is hybrid working with a possibility for remote working. Salary: $200-250k + 50% Bonus + 401k

NO SPONSORSHIP Security Engineering (Application Security) SALARY: $160k - $170k plus 15% bonus LOCATION: DALLAS, TX On Site 3 days a week Looking for an Application security, web applications, network applications engineer. You will also create custom scripts and perform automation while also performing security assessments on both Legacy on prem and cloud environments. Candidate would also Identify, document and communicate vulnerabilities. Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Qualifications: Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, GCP, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API's (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, GCP) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts.

Senior Application Security Engineer Salary: Open + Bonus Location: Chicago, IL or Coppell, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 5+ Years' experience in Application Security or Information Security environment. Strong proficiency application security and vulnerability management. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.) Experience writing scripts and working with containers in a CI/CD pipeline. Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (python, Java, JavaScript etc.) Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Responsibilities Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes - designing and implementing a developer friendly secure SDLC framework Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools.

Senior Application Security Engineer Salary: Open + Bonus Location: Chicago, IL or Coppell, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 5+ Years' experience in Application Security or Information Security environment. Strong proficiency application security and vulnerability management. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.) Experience writing scripts and working with containers in a CI/CD pipeline. Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (python, Java, JavaScript etc.) Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Responsibilities Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes - designing and implementing a developer friendly secure SDLC framework Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools.

React Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System) required by our trading software client in Manhattan, New York City. You MUST have the following: Strong experience as a React Developer/Software Engineer/Programmer Excellent JavaScript, TypeScript and React Redux Ag-Grid and GraphQL Experience building Front Office trading systems (execution or order management, risk or PnL analysis) Excellent stakeholder interaction skills Agile The following is DESIRABLE, not essential: Finance/trading Role: React Developer (Software Engineer Programmer Developer ReactJS React-JS React.JS GraphQL Playwright TypeScript Redux Saga Ag-Grid Fixed Income JavaScript Node Credit Rates Bonds Agile Buy Side Asset Manager Investment Management Finance Front Office Trading Financial Services UI Front End Front End EMS OMS Execution Order Management System) required by our trading software client in Manhattan, New York City. You will join a team of 6 engineers as a Front End React specialist, working with a combination of full-stack and Back End developers. The team is building out new functionality for this trading application. You will be working with React, TypeScript, Redux, Ag-Grid, GraphQL and Playwright. This all sits on Kafka, Java and AWS, which the other developers will be building. You need experience building trading systems but it does not matter what the asset class is. If you have experience with execution management or order management systems, that would be ideal but is not essential. Similarly, it doesn't matter if your financial experience is from the buy-side or the sell-side. This is an environment that is modernizing rapidly. They operate a hybrid working policy for all staff. Salary: $175-225k + 50% Bonus + 401k

*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a strong Application Security Engineer. Candidate will work closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Debrief users and provide remediation strategy on findings. Ensure alignment of security controls in testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices. Perform ongoing reviews of application releases to ensure only secure and reviewed code is pushed to prod, with automation tasks as necessary. Develop scripts/automation to assist development teams with interpreting results from pipeline vulnerability verification reports to facilitate vulnerability remediation. Qualifications: Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, Google Cloud Platform, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API s (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, Google Cloud Platform) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)