Java Developer with Security-1

Design and implement secure, scalable, and high-performing solutions based on business requirements, with strong emphasis on cybersecurity integration.

Develop, configure, and maintain Spring Security frameworks for authentication, authorization, and access control in enterprise applications.

Integrate applications with Identity and Access Management (IAM) systems such as Okta, Ping Federate, Oracle Access Manager, and Azure Active Directory.

Implement secure REST APIs and microservices using Spring Boot, ensuring compliance with industry security standards and regulations (e.g., OWASP, NIST, PCI-DSS, GDPR).

Collaborate with cybersecurity teams to integrate security controls, encryption standards, and identity federation solutions.

Conduct and support security-focused testing (unit, integration, penetration readiness, and vulnerability remediation).

Maintain and enhance existing codebases, ensuring timely bug fixes, security patches, and vulnerability mitigations.

Actively participate in Agile ceremonies, sprint planning, and code reviews, with a focus on secure coding practices.

Contribute to technical documentation, including security architecture, integration flows, and compliance reports.

Work closely with stakeholders, architects, and security engineers to proactively identify and remediate risks.

Strong proficiency in Enterprise Java, Spring Framework (Spring Boot, Spring Security, Spring Data, Spring Cloud).

Hands-on experience implementing authentication protocols (SAML, OAuth2.0, OIDC) and integrating with IAM/SSO solutions.

Solid understanding of cybersecurity principles, including encryption, tokenization, TLS, JWT, and API security best practices.

Expertise in RESTful API development within a microservices architecture.

Experience with Azure Cloud, Pivotal Cloud Foundry (Tanzu), or equivalent public cloud environments.

Working knowledge of containerization (Docker, Kubernetes) and container orchestration.

Proficiency with Active Directory/LDAP, identity federation, and access governance integrations.

Strong background in DevOps tools (Azure DevOps, Bamboo, Git, CI/CD pipelines).

Familiarity with API management platforms (Layer7 API Developer Portal, Azure APIM).

Knowledge of relational databases (SQL), ORM frameworks (Hibernate, JPA2), and data serialization formats (XML/XSLT, JSON).

Experience with secure software development lifecycle (SSDLC) practices.

8+ years of professional experience in software engineering, with at least 6+ years in Java and Spring ecosystem development, and a proven track record in security-focused application integration.