Required Skills:2+ years of software development experience with any one of the object oriented programming languages like Java, Ruby, C#.Git and Linux/Unix Commands.Knowledge and understanding of Secure Code practices.Perform code review and audit application source code scans for security vulnerabilities, and identify True Positives and False Positives.Providing guidance to development community for resolving the vulnerabilities. Should be able to interact on daily basis with development community on the security issues of their applications.Understanding of source code vulnerabilities such as Cross-Site Scripting, SQL Injection, Heap Inspection, DOM Injection, SSRF (Server-Side Request Forgery), XSRF (Cross-Site Request Forgery) etc.Should be able to research on third party library vulnerable and non-vulnerable packages from different sources like NIST, OWASP and provide upgrade guidance on recent non-vulnerable components.Understanding of Jenkins Pipeline.Understanding of relational databases and experience in writing SQL queries.Required Education:Bachelor Degree at a minimal is required to be considered for this position.Tools: Checkmarx, blackduck, Nexus IQ, Blackduck, Eclipse, SQL Server Management StudioDesired but not required:Desired Experience:Ability to take a product through the entire lifecycle of analysis, design, coding, testing and implementation and support.Experienced with implementing all aspects of an application design – high performance design, coding, caching mechanisms, security, encryption, state management, error logging, debugging, scalability, code reviews, development environment configuration, and testing.Experienced with performing unit and system level testing on web applications.Proven track record of designing scalable, web based distributed software applicationsExperience developing software in the government sector (a plus).Experience or knowledge of Jenkins, Cloud, and MavenExperience with collaboration tools such as SharePointExperience with integrating SCA code scanning into the build processCode scanning experience - Manual/Automated/Static/DynamicExperience/exposure in major programming languages such as JAVA EE, .NET,COBOL, ColdFusion, etc.