Senior Specialist in Layup Process Engineering at Vestas, focusing on design and optimization of production processes. Collaborating with teams to establish standards and improve overall business performance.
About the role
- Senior Software Development Engineer handling secure coding and vulnerability remediation for Brillio, a digital technology service provider. Collaborating on security automation and enhancements in application security posture.
Responsibilities
- Analyze, triage, and remediate vulnerabilities identified via SAST, DAST, and software composition analysis tools such as SonarQube, Veracode, Snyk, and Checkmarx.
- Refactor insecure Java and Node.js codebases to mitigate vulnerabilities such as SQL Injection, XXE, XSS, CSRF, Deserialization, and Authentication flaws.
- Patch and upgrade vulnerable third-party dependencies using Maven/Gradle, and validate post-remediation effectiveness.
- Leverage Generative AI tools (e.g., AWS Bedrock) to build or enhance automation workflows for:
- Auto-remediation of common vulnerability patterns
- Code recommendations and patch generation
- AI-driven security analysis and triage assistance
- Automate vulnerability remediation and validation within CI/CD pipelines, improving security velocity and reducing manual effort.
- Strengthen security configurations in Spring Boot, REST APIs, Node.js services, and Tomcat-based deployments.
- Perform secure code reviews, provide remediation guidance, and promote secure coding best practices across development teams.
- Collaborate with InfoSec and DevOps teams to validate fixes, perform re-scans, and close vulnerability tickets.
- Stay current on security advisories, OWASP Top 10, CWE/SANS 25, and Java/Tomcat ecosystem updates.
Requirements
- 6+ years of experience
- Must Have: NodeJS, vulnerability remediation, and security, Java
- Strong hands-on experience with Core Java, Spring Boot, Tomcat, and REST API development.
- Proficiency in secure coding principles and application vulnerability remediation.
- Experience remediating issues identified by tools like Veracode, Checkmarx, SonarQube, or Snyk.
- Knowledge of dependency management and patching practices using Maven or Gradle.
- Familiarity with Node.js security configurations and remediation techniques.
- Experience with OAuth2/JWT, input validation, encryption, and secure session management.
- Understanding of Docker, Kubernetes, and security considerations in cloud-native applications.
- Preferred Qualifications: Experience with automating vulnerability remediation using GenAI platforms (e.g., AWS Bedrock, Amazon CodeWhisperer). Exposure to DevSecOps pipelines, including automated security scans and policy enforcement. Strong understanding of Spring Security, secure API design, and infrastructure hardening. Certifications such as CEH, CSSLP, GSSP-Java, or similar are a plus.
- Soft Skills: Strong analytical, debugging, and problem-solving skills. Excellent communication and documentation abilities. A collaborative mindset with the ability to work across security, development, and operations teams. Self-motivated and proactive in driving secure development practices and automation.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Layup Process Engineering Specialist optimizing blade production processes at Vestas. Collaborating on process standardization and improvement initiatives in manufacturing operations.
Developer specialized in COBOL for hybrid financial applications at CDMX. Requires 1 year experience and offers comprehensive medical and life insurance benefits.
ServiceNow developer responsible for designing, developing, and implementing ServiceNow solutions. Collaborating with stakeholders to enhance workflows and automate processes.
Research - focused role defining architecture and building robust AI systems to translate cutting - edge research concepts into high - performance platforms. Collaborate with researchers and engineers in pioneering agentic AI capabilities.
Senior Embedded Developer working on camera integration software within autonomous driving. Collaborating with teams to drive new ideas and solve product issues in a fast - moving tech environment.
Calypso Developer at Synechron developing tailored solutions to enhance trading and risk management systems. Collaborating with cross - functional teams and ensuring robust testing across Calypso versions.
Calypso Developer delivering tailored solutions to enhance trading and risk systems at Synechron. Requires experience in Calypso and collaboration with financial teams.
Study Lead Programmer supporting the development and validation of statistical programs for clinical trials at ICON. Collaborating with teams to enhance clinical research and patient outcomes.
Desarrollador/a Power Platform designing, developing, and deploying applications across sectors. Collaborating with teams in a leading IT services company.