Windows application security developer Job in Atlanta

1353 IT & Software Developer jobs in the US

Company Size

50-200

Company Type

Services

Exp Level

Senior

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- Strong hands-on experience with Visual Basic 6 (VB6), including ADO, Windows API, ActiveX, and VB6 IDE. - Proficiency in C# and/or VB.NET on .Net Framework with skills in Windows Forms development and data access. - In-depth knowledge of SQL injection remediation techniques such as parameterized queries, stored procedures, and input validation. - Proven ability to fix command injection vulnerabilities through input sanitization, allowlisting, and safe execution patterns. - Practical experience with Veracode SAST, including interpreting findings and understanding CWE classifications to drive flaw resolution. - Familiarity with the OWASP Top 10 and secure coding guidelines relevant to Windows desktop applications. - Experience in applying CVSS scoring and managing vulnerability triage and remediation prioritization. - Capability to develop and execute security-focused testing procedures to validate fixes. - Proficient in Git or SVN for source code version control and patch management processes. - Background in code review practices, pull request management, and collaborative development workflows. - Acquaintance with issue tracking platforms such as JIRA, Azure DevOps, or GitHub Issues. - Bachelors or Masters degree in Computer Science, Software Engineering, Cybersecurity, or a closely related discipline. - 8 to 9+ years of professional experience in Windows desktop application development using VB6 and .Net technologies. - Experience with additional languages such as Python and Fortran for code review tasks.

Technologies

.NET Framework

Fortran

GitHub

OWASP

SVN

Visual Basic

Responsibilities

- Analyze Veracode SAST reports to comprehend CWE classifications, flaw categories, and severity ratings. - Assess High and Critical findings based on exploitability, business impact, and the complexity of remediation. - Associate each Veracode finding with the appropriate source code module, including VB6, C#, VB.NET, SQL, Python, or Fortran. - Organize the remediation backlog and keep stakeholders and auditors informed of progress. - Detect and rectify OS command injection vulnerabilities in VB6 and .Net components. - Identify and remedy SQL injection vulnerabilities within VB6, .Net, and various dynamic SQL construction methods. - Work directly within the VB6 codebase, paying careful attention to Windows API calls, ActiveX components, and specific VB6 security pitfalls. - Rebuild applications after applying security patches, managing dependencies and resolving any build issues to ensure successful compilation. - Execute unit and integration testing for each modified module to ensure functionality. - Perform Veracode rescans to verify that vulnerabilities have been addressed and monitor flaw closure rates. - Conduct regression testing to confirm no adverse effects on functionality, performance, or changes in system behavior. - Maintain comprehensive documentation, including root cause analyses, code modifications, testing methodologies, and the residual risk associated with each finding.

Description

We are a prominent software development firm based in Atlanta, GA, seeking a dedicated Windows Application Security Developer for a project lasting between 6 and 12 months. Our team focuses on enhancing the security of legacy Windows applications, specifically addressing high-severity vulnerabilities as identified by Veracode. We foster a collaborative and innovative work environment and offer competitive compensation and growth opportunities. Join us in our commitment to building secure applications and making a meaningful impact in the technology community.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USSecurity Engineer jobs in the USSecurity Engineer jobs Atlanta, GA

You can find Cyber Security Engineer salaries in the United States here.

How many Cyber Security Engineer jobs are in the United States?

Currently, there are 1353 Security openings. Check also: IAM jobs, SAML jobs, Cisco jobs, Splunk jobs - all with salary brackets.

Is the US a good place for Cyber Security Engineers?

The US is one of the best countries to work as a Cyber Security Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for Cyber Security Engineer jobs in the United States?

Snaplii, LYNKED Inc., Frontier Dental Supply, Asset Inventories Inc., D3 Security Management Systems, iCarCover, Inc., Resolute Management Group, LLC among others, are currently hiring for Security roles in the United States.

The company with most openings is Jobot as they are hiring for 235 different Cyber Security Engineer jobs in the United States. They are probably quite committed to find good Cyber Security Engineers.