Job Description Java Developer (Application Security)
Day to Day job Duties: (what this person will do on a daily/weekly basis)
" Design, develop, and maintain secure Java/J2EE-based applications, ensuring adherence to enterprise security standards and best practices
Implement and maintain backend components using Spring MVC, EJB, Hibernate, and JPA
" Identify, analyze, and remediate application security vulnerabilities such as XSS, CSRF, session fixation, IDOR, and path traversal issues " Collaborate with security teams to triage and resolve findings from vulnerability scans, penetration testing, and security audits " Implement secure coding practices, including input validation, output encoding, and proper authentication/authorization mechanisms " Update and manage third-party libraries (e.g., Axios, jQuery, Ext.js), ensuring no outdated or vulnerable versions are in use " Configure and enforce web security controls such as CSP headers, secure cookies (HttpOnly, Secure, SameSite), and cache directives " Debug and resolve issues related to HTTP errors (e.g., 500 errors), session management, and application behavior inconsistencies
Basic Qualifications: (what are the skills required to this job with minimum years of experience on each)
" Minimum 5+ years of experience in Java/J2EE development, including building and maintaining enterprise-level web applications
Strong proficiency in Core Java 8+, Spring MVC, EJB, Hibernate, and JPA
Familiarity with IBM WebSphere application server (preferred)
" At least 3+ years of hands-on experience in application security, including identifying and remediating vulnerabilities such as XSS, CSRF, IDOR, and session-related issues " At least 1+ year of experience working in Agile/Scrum environments, participating in sprint ceremonies and collaborative development
Travel: This position requires 3 days in office either in Charlotte, NC or Jerseycity, NJ. Preferred location is Charlotte, NC.
Degree: Bachelors in Computer Science or equivalent work experience
Since 1996, RJT has provided successful SAP, Oracle, and IT consulting solutions and staffing services to clients around the world. The new Apolis brings you the same personalized service fortified with a greater array of IT solutions, global expertise, and cost-management strategies.
We are a global IT consultancy that seamlessly integrates experts and leading-edge solutions into your organization so you can focus on what really matters.