Java Developer-DevSecOps

Title

Java Developer - DevSecOps

Experience

6–8 years

Work Style

Hybrid (3 days/week)

Primary Responsibilities

Support migration of Java applications across clusters/environments (Kubernetes, OpenShift).

Identify, analyze, and remediate security vulnerabilities flagged during migration (SAST, DAST, container scans, dependency checks).

Address vulnerabilities in Java libraries, third-party dependencies, application configurations, and container/runtime environments.

Collaborate with Security, DevOps, and Infrastructure teams to ensure compliance with organizational security standards.

Refactor or upgrade Java application components (Java versions, frameworks, libraries) as required.

Validate application stability and performance post-migration.

Document migration and remediation activities for operational transparency.

Required Skills & Experience

Strong hands-on experience with Java (8–11 preferred) and enterprise Java applications.

Experience with application migration between clusters or environments.

Proven expertise in remediating security vulnerabilities in Java applications.

Familiarity with security scanning tools (SonarQube, Checkmarx, Fortify, OWASP Dependency Check).

Understanding of containerized applications and orchestration platforms (Kubernetes, OpenShift).

Knowledge of CI/CD pipelines and DevSecOps practices.

Good understanding of OWASP Top 10 vulnerabilities and secure coding principles.

Good to Have

Experience with Spring Boot frameworks.

Background in banking or regulated environments.

Familiarity with cloud platforms (AWS, Azure, GCP).

Exposure to cluster networking, ingress, and configuration management.