Java Software Engineer

We are seeking a highly experienced Java Developer to support a long-term engagement with the State of California. This role demands a seasoned engineer with expertise in Java, J2EE, Spring, Hibernate, and security-focused development practices. The ideal candidate will have strong experience leading Agile teams and integrating security into the full Software Development Life Cycle (SDLC).

This is a remote position, but candidates should be open to occasional coordination with teams in Sacramento, CA.

Key Responsibilities

🔧 Software Development & Architecture

• Lead design, development, and deployment of scalable enterprise applications.
• Develop in Java, J2EE, Spring, Hibernate, Angular, SQL, and HTML.
• Use MyEclipse, Maven, GitHub, Jenkins for development and CI/CD.
• Integrate with Adobe Experience Manager (AEM) for web content management.

🔐 Security & Vulnerability Remediation

• Perform static/dynamic scans using Veracode, SonarQube, SAST, DAST tools.
• Remediate OWASP Top 10 vulnerabilities (XSS, SQLi, CSRF, SSRF, etc.).
• Ensure compliance with NIST, ISO 27001, OWASP, and other security frameworks.
• Implement SCA to manage third-party dependencies.

📋 Leadership & Agile

• Lead development teams and act as Scrum Team Technical Lead.
• Facilitate sprint planning, daily stand-ups, backlog grooming.
• Work cross-functionally with BAs, DevOps, QA, and PMs.

✅ Testing & Quality Assurance

• Write unit tests using JUnit.
• Conduct security testing before deployment.
• Ensure performance, functionality, and security testing is automated and enforced.

Required Skills & Experience

• Bachelor’s Degree in CS, IT, or related field.
• 10+ years of software development experience.
• 5+ years in Java-based systems analysis, design, and EDP programming.
• 3+ years in application development leadership roles.
• Hands-on with:
• Java, J2EE, Spring, Hibernate, Angular, SQL, HTML
• Adobe AEM, Jenkins, Git, GitHub, MyEclipse, Maven
• Veracode, SonarQube, IBM Data Studio, Putty, ServiceNow
• JUnit, ASP.Net, Agile/Scrum methodologies

Preferred Skills

• DevSecOps experience, CI/CD integration with security tools.
• Familiarity with cloud security frameworks.
• Security certifications: CISSP, CEH, AWS Certified Developer.
• Scripting skills in Python, Bash, or PowerShell.