1

Java Security Engineer Trainee Jobs in New York (NOW HIRING)

We're looking for the right engineer to make it happen. The Role: As our first dedicated ... Java or Rust is a bonus * Significant hands-on application security experience, ideally at a SaaS ...

Java AWS Engineer

Jersey City, NJ

$54 - $74/hr

Java Developer with AWS and CLOUD/Java AWS Engineer No of Openings :7 Position Type :Contract ... Security, Transactional Processing, and High Resiliency. -In depth knowledge of the AWS cloud ...

Staff Java Engineer (AI Focus)

New York, NY · Remote

$53 - $72.75/hr

Need AI experience The Staff Engineer I (Java) provides senior technical leadership for backend ... Collaborate with product, infrastructure, security, and data teams to ensure end‑to‑end ...

Java Developer

New York, NY · On-site

$55.75 - $72.25/hr

Java Developer Job Location: NYC, NY Job Type: Contract * Handson Coding design and testing of ... Hibernate, Java,Java SpringCloud,Microservices,Spring,Spring Security, SpringBoot, SpringMVC ...

next page

Showing results 1-20

Java Security Engineer Trainee information

What can a Java Security Engineer Trainee expect in terms of mentorship and collaboration with senior security engineers?

As a Java Security Engineer Trainee, you will typically work closely with experienced security engineers who provide mentorship and guidance on secure coding practices, vulnerability assessment, and security tool usage. You'll often collaborate with software developers, QA testers, and DevOps teams to identify and address security risks throughout the development lifecycle. Frequent code reviews, pair programming sessions, and security workshops are common, helping you build both technical skills and a strong security mindset. This team-oriented environment ensures you gain practical knowledge and grow steadily into more advanced security roles.

What are the key skills and qualifications needed to thrive as a Java Security Engineer Trainee, and why are they important?

To thrive as a Java Security Engineer Trainee, you need a strong understanding of Java programming, cybersecurity fundamentals, and secure coding practices, often supported by a degree in computer science or related fields. Familiarity with security tools such as OWASP ZAP, static code analyzers, and knowledge of frameworks like Spring Security is typically required, and certifications like CompTIA Security+ or Certified Ethical Hacker (CEH) are advantageous. Analytical thinking, attention to detail, and effective communication are crucial soft skills for identifying vulnerabilities and collaborating with development teams. These skills and qualifications are essential for building secure applications, mitigating risks, and ensuring compliance with security standards.

What does a Java Security Engineer Trainee do?

A Java Security Engineer Trainee assists in developing and implementing security measures for Java-based applications and systems. They learn how to identify vulnerabilities, apply security best practices, and use tools to protect software from threats. Trainees often work under the supervision of senior engineers, gaining hands-on experience in secure coding, code reviews, and compliance with security standards. Their role helps ensure that applications are robust against cyber attacks and data breaches.
What job categories do people searching Java Security Engineer Trainee jobs in New York look for? The top searched job categories for Java Security Engineer Trainee jobs in New York are:
What cities in New York are hiring for Java Security Engineer Trainee jobs? Cities in New York with the most Java Security Engineer Trainee job openings:
Senior Application Security Engineer

Senior Application Security Engineer

Tatari

New York, NY • On-site

$165K - $190K/yr

Full-time

Medical, Retirement, PTO

Posted 3 days ago


Job description

Tatari is on a mission to revolutionize TV advertising. Founded in 2016 to help transform the antiquated world of TV advertising through the intelligent application of AI and machine learning, Tatari helps some of the world's fastest growing brands including Chime, Calm, Tecovas, Manscaped, Saatva, and Liquid I.V., reach their customers using linear and streaming TV ads. Our platform combines sophisticated media buying with proprietary analytics to turn TV advertising into an automated, digital-like experience, enabling businesses of any size to advertise on TV.
That approach has earned Tatari broad industry recognition, including being named Best CTV AdTech Platform in the 8th annual MarTech Breakthrough Awards, as well as honors from Digiday (Best Connected TV Platform), AdExchanger (Most Innovative TV Advertising Technology), and Business Insider (Hottest AdTech Companies). Tatari has also been recognized as the Best Place to Work by Inc. Magazine. Backed by an executive team of former founders and senior leaders from companies including Shazam, TrueCar, AdapTV, LiveRail, Amazon, Google, Meta, Microsoft, and Yahoo, Tatari continues to scale rapidly as TV advertising enters its next major era.
We're a late-stage AdTech company with a recently attained SOC2 Type II attestation, and a clear mandate to mature our security and privacy posture.
We're looking for the right engineer to make it happen.
The Role:
As our first dedicated Application Security Engineer, you will define the security architecture for everything we ship. You will work directly with our Engineering teams to identify vulnerabilities, design mitigations, and build the tooling and automation that makes secure development the path of least resistance. You will report to the Head of Security as a key technical contributor to Tatari's Security program.
You write production-quality code. You think like an attacker. And you know how to bring engineers along with you.
Responsibilities:
  • Design and execute greenfield AppSec initiatives across Tatari's SaaS platform from threat modeling to remediation
  • Build and maintain security automation integrated into CI/CD pipelines and manage software supply chain risk
  • Own container security across build and runtime
  • Develop internal tooling and libraries that make secure coding easier for application engineers
  • Own SAST/DAST/SCA tooling: selection, tuning, CI/CD integration, and triage
  • Conduct application security reviews and threat models for new features and architectural changes
  • Identify and remediate vulnerabilities across APIs, services, and data pipelines
  • Partner with Engineering teams to establish secure coding standards and provide hands-on guidance
  • Assess and mitigate LLM-introduced risks in product features
  • Integrate agentic tooling into AppSec workflows to reduce toil
  • Contribute to security incident response when application-layer issues are involved

Qualifications:
  • Production Python experience with the engineering depth to review code meaningfully and build security tooling; Java or Rust is a bonus
  • Significant hands-on application security experience, ideally at a SaaS company, including working knowledge of established standards (OWASP Top 10, API Security Top 10, ASVS, SPVS, AISVS) and how common vulnerability classes manifest in production systems
  • Threat modeling experience with Product and Engineering teams
  • Experience building security tooling or automation (scripts, pipelines, libraries)
  • Familiarity with AWS and Kubernetes security controls as they relate to application-layer risks
  • Working knowledge of how LLMs introduce new attack surfaces and how to mitigate them, with practical experience using AI tools in security or engineering workflows
  • Demonstrated experience reviewing API designs and implementations for auth anti-patterns, token mismanagement, injection risks, and sensitive data exposure
  • Track record embedding with Engineering teams: code review, design consultation, and standards definition
  • Experience building or maturing an AppSec program where coverage, tooling, or process needed to be defined from scratch

Benefits:
  • Total compensation ($165,000-$190,000)
  • Equity compensation
  • Health insurance coverage for you and your dependents
  • 401K, FSA, and commuter benefits
  • $150 monthly spending account
  • $1,000 annual continued education benefit
  • $500 Newbie Productivity Perk
  • Unlimited PTO and sick days
  • Monthly Company Wellness Day Off
  • Snacks, drinks, and catered lunches at the office
  • Team building events
  • Hybrid RTO of 2 days per week in office.

At Tatari, we believe in the importance of cultivating teams with diverse backgrounds and offering equal opportunities to all. We strive to create a welcoming, inclusive environment where every team member feels valued and diversity is celebrated.
#LI-HYBRID