Senior Technical Lead

HCLTech
yesterday

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Tech stack

Kubernetes Security
Java
JavaScript
Burp Suite
Code Review
Cross-Site Request Forgery
Key Management
Maven
Web Application Security
SonarQube
TypeScript
Sonatype
Cross-Site Scripting (XSS)
Backend
Gitlab
GIT
Vue.js
Material Design
Kubernetes
Front End Software Development
Docker
Static Application Security Testing
Dynamic Application Security Testing

Job description

Triage and remediate CVEs across frontend (pnpm/npm) and backend (Java/Maven) Perform root-cause analysis and implement well-tested fixes across the stack Harden vulnerabilities: XSS, CSRF, injection, secrets exposure, broken authentication, IDOR Extend GitLab security scanning to frontend build artefacts Collaborate with tech leads on security-sensitive code reviews Handle minor full-stack bugfixes to maintain delivery velocity Contribute to security incident post-mortems and documentation

Requirements

Strong experience in Java and TypeScript/JavaScript Hands-on experience with Vue 3/Nuxt or comparable frontend frameworks Understanding of web security: XSS, CSRF, injection, auth, dependency risks, secrets management Ability to interpret CVE advisories and implement fixes Knowledge of container security (Docker, Kubernetes basics) Experience with Git, GitLab CI/CD pipelines, Maven and pnpm Structured problem-solving with good documentation practices Other Requirements Good to Have Vuetify component library experience SAST/DAST tools (Snyk, SonarQube, OWASP ZAP) Content Security Policy (CSP) configuration pnpm workspace experience Ideal Profile

Versatile full-stack engineer with strong security mindset, capable of balancing secure coding practices with rapid delivery across modern web and backend architectures.

Apply for this position