ImmunityBio, Inc. is looking for a Senior Developer, Applications - API to design and build business applications and support functions based upon identified business requirements and best practice. The role leads to the implementation of strategic business objectives with an emphasis on application architecture and applies advanced analysis skills and experience in principles of architecting, designing, demonstrating, and positioning. This position will help plan, coordinate, architect, and develop all activities related to the integration of software programs, applications, and third-party solutions as required to meet the business requirements of the organization.
Requirements
- Experience with API schema management tools like Swagger/OpenAPI, Postman, or Stoplight required.
- Experience with API Gateway platforms (e.g., AWS API Gateway, Kong, Apigee, NGINX) required.
- Experience with transport layer security (TLS), HTTPS, certificate pinning, and secure transmission of sensitive data required.
- Proficiency in at least one backend language or framework: Node.js, Python (Django/Flask/FastAPI), Java (Spring Boot), or C-Sharp (.NET Core).
- Deep understanding of REST, GraphQL, Webhooks, WebSockets, and gRPC.
- Knowledge of HTTP/HTTPS protocols, status codes, CORS, content negotiation, and idempotency.
- Proficiency working with OAuth 2.0, JWT, API keys, and secure token exchange mechanisms.
Responsibilities
- Design and implement end-to-end API integrations, including authentication, error handling, rate limiting, and retries.
- Build and maintain scalable, secure, and well-documented RESTful and GraphQL APIs for internal and external consumption.
- Evaluate and integrate with third-party APIs from partners, vendors, and platforms (e.g., Stripe, Salesforce, Shopify, AWS, Twilio).
- Adhere to secure coding practices and ensure all integrations adhere to security and compliance standards (e.g., OWASP Top 10, data encryption, access control).
- Conduct regular code audits and security reviews of API implementations, both internal and third-party.
- Design authentication and authorization flows using best practices such as OAuth 2.0, API tokens, and JWT with expiration/refresh strategies.
- Develop reusable integration patterns and middleware services to streamline future API work.
Other
- Bachelor’s degree in computer science, Engineering, or a related field with 5+ years of backend development experience with a strong focus on API architecture and integration required.
- Experience using static and dynamic analysis tools for security testing (e.g., Snyk, SonarQube, Burp Suite, OWASP ZAP) preferred.
- This position works in El Segundo, CA
- Regular work schedule is Monday – Friday, within standard business hours. Flexibility is available with manager approval.
- Must possess mobility to work in a standard office setting and to use standard office equipment, including a computer.
