Branch is looking to secure its platform by designing and implementing security-focused systems, tools, and patterns directly in code.
Requirements
- 5+ years of software engineering experience, with 3+ years focused on security-related initiatives
- 2+ years working with Keycloak
- Strong programming skills in Java; working experience or willingness to learn Go
- Deep understanding of application and service security, including the OWASP Top 10 and secure service design
- Familiarity with OAuth 2.0, OpenID Connect, and SAML-based authentication
- Experience building secure RESTful APIs and working with Spring Security
- Solid grasp of GCP services and cloud security best practices
- Experience integrating security into CI/CD pipelines
Responsibilities
- Design and implement secure architecture patterns, libraries, and tools across our Java and Go services
- Identify and mitigate security risks through design reviews, code reviews, and threat modeling
- Integrate security automation into CI/CD workflows (e.g., static analysis, secrets scanning, dependency checks)
- Improve authentication, authorization, and service-to-service communication standards
- Promote secure coding practices across teams through collaboration and guidance
- Support compliance and incident response from a technical engineering perspective
Other
- Strong communication skills and ability to collaborate across engineering, operations, and risk teams
- BS in Computer Science or equivalent experience
- Must be currently authorized to work in the USA without sponsorship or transfer.
- No third-parties, please.
