• Home
  • Services
  • About Us
  • Locations
  • S3 Europe
  • S3 Americas
  • S3 Asia
  • Veterans
  • Media
  • Leadership
  • Find a Job

  • Senior Software Engineer (Ruby on Rails)

    STRATEGIC STAFFING SOLUTIONS (S3) HAS A OPENING!

    Strategic Staffing Solutions is currently looking for a Senior Software Engineer for a contract opportunity with one of our largest clients!

    Job Title: Senior Software Engineer (Ruby on Rails)

    Role Type: Fulltime/Direct Hire
    Location: Atlanta, Denver, West Palm Beach, or Chicago
    Pay:  $150,000 – $180,000/hr – Full Time
    Schedule:  Onsite

    Job Description:

    This position is for our client that is a growing specialty insurance broker and captive insurance company manager. This full-time employee will be responsible for working with the latest technologies and building innovative products for our resident liability clients. This candidate will work with Ruby on Rails for back-end development and has a strong understanding of relational databases like PostgreSQL.

    Essential Functions & Duties:

    • Work in a small team environment in full life cycle software development to architect, build, and maintain Ruby on Rails and React code
    • Assist with the management of applications to ensure performance, quality, and responsiveness.
    • Work with cross-functional teams to conceptualize, design, prototype, and implement new applications features and functionality
    • Build and maintain web apps and 3rd party integrations utilizing APIs and/or data mapping
    • Identify bottlenecks and bugs, and devise solutions to these problems
    • Participate in code reviews to maintain a high-quality code culture
    • Provide consultative advice to colleagues and clients
    • Other duties and special projects as required/needed

    Qualifications

    • MS/BS degree in Computer Science or Computer Engineering, and 5+ years relevant programming experience.
    • Strong knowledge of OOP and reusable coding practices
    • Solid understanding of object-oriented programming
    • Proficient in Ruby on Rails and experience with React and frontend development and JavaScript
    • Experience with PostgreSQL and a deep understanding of relational databases
    • Experience with creating database schemas that represent and support business processes
    • Experience with serverless environments, microservices, and RESTful APIs

    Skills & Abilities:

    • Strong interpersonal, verbal and written communication skills
    • Be a problem solver with independent critical thinking and attention to detail
    • Ability to adapt in a fast paced, evolving environment with a fluctuating workload
    • Ability to take direction, as needed, while also being able to work independently
    • Responsible, mature and professional with a positive attitude

    Salary & Benefits:

    • Salaried position with benefits package including, portion of Medical/Dental/Vision Insurance paid by company, 401K participation with matching contributions, PTO (paid company holidays and personal paid time off).

    “Beware of scams. S3 never asks for money during its onboarding process.”

    January 7, 2026

  • Penetration Tester

    STRATEGIC STAFFING SOLUTIONS HAS AN OPENING!

    This is a Contract Opportunity with our company that MUST be worked on a W2 Only. No C2C eligibility for this position. Visa Sponsorship is Available! The details are below.

    “Beware of scams. S3 never asks for money during its onboarding process.”

    Job Title: Penetration Tester
    Location: Denver, CO, 80237
    Onsite Work
    Contract Length: 6+ Months

    Job ref# 244560

    We are seeking an experienced Penetration Tester to conduct comprehensive security assessments of enterprise web applications. This role focuses on identifying exploitable vulnerabilities, validating the effectiveness of existing security controls, and delivering actionable remediation guidance to strengthen the organization’s application security posture within a regulated financial services environment.

    The ideal candidate combines strong hands-on technical testing skills with the ability to clearly communicate risk to both technical and executive stakeholders.

    Scope of Work

    • Perform scoped penetration testing on designated web applications and supporting components.
    • Identify, validate, and exploit vulnerabilities across:
      • Authentication and authorization mechanisms
      • Input validation and data handling
      • Session management
      • API endpoints and third-party integrations
      • Business logic and workflow flaws
    • Assess applications against OWASP Top 10 and other applicable security standards and best practices.
    • Conduct manual penetration testing, supplemented by automated tooling where appropriate.
    • Analyze and prioritize findings based on impact, exploitability, and likelihood, aligned with Western Union risk rating methodologies.
    • Collaborate with application, security, and engineering teams to clarify findings and remediation approaches.

    Reporting & Documentation

    • Produce comprehensive penetration testing reports that include:
      • Executive-level summary of risk and exposure
      • Detailed technical findings with clear reproduction steps
      • Proof-of-concept exploits or attack paths
      • Practical, prioritized remediation recommendations
    • Communicate results effectively to both technical and non-technical audiences.

    Required Qualifications

    • Proven experience conducting web application penetration testing in enterprise or regulated environments.
    • Strong working knowledge of:
      • OWASP Top 10
      • Common web vulnerabilities (SQL Injection, XSS, CSRF, authentication flaws, etc.)
      • Business logic vulnerabilities, particularly within financial services applications
    • Familiarity with secure coding practices and modern web frameworks.
    • Proficiency with industry-standard penetration testing tools, including:
      • Burp Suite
      • OWASP ZAP
      • Similar web application security testing tools
    • Demonstrated ability to produce clear, actionable security reports tailored to diverse audiences.

    Deliverables

    • Formal vulnerability assessment report with severity ratings and risk prioritization
    • Retesting and validation following remediation to confirm closure of identified issues

     

    January 6, 2026

© 2026 Strategic Staff. All rights reserved.