Build secure, scalable backend solutions that protect the world's leading financial institutions.
The Role
Capco is looking for an experienced Backend Developer with strong Java and Spring expertise who has delivered secure backend applications and worked on security vulnerability remediation initiatives. You'll play a key role in designing, developing, and strengthening enterprise backend platforms, ensuring security is embedded throughout the software development lifecycle.
Working alongside talented engineers, architects, and security specialists, you'll help deliver resilient, high-performing applications that safeguard sensitive customer and financial data while supporting large-scale digital transformation programmes.
What You'll Do
- Design, develop, and maintain secure backend applications using Java, Spring Boot, and modern microservices architecture.
- Identify, remediate, and prevent security vulnerabilities including SQL Injection, CSRF, XSS, insecure secrets management, and exposure of sensitive information.
- Build and secure REST APIs using authentication, authorization, encryption, and industry-standard security controls.
- Partner with engineering, architecture, and cybersecurity teams to improve backend architecture, security posture, and application resilience.
- Champion secure coding practices, code reviews, and continuous improvement across the software development lifecycle.
What We're Looking For
- Strong commercial experience developing backend applications using Java, Spring Boot, and RESTful APIs.
- Experience working on application security initiatives, vulnerability remediation projects, or secure software development within enterprise environments.
- Strong understanding of backend security fundamentals including authentication vs. authorization, CSRF protection, SQL injection prevention, secure secrets management, XSS mitigation, and protection of personally identifiable information (PII).
- Experience designing or supporting secure microservices architectures, including secure service-to-service communication and API security.
- Strong communication and collaboration skills with the ability to work effectively across multidisciplinary engineering teams.
Bonus Points For
- Experience working within financial services or other highly regulated industries.
- Knowledge of OAuth2, OpenID Connect, JWT, TLS, mTLS, or API gateway security.
- Experience with cloud platforms such as AWS, Azure, or Google Cloud and their security services.
- Familiarity with DevSecOps practices, CI/CD security scanning, and automated vulnerability management.
- Security-related certifications such as CSSLP, Security+, AWS Security Specialty, or similar.
Pay Transparency
The salary range for this position is listed below. Additionally, this position may also be eligible to receive an annual discretionary/variable bonus payment.
Capco is committed to providing fair and equitable compensation to our people. Our compensation policies and salary ranges are designed to allow our people to progress through the salary range as they demonstrate strong performance and develop in their role over time. The base pay offered to selected candidates will be within the salary range and the placement will vary based upon a variety of factors, including, but not limited to job-related knowledge, skills, experience and internal equity.
Skills Required
- Commercial experience developing backend applications using Java and Spring Boot
- Experience building and maintaining RESTful APIs
- Experience working on application security initiatives or vulnerability remediation projects
- Strong understanding of backend security fundamentals (authentication vs authorization, CSRF protection, SQL injection prevention, secure secrets management, XSS mitigation, PII protection)
- Experience designing or supporting secure microservices architectures and secure service-to-service communication
- Strong communication and collaboration skills to work across multidisciplinary engineering teams
- Experience working within financial services or other highly regulated industries
- Knowledge of OAuth2, OpenID Connect, JWT, TLS, mTLS, or API gateway security
- Experience with cloud platforms (AWS, Azure, Google Cloud) and their security services
- Familiarity with DevSecOps practices, CI/CD security scanning, and automated vulnerability management
- Security-related certifications (e.g., CSSLP, Security+, AWS Security Specialty)
Capco Compensation & Benefits Highlights
-
Healthcare Strength — Health, dental, and vision coverage are described as solid with low copays and a good variety of choices, complemented by mental‑health resources, an EAP, and wellbeing events. Company materials emphasize global availability of these supports.
-
Parental & Family Support — Enhanced maternity, paternity, adoption, and shared parental leave are highlighted, with several months of maternity leave noted in the U.S. in some accounts. Additional paid leave is called out for life events such as pregnancy loss, fertility treatment, menopause, and bereavement.
-
Wellbeing & Lifestyle Benefits — A global wellbeing program, coaching/mentoring, mental‑health initiatives, and wellness reimbursements (e.g., gym, fitness) are positioned as core parts of the offering. Flexible working is emphasized alongside regionally tailored wellbeing events.
Capco Insights
What We Do
Capco, a Wipro company, is a global management and technology consultancy specializing in driving transformation in the energy and financial services industries. Capco operates at the intersection of business and technology by combining innovative thinking with unrivalled industry knowledge to fast-track digital initiatives for banking and payments, capital markets, wealth and asset management, insurance, and the energy sector. Capco’s cutting edge ingenuity is brought to life through its award-winning Be Yourself At Work culture and diverse talent. TRUSTED ADVISORS - Our collaborative and entrepreneurial approach position us as trusted long-term partners to our clients. DEEP EXPERTISE - Clients look to us for clear guidance, proven expertise, and the support they need to set their companies up for success. DISRUPTIVE SOLUTIONS- We do not provide off -the-shelf answers to clients’ challenges. Instead, we work in close collaboration to understand the issues, and craft disruptive, bespoke solutions. ACCOUNTABILITY AND OWNERSHIP - We recognize every client has distinct needs and expectations, and we take ownership and accountability for the solutions we design, build, and deliver.
Why Work With Us
We support and encourage an inclusive culture, entrepreneurial outlook and independent thinking. Capco is not about organizational charts and rigid hierarchies – we want all employees to feel that Capco is their firm to own and run. We believe diversity powers innovation. Be Yourself At Work (#BYAW) is an integral and underlying part of our culture
Gallery
Capco Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.







































