23 of 23 Static Code Analysis Jobs

a team of talented engineers to turn an idea into a market-leading product. You'll work hands-on with high-calibre engineers, collaborating and innovating side-by-side. Static code analysis will be a key driver of quality and reliability at every level, helping you build solutions that scale and set new standards in AI integrity … and security. Responsibilities Work hands-on with engineers to deliver AI-driven products with precision. Collaborate across teams in a startup environment focused on quality and rapid iteration. Apply static code analysis to ensure code quality, reliability and security. Contribute to architecture and development decisions in a fast-paced, data-informed context. Be prepared to work … on-site in a vibrant, creativity-driven environment. Qualifications Expertise in AI or static code analysis. Experience leading data teams in fast-paced, data-centric environments. Ability to switch between high-level strategic discussions with executives and deep technical discussions with the team. Demonstrated track record of delivering AI-driven products with clean, sustainable code. Benefits & Notes Competitive More ❯

using agile methodologies to deliver robust solutions Implement and manage CI/CD pipelines and automated testing to ensure delivery efficiency and quality Apply best practices in source control, static code analysis, and software design patterns Support cloud deployment, containerization, and infrastructure automation as part of continuous improvement efforts Skills & Experience: Proficiency in programming languages such as … JavaScript, Java, .Net, or Python Experience with version control systems like Git and CI/CD tools including Jenkins, Bamboo, or TeamCity Familiarity with automated testing frameworks and static code analysis tools such as SonarQube Knowledge of cloud platforms (AWS, Azure), container technologies (Docker, Kubernetes), and infrastructure automation (Ansible) is advantageous Security Clearance (SC clearance) required due More ❯

infrastructure. Our projects deliver transformative improvements in operational efficiency and safety, earning high respect and trust from our customers. Essential Background in Software Testing and/or Software development. Static code analysis experience or experience with Formal Methods( SPARK, ADA, Z language) Experience in working safety critical environment, particularly in the nuclear industry. Experience with Spark/… Desirable Degree qualified in software engineering or related/relevant subject. Experience in at least one of the following markets: aerospace, transport, defence, rail, automotive Knowledge and experience in static analysis techniques More ❯

technology products in a secure, stable, and scalable way.Your advanced technical skills and experience will contribute to modernizing our technology ecosystem, through a SOA approach of delivering high-quality code, efficient system performance, and seamless integration within our Enterprise Applications. This role is a working lead position and is responsible for providing technical lead and guidance activities to peers … technical guidance and direction in one or more areas of API Development, Cloud Native software solution design and delivery to meet enterprise objectives. Establish software engineering best practices, performing code reviews and providing guidance on Devops delivery model. Drive decisions that influence the software design, application functionality, security, scalability and technical implementation of solutions. Create maintainable, adaptable, scalable, defect … free code using software development best practices and coding standards (i.e. software reuse, refactoring, CI/CD, test automation, secure development, TDD, static code analysis, peer/code review). Build automation testing to incorporate into our pipelines for more efficient test execution and ensure quality delivery of code. Proactively identifies hidden problems and patterns More ❯

CD pipelines that cover all software lifecycle phases: planning, development, building, testing, releasing, deploying, and monitoring. Implement quality gates at each phase to ensure that only compliant and secure code moves forward in the process. Implement robust code repository management strategies, including version control, branching, and merging processes to maintain code integrity and support multiple development workflows. … Utilize configuration management tools to track and manage changes across environments and components, ensuring consistency. Maintain automated build processes that trigger based on code commits or other triggers, integrating static code analysis and continuous inspection to catch issues early. Integrate automated testing (unit, integration, and functional) within the pipeline to ensure high code quality and … security. Enforce quality and security standards via continuous testing, inspection, and static analysis. Enhance collaboration and accelerate feedback loops to promote rapid and reliable software delivery. Continuously refine and update security measures as part of operational monitoring and response. Foster collaboration between developers, operations teams, and security experts to deliver secure, resilient software systems. Successful applicants will be required More ❯

external datasets, ensuring performance and reliability. Collaborate with cross-functional teams to design and implement software solutions. Support CI/CD pipelines and contribute to automation efforts. Participate in code reviews, testing, and documentation. In addition to deep technical expertise, you will bring excellent problem solving, communication and teamwork skills, along with agile ways of working, strong desire to … to communicate effectively with technical and non-technical stakeholders. Willingness to learn and adapt in a dynamic environment. Software development processes (Python, Java, React, JavaScript, SQL, Shell, Infrastructure-as-Code, Configuration-as-Code) Issue tracking and versioning (Jira) Package managers (pip, npm) Build tools (Gradle, Maven) Containers (Docker, Kubernetes) Strong verbal communication skills to address both the development … CD orchestration tools (Jenkins, GitHub Actions) Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges. Familiarity with application security domains (static code analysis, SAST, DAST, SCA, xSPM) Financial Industry experience - PGIM Ireland is proud to be an equal opportunity employer and is committed to equal employment opportunity regardless More ❯

developing and deploying software in a DoD environment (DISA experience is a plus), including experience building and deploying software applications that meet DoD security standards and updating applications and code to meet security scans and security implementation guidelines (e.g. STIGs). Experience with Atlassian tools, including Bitbucket integrations with JIRA and Confluence. Experience integrating code review systems into … the SCM process. Experience with static code analysis, particularly security scans. Experience working remotely with a geographically dispersed team. Experience working as part of an Agile software development team. Ability to commute to a DISA site (Scott or Meade) as needed. For more information please Contact Us Or send an email to More ❯

protocols seamlessly into the software development lifecycle. Design, build, and maintain CI/CD pipelines incorporating automated security testing, vulnerability assessments, and compliance checks. Develop and manage infrastructure as code (IaC) configurations, ensuring secure and scalable cloud resources and infrastructure. Conduct security assessments, code reviews, and penetration testing to identify and resolve application, code, and infrastructure vulnerabilities. … CI/CD, Artifactory, SonarQube, Selenium, and Prisma Cloud. Extensive experience securing cloud-based applications, especially on AWS, with familiarity in Azure and GCP. Advanced expertise with infrastructure as code tools, including Terraform, CloudFormation, or Ansible. Strong scripting skills in languages such as Python and Bash for automation and integration. Proficiency with static code analysis, dynamic More ❯

performance What You'll Bring Solid scripting experience (e.g. PowerShell, Python, or similar) Experience in one or more programming languages (C#, Java, or Python) Strong understanding of Infrastructure as Code using tools like Terraform , Ansible , or equivalent Containerisation knowledge ( Docker ) and orchestration experience ( Kubernetes , Docker Swarm, etc.) CI/CD pipeline experience (preferably TeamCity ) Familiarity with SQL Server and … a proactive, problem-solving attitude Financial services experience is a plus but not required Nice-to-Have Experience Atlassian tools (JIRA, Bitbucket) Artifactory or similar artefact storage Octopus Deploy Static code analysis tools (e.g. SonarQube) Control-M job scheduling Cloud platform experience (Azure, AWS, GCP) VMware (vSphere) and SAN storage Why Join Us? Impact from day one More ❯

Tower 1, Suite 900, McLean VA 22102 USA +1 Principal Responsibilities: • Design, implement and maintain multiple DevOps pipelines • Implement CD & CI solutions to support rapid development and integration • Integrate static code analysis and other security mechanisms into pipeline • Design and apply hybrid deployment strategy (cloud and local virtualized) • Work with software and system engineers to apply automated More ❯

Tower 1, Suite 900, McLean VA 22102 USA +1 Principal Responsibilities: • Design, implement and maintain multiple DevOps pipelines • Implement CD & CI solutions to support rapid development and integration • Integrate static code analysis and other security mechanisms into pipeline • Design and apply hybrid deployment strategy (cloud and local virtualized) • Work with software and system engineers to apply automated More ❯

SDLC: requirements, design, implementation, testing, and maintenance Lead independent technical investigations and recommend solutions to integrate new capabilities Develop and maintain Java-based software, including documentation, unit tests, and static code analysis remediation Review and improve code quality through peer feedback and best practice implementation Collaborate with geographically distributed development teams Deliver high-quality software on More ❯

and component frameworks (Bootstrap, Material, Quasar) • Exposure to Linux/Windows system administration, Docker, Kubernetes, and containerized application development • Familiarity with C2 Systems, DoD STIGs, secure coding practices, and static code analysis (SonarQube, Fortify) • Knowledge of databases, performance testing, debugging, and Atlassian Suite (JIRA, Confluence, Bitbucket) • Ability to apply math/statistics to algorithms • Background in military … experts building DoD's next-generation C2 capabilities • Mission Readiness - Contribute to sustainment and modernization of GCCS-J, a program critical to joint operations worldwide • Purpose-Driven Work - Your code directly supports U.S. and allied defense operations across multiple domains More ❯

databases and backend logic for high performance, scalability, and cybersecurity compliance • Apply and lead secure coding practices aligned with DoD cybersecurity standards • Lead Selenium-based automated testing, conduct peer code reviews, and mentor junior developers • Collaborate with cybersecurity, systems engineering, and DevSecOps teams to transform mission requirements into secure software solutions • Document system architecture, workflows, and audit-traceable development … using Java, JavaScript, HTML, and CSS Building, deploying, and maintaining web applications in DoD or secure classified environments Utilizing GitLab CI/CD, WebLogic, and Nexus Repository for secure code delivery Implementing cybersecurity with Fortify, SonarQube, and DoD software compliance Selenium for automated UI and regression testing • Strong leadership and mentoring ability within Agile/Scrum teams • Proficient in … secure SDLC practices, configuration management, and technical documentation Preferred Qualifications • Experience with Kubernetes orchestration, containerization, and Helm/Helm Charts • Deep proficiency in GitLab DevOps pipeline automation • Familiarity with static code analysis, vulnerability remediation, and WebLogic Java deployments • Leadership in Agile/Scrum environments, technical mentorship, and secure code reviews • Background or familiarity with AI/ More ❯

Designing and building Proof of Concept and Production systems collaboratively Source control (e.g. Git, Mercurial, Perforce) CI/CD tools (e.g. Bamboo, Jenkins, TeamCity, Bitbucket) Automated testing frameworks and static code analysis tools (e.g. SonarQube) Agile methodologies (Scrum, Kanban, Lean) Desirable Skills Cloud platforms: AWS, Azure Containerisation: Docker, Kubernetes Machine Learning frameworks (AWS/Azure ML, TensorFlow More ❯

proof-of-concept or production systems Experience with Version Control Systems (e.g., Git, Mercurial, Perforce) Utilising CI/CD tools such as Bamboo, Jenkins, TeamCity, Bitbucket Automated testing and static code analysis (e.g., SonarQube) Agile team experience (Scrum, Lean, Kanban) Familiarity with common software design patterns Additional experience in machine learning, cloud computing (AWS/Azure), containerisation More ❯

or Production systems collaboratively Using version control systems (e.g. Git, Mercurial, Perforce) Working with CI/CD tools (e.g. Bamboo, Jenkins, TeamCity, Bitbucket) to streamline delivery Automated testing and static code analysis (e.g. SonarQube) to ensure quality It would be great if you also had experience with: Machine learning frameworks (e.g. TensorFlow, AWS/Azure ML) Cloud More ❯

systems Manage backend databases with a focus on performance, cybersecurity, and data integrity Implement secure coding practices aligned with DoD compliance standards using tools like Fortify and SonarQube Conduct code reviews, testing, and debugging within Agile development teams Document system architecture and workflows to ensure audit readiness Collaborate with systems engineers, cybersecurity teams, and program managers to deliver mission … Science, Software Engineering, or a related field Active Interim Top Secret security clearance required Hands-on experience with: Java, JavaScript, HTML, CSS for full stack development Secure coding practices, static code analysis with Fortify and SonarQube Agile/Scrum methodologies and full software development lifecycle (SDLC) GitLab CI/CD, WebLogic, and Nexus Repository for DevOps and More ❯

in test, staging and production environments. • Work with customers and requirements analysts to understand and gather application requirements. • Provide production support to end users. DESIRED EXPERIENCE • Experience with Fortify Static Code Analysis (SCA) to perform security scans of code, analyze security vulnerability findings and remediate, as necessary. • Experience as a BI (Business Intelligence) Engineer/Developer More ❯

architecture and functional software. • Develop prototypes, system models, and software architecture frameworks aligned with MBSE (Model-Based Systems Engineering) and Modular Open System Approaches (MOSA). • Conduct rigorous systems analysis to optimize performance, improve operations, and recommend enhancements in workflows, policies, or procedures. • Ensure software security and assurance by applying cybersecurity best practices and aligning deliverables with Public Laws … collaborate with stakeholders and cross-functional teams at all levels. • Prior experience supporting Department of Defense (DoD) or federal IT systems is highly preferred. • Familiarity with secure coding standards, static code analysis tools, and vulnerability mitigation techniques is a plus. • Experience working within Agile, DevSecOps, or Cloud-native software development environments is strongly preferred. • Due to the More ❯

from the iAssure templates for all RMF families Process and submit Plans of Action and Milestones (POA&Ms) Ensure DISA STIGs/SRGs are implemented and enforced Perform Risk Analysis and Vulnerability Assessments Perform annual security reviews in accordance with FISMA reporting Review PPS, HW/SW listings, NSS checklists (all A&A artifacts) Minimum Requirements: An active Secret … etc. Experience in DevSecOps and conducting end-to-end security testing of Applications (Web, Mobile, other APIs) Experience with industry standard tools such as Fortify, Checkmarx, and practices for code reviews, static/dynamic code analysis, and vulnerability assessments Knowledge of OWASP Top 10, SANS 25, NVD, CVE, etc. Experience with code languages and frameworks More ❯

and platform teams, youll help automate security processes, lead threat modelling exercises, and continually improve the organisations application security posture. Key Responsibilities Secure Development Lifecycle (SDLC) Experience working with static and dynamic code analysis tools (SAST, DAST) is essentialwhile you dont need to have set them up, you should have collaborated with developers to ensure code … pipeline. Integrate security controls into CI/CD pipelines and development workflows. Manage and monitor SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle. Conduct secure code reviews and support remediation efforts. Threat Modelling & Architecture Review Requirements (Primarily Essential) 2+ years of experience in application security or secure software development. Strong knowledge of OWASP Top More ❯

monitor cybersecurity tools including HBSS/ESS, Splunk, and ConfigOS on Windows and RHEL systems. Support the implementation of Risk Management Framework (RMF) controls (NIST 800-53). Perform static and dynamic code analysis using tools such as Fortify. Support and lead cyber test and evaluation, including risk/threat assessments and tabletop exercises. Document System Security More ❯