1 to 25 of 50 Static Code Analysis Jobs

Systems. Familiar with Architecting, Designing, Implementing, Integrating, Verifying and Qualifying Safety-Critical Embedded Real Time Software running on various RTOS (VxWorks, Integrity, Real Time Embedded Linux). Familiar with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, Fortify, AND/OR SonarQube Familiar with Software Change Control, Change Management, and CI/CD tools. … levels of employees and management. Experience with Agile Software Development, object-oriented architectures, designs, programming, debugging, and hardware-software integration and testing. Experience with Software Change Control, Change Management, Code Quality, Static Analysis, and CI/CD tools such as: Atlassian tool suite, Jira, GitHub, GitLab, SonarQube, Coverity, AND/OR Jenkins Experience architecting, Designing, Modeling (Rhapsody … OR Real Time Embedded Linux. Experience with DOORs AND Software Requirement Specification Testing using Simulators, automated scripting languages such as Python, MATLAB, JavaScript, AND/OR Bash. Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, Fortify, AND/OR SonarQube Experience with software network interfaces and troubleshooting networks (TCP/IP, UDP More ❯

/or other industry security hardening guidance Validate technical security controls are in place for operating systems, applications, network appliances, and recommend enhancements Analyze, track, and document disposition of static code analysis scan results Perform and analyze results of Assured Compliance Assessment Solution (ACAS) scans to identify weaknesses and develop operational plans to remediate or mitigate weaknesses … knowledge with Python/PowerShell/Bash Scripting Desired Qualifications: Experience in Linux System Administration Familiarity with STIG/SCAP Familiarity with IAVMs Experience managing Cisco switches Familiarly with static code analysis/dynamic analysis (Tools: Parasoft, Coverity, Fortify) Familiarity with C/C CS More ❯

Sr. Principal Software Engineer to serve as a System Security Software Assurance Engineer, Level 4. You will be responsible for helping lead a team of engineers focused on system analysis efforts, generation of structured requirements, decomposition strategies, and mitigations. This position can be located in Huntsville, Alabama or Roy, Utah and may offer a competitive relocation package Additional Responsibilities … include: Assessment and analysis of threats, vulnerabilities, and risk for identified mission-critical functions and critical components. Support courses of action based on knowledge and experience, initiative, guidance, and established regulations and policies. Contributes to program plans, goals, objectives, and milestones to for Software & Hardware Assurance Participate in a variety of working groups and customer meetings; ensure communication of … have a current IAT level II (or higher) certification (i.e. Security+). Experience in a Software/System Security role. Experience with Software Test/Development and use of static code analysis tools. Ability to debug existing software and correct defects. Solid experience utilizing the C based programming languages. Experience with source code management (git, bitbucket More ❯

Must be able to support an in-person/closed-area work environment Preferred Qualifications: Highly experienced with Linux, scripting, and operations Experience with automated software requirements testing and analysis Experience with the battle management and or fire control systems Experience with containerization technologies (e.g., Docker, Kubernetes) and container orchestration. Experience with Behavior Driven Development (BDD) using tools like … Gherkin and Cucumber for automated acceptance testing Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, Fortify, AND/OR SonarQube Experience developing software in an Model Based Systems Engineering (MBSE) environment. Experience with CI/CD, containers, and pipelines. Experience with Software Change Control, Change Management, Code Quality, Static Analysis More ❯

Must be able to support an in-person/closed-area work environment Preferred Qualifications: Highly experienced with Linux, scripting, and operations Experience with automated software requirements testing and analysis Experience with the battle management and or fire control systems Experience developing and deploying containerized applications in distributed environments. Experience with Behavior Driven Development (BDD) using tools like Gherkin … and Cucumber for automated acceptance testing Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, Fortify, AND/OR SonarQube Experience developing software in an Model Based Systems Engineering (MBSE) environment. Experience with CI/CD, containers, and pipelines. Experience with Software Change Control, Change Management, Code Quality, Static Analysis More ❯

that meets system performance and functional requirements Assist with developing and executing integration test procedures for software components Practice software quality through the use of tools or processes (e.g. static code analysis, code coverage, peer programming) Contribute to project software documentation Develop software in accordance with a structured software development methodology (e.g. Agile, Spiral, Extreme, etc. … interface/integration problems, system bottlenecks, data flow issues) Perform system or sub-system level integration and testing Conduct a peer review of the project's software design and code Develop and deliver technical presentations or demonstrations to customers or stakeholders. Develop estimate of resources and schedule required to implement system/component level software. Recommend software processes or … standards that enhance software development efficiency or productivity Provide technical guidance or mentorship to software engineering personnel Perform an analysis of alternatives and recommend the application of appropriate technologies that meet system performance or functional requirements Serve in a leadership role providing guidance and direction to a software development team in a program or perform independent research to analyze More ❯

technology products in a secure, stable, and scalable way.Your advanced technical skills and experience will contribute to modernizing our technology ecosystem, through a SOA approach of delivering high-quality code, efficient system performance, and seamless integration within our Enterprise Applications. This role is a working lead position and is responsible for providing technical lead and guidance activities to peers … technical guidance and direction in one or more areas of API Development, Cloud Native software solution design and delivery to meet enterprise objectives. Establish software engineering best practices, performing code reviews and providing guidance on Devops delivery model. Drive decisions that influence the software design, application functionality, security, scalability and technical implementation of solutions. Create maintainable, adaptable, scalable, defect … free code using software development best practices and coding standards (i.e. software reuse, refactoring, CI/CD, test automation, secure development, TDD, static code analysis, peer/code review). Build automation testing to incorporate into our pipelines for more efficient test execution and ensure quality delivery of code. Proactively identifies hidden problems and patterns More ❯

CD pipelines that cover all software lifecycle phases: planning, development, building, testing, releasing, deploying, and monitoring. Implement quality gates at each phase to ensure that only compliant and secure code moves forward in the process. Implement robust code repository management strategies, including version control, branching, and merging processes to maintain code integrity and support multiple development workflows. … Utilize configuration management tools to track and manage changes across environments and components, ensuring consistency. Maintain automated build processes that trigger based on code commits or other triggers, integrating static code analysis and continuous inspection to catch issues early. Integrate automated testing (unit, integration, and functional) within the pipeline to ensure high code quality and … security. Enforce quality and security standards via continuous testing, inspection, and static analysis. Enhance collaboration and accelerate feedback loops to promote rapid and reliable software delivery. Continuously refine and update security measures as part of operational monitoring and response. Foster collaboration between developers, operations teams, and security experts to deliver secure, resilient software systems. Successful applicants will be required More ❯

to optimize performance Configure ingest data management components in the cloud platform, such as Apache Kafka, NiFi, FTP, or API gateway Communicate with data owners and conducts research/analysis on data sets to prepare ingest strategies based upon data structure, size, frequency, and other sharing requirements Architect integration solutions to synchronize business data between multiple endpoints Create maintainable … adaptable, scalable, defect free code using software development best practices and coding standards i.e. software reuse, refactoring, continuous integration, test automation, secure development, TDD, static code analysis, peer/code review Develop business rules that will be implemented in the services layer. Required qualifications to be successful in this role: . Bachelor's Degree - experience More ❯

protocols seamlessly into the software development lifecycle. Design, build, and maintain CI/CD pipelines incorporating automated security testing, vulnerability assessments, and compliance checks. Develop and manage infrastructure as code (IaC) configurations, ensuring secure and scalable cloud resources and infrastructure. Conduct security assessments, code reviews, and penetration testing to identify and resolve application, code, and infrastructure vulnerabilities. … CI/CD, Artifactory, SonarQube, Selenium, and Prisma Cloud. Extensive experience securing cloud-based applications, especially on AWS, with familiarity in Azure and GCP. Advanced expertise with infrastructure as code tools, including Terraform, CloudFormation, or Ansible. Strong scripting skills in languages such as Python and Bash for automation and integration. Proficiency with static code analysis, dynamic More ❯

enterprise applications built on Java, .NET, and Spring Boot, with a strong emphasis on microservices, Kafka, and API integrations. The ideal candidate will play a key role in ensuring code quality and test coverage within our CI/CD ecosystem, collaborating closely with developers and DevOps teams. Key Responsibilities • Design, implement, and maintain unit tests for backend services and … CI/CD pipelines using Azure DevOps and Git. • Ensure unit-level test coverage for REST and SOAP APIs. • Analyze test results, debug failures, and assist in root cause analysis and defect resolution. • Document test strategies, test coverage metrics, and reusable unit testing components. Required Skills & Experience • 8-10 years of experience in software testing with a strong focus … APIs and approaches for unit-level validation. • Experience with mocking frameworks and service virtualization tools. • Experience working in Agile development environments with cross-functional teams. Preferred Qualifications • Experience with static code analysis and test intelligence tools (e.g., SonarQube, Codacy). • Familiarity with test management and automation tools, including TOSCA and qTest • Exposure to containerized environments using Docker More ❯

databases and backend logic for high performance, scalability, and cybersecurity compliance • Apply and lead secure coding practices aligned with DoD cybersecurity standards • Lead Selenium-based automated testing, conduct peer code reviews, and mentor junior developers • Collaborate with cybersecurity, systems engineering, and DevSecOps teams to transform mission requirements into secure software solutions • Document system architecture, workflows, and audit-traceable development … using Java, JavaScript, HTML, and CSS Building, deploying, and maintaining web applications in DoD or secure classified environments Utilizing GitLab CI/CD, WebLogic, and Nexus Repository for secure code delivery Implementing cybersecurity with Fortify, SonarQube, and DoD software compliance Selenium for automated UI and regression testing • Strong leadership and mentoring ability within Agile/Scrum teams • Proficient in … secure SDLC practices, configuration management, and technical documentation Preferred Qualifications • Experience with Kubernetes orchestration, containerization, and Helm/Helm Charts • Deep proficiency in GitLab DevOps pipeline automation • Familiarity with static code analysis, vulnerability remediation, and WebLogic Java deployments • Leadership in Agile/Scrum environments, technical mentorship, and secure code reviews • Background or familiarity with AI/ More ❯

Tower 1, Suite 900, McLean VA 22102 USA +1 Principal Responsibilities: • Design, implement and maintain multiple DevOps pipelines • Implement CD & CI solutions to support rapid development and integration • Integrate static code analysis and other security mechanisms into pipeline • Design and apply hybrid deployment strategy (cloud and local virtualized) • Work with software and system engineers to apply automated More ❯

Tower 1, Suite 900, McLean VA 22102 USA +1 Principal Responsibilities: • Design, implement and maintain multiple DevOps pipelines • Implement CD & CI solutions to support rapid development and integration • Integrate static code analysis and other security mechanisms into pipeline • Design and apply hybrid deployment strategy (cloud and local virtualized) • Work with software and system engineers to apply automated More ❯

practices into the software development lifecycle. Design, implement, and maintain CI/CD pipelines that incorporate automated security testing, vulnerability scanning, and compliance checks. Develop and maintain infrastructure as code (IaC) templates and configurations, ensuring security best practices are applied to cloud resources and infrastructure components. Perform regular security assessments, code reviews, and penetration testing to identify and … address vulnerabilities and weaknesses in applications, code, and infrastructure. Monitor and analyze system and application logs to detect and respond to security incidents. Implement and manage identity and access management (IAM) solutions, ensuring appropriate authentication and authorization mechanisms are in place. Collaborate with software engineers to provide guidance on secure coding practices and assist in remediation of security findings. … to IL6+ classification domains Expert understanding of AWS and familiarity with other cloud platforms (e.g., Azure, GCP) and securing cloud-based applications and services. Strong experience with infrastructure as code (IaC) tools such as Terraform, CloudFormation, or Ansible. Strong experience in scripting languages (e.g., Python, Bash) for automation and tool integration. Hands-on experience with security tools for static More ❯

proof-of-concept or production systems Experience with Version Control Systems (e.g., Git, Mercurial, Perforce) Utilising CI/CD tools such as Bamboo, Jenkins, TeamCity, Bitbucket Automated testing and static code analysis (e.g., SonarQube) Agile team experience (Scrum, Lean, Kanban) Familiarity with common software design patterns Additional experience in machine learning, cloud computing (AWS/Azure), containerisation More ❯

/destruction Liaison between development teams and stakeholders to understand and formulate security requirements Defines, maintains, and enforces application security best practices. Conduct vulnerability assessment and manual/automated code reviews Demonstrate vulnerabilities to application owners and provide mitigation recommendations Experience with SAST, DAST, and OSA tools. Performs and conducts penetration tests and manual/automated code reviews … any programming language like Java, .NET, C#, etc. Knowledge about Secure Coding best practices and OWASP top 10, SANS 25, CVE, etc. Identify AppSec related tools/conduct tool analysis, and provide recommendations Apply technical knowledge to analyze/develop, create, and implement process improvements, trouble shooting, and operational support Minimum Qualifications Bachelor's Degree in Computer Science, Engineering … derivation, digital signatures, etc. Knowledge of network based, system level and application layer attacks and mitigation methods, and TCP/IP, HTTP/S, and related protocols. Experience with static code analysis tools including HP Fortify, Checkmarx. Familiarity with JavaScript, NodeJS, or other scripting languages and BurpSuite or other intercepting proxy tools. Experience working with GIT source More ❯

Designing and building Proof of Concept and Production systems collaboratively Source control (e.g. Git, Mercurial, Perforce) CI/CD tools (e.g. Bamboo, Jenkins, TeamCity, Bitbucket) Automated testing frameworks and static code analysis tools (e.g. SonarQube) Agile methodologies (Scrum, Kanban, Lean) Desirable Skills Cloud platforms: AWS, Azure Containerisation: Docker, Kubernetes Machine Learning frameworks (AWS/Azure ML, TensorFlow More ❯

systems Manage backend databases with a focus on performance, cybersecurity, and data integrity Implement secure coding practices aligned with DoD compliance standards using tools like Fortify and SonarQube Conduct code reviews, testing, and debugging within Agile development teams Document system architecture and workflows to ensure audit readiness Collaborate with systems engineers, cybersecurity teams, and program managers to deliver mission … Science, Software Engineering, or a related field Active Interim Top Secret security clearance required Hands-on experience with: Java, JavaScript, HTML, CSS for full stack development Secure coding practices, static code analysis with Fortify and SonarQube Agile/Scrum methodologies and full software development lifecycle (SDLC) GitLab CI/CD, WebLogic, and Nexus Repository for DevOps and More ❯

is ideal for candidates interested in both coding and cybersecurity. Responsibilities You will build and maintain automation scripts, applications, and reporting tools for security operations. You will help integrate static code analysis, dependency scanning, and secrets detection into development workflows, and participate in code reviews to ensure secure coding. On the cybersecurity side, you will monitor More ❯

tools. Experience with Linux system administration. Experience with database administration (e.g., PostgreSQL, MySQL, MongoDB). Experience with cloud platforms (AWS, Azure, GCP) is a plus. Experience with infrastructure-as-code tools (Terraform, Ansible) is a plus. Responsibilities: OpenShift and Kubernetes Management: Deploy, configure, and maintain Red Hat OpenShift clusters, including cluster upgrades, patching, and performance tuning. Manage and troubleshoot … GitLab CI, Azure DevOps, or similar. Automate the build, test, and deployment of applications to OpenShift and other environments. Integrate security testing into the CI/CD pipeline (e.g., static code analysis, vulnerability scanning). System Administration: Manage Linux servers and virtual machines, including installation, configuration, and maintenance. Troubleshoot system issues and performance bottlenecks. Maintain and improve … of best practices and standards for containerization and deployment. Cloud and Infrastructure Management: Work with Cloud Infrastructure Providers (AWS, Azure, GCP) to provision and maintain infrastructure. Utilize infrastructure-as-code tools such as Terraform or Ansible. Security: Implement and maintain security best practices within the OpenShift, Kubernetes, and container environments. Work with security teams to implement and monitor security More ❯

hardening virtual servers and adhering to security controls 2+ years of experience with IaC, including Terraform and Ansible Experience troubleshooting cloud-native application deployments and configurations, and troubleshooting application code and configurations Ability to work independently while leading others, work across development teams, and work in a fast-paced, agile environment Secret clearance Bachelor's degree AWS Solution Architect … Experience with cloud-native account management services such as AWS Organizations Experience managing and configuring Ubuntu, RHEL, and Windows Server operating systems Experience with vulnerability management and dynamic or static code analysis Experience in Identity Authentication and Authorization, including Single-Sign-On, SAML, or OpenID Possession of excellent verbal and written communication skills Top Secret clearance Bachelor More ❯

Service Meshes such as Istio or AWS App Mesh Experience with Keycloak Experience with Cloud Native servers, Kubernetes platforms, and container registries Experience with vulnerability management and dynamic or static code analysis Experience with hardened AMIs and container images such as DoD STIGs or CIS Benchmarks Top Secret clearance Bachelor's degree in CS, Computer Engineering, Mathematics More ❯

functionality and performance. Track, remediate, and report IAVM vulnerabilities; implement STIG guidance and support ATO sustainment efforts, including patching. Collaborate with software and system engineers to apply automated testing, static code analysis, and documentation processes. Troubleshoot and resolve network, automation pipeline, and infrastructure issues. Integrate security mechanisms and best practices into development and operational pipelines. Communicate effectively More ❯

functionality and performance. Track, remediate, and report IAVM vulnerabilities; implement STIG guidance and support ATO sustainment efforts, including patching. Collaborate with software and system engineers to apply automated testing, static code analysis, and documentation processes. Troubleshoot and resolve network, automation pipeline, and infrastructure issues. Integrate security mechanisms and best practices into development and operational pipelines. Communicate effectively More ❯