and standards (e.g., OWASP, PCI-DSS, ISO 27001). Perform static (SAST) and dynamic (DAST) application security testing using tools such as (Checkmarx, SonarQube, Veracode, Burp Suite) Lead and conduct manual code reviews and penetration testing exercises as needed. Prioritize, and guide remediation of vulnerabilities based on business risk and More ❯
and standards (e.g., OWASP, PCI-DSS, ISO 27001). Perform static (SAST) and dynamic (DAST) application security testing using tools such as Checkmarx, SonarQube, Veracode, and Burp Suite. Lead and conduct manual code reviews and penetration testing exercises as needed. Prioritize and guide the remediation of vulnerabilities based on business More ❯
Code Review roles. Deep understanding of secure coding practices in web frameworks (e.g., JavaScript, Python, PHP, Node.js). Familiarity with tools like Snyk , Checkmarx , Veracode , or Burp Suite (passive scanning) . Knowledge of OWASP , CWE , and general secure software development principles. Strong technical writing and communication skills. Preferred certifications: OSCP More ❯
Role Objective: The Security Engineer will be responsible for supporting the secure design, development, and deployment of applications by identifying vulnerabilities, performing code and security reviews, and collaborating with engineering teams to embed security throughout the software development lifecycle. They More ❯
