26 to 50 of 70 HP Fortify Jobs

of the following areas: Java, Python, Ruby and/or C++ Linux Expertise (RedHat/RHEL or CentOS preferred) Dynamic & Static Application Security Scanning (e.g., Arachni, OWASP ZAP, BurpSuite, Fortify, Checkmarx, etc.) Virtualization and containers (EC2, Docker) Infrastructure Security Scanning, Vulnerability Scanning (Twistlock, ACAS/Nessus) Certification requirements in one or more of the following: Certified Information Systems Security More ❯

Experience with Behavior Driven Development (BDD) using tools like Gherkin and Cucumber for automated acceptance testing Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, Fortify, AND/OR SonarQube Experience developing software in an Model Based Systems Engineering (MBSE) environment. Experience with CI/CD, containers, and pipelines. Experience with Software Change Control, Change More ❯

on integrating security into the software development lifecycle. Expert experience with DevOps practices, CI/CD pipelines, and automation tools (e.g., Jenkins, GitLab CI/CD, Artifactory, SonarQube, Selenium, Fortify, Acunetix, and Prisma Cloud). Expert experience building DevSecOps solutions at scale across IL5 to IL6+ classification domains Expert understanding of AWS and familiarity with other cloud platforms (e.g. … Python, Bash) for automation and tool integration. Hands-on experience with security tools for static code analysis, dynamic application security testing (DAST), and vulnerability scanning, using tools such as Fortify, Acunetix, and Prisma Cloud Knowledge of security best practices, common vulnerabilities, and exposure to security frameworks (e.g., OWASP, NIST). Company Benefits: Cornerstone Defense offers a comprehensive list of More ❯

execute software releases across environments. Maintain and automate deployment pipelines, rollback strategies, and release readiness. Administer and troubleshoot DevOps tools including GitLab, TeamCity, Jenkins, Artifactory, Jira, Confluence, Perforce, Bitbucket, Fortify, SonarQube, Docker, Nexus, and SVN. Develop and maintain build pipelines (MSBuild, Maven/Java), repositories, and automated scans. Manage infrastructure: build agents (Windows/Linux), virtual machines (vSphere), certificates More ❯

OR Real Time Embedded Linux within the last 1 years. Demonstrated Professional Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, SonarQube, AND/OR Fortify within the last 1 years. Active DoD Secret Security Clearance Ability to obtain and maintain Special Access Program (PAR) Preferred Qualifications: Ability to collaborate with systems engineers, hardware designers More ❯

OR Real Time Embedded Linux within the last 1 years. Demonstrated Professional Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, SonarQube, AND/OR Fortify within the last 1 years. Active DoD Secret Security Clearance Ability to obtain and maintain Special Access Program (PAR) Preferred Qualifications: Ability to collaborate with systems engineers, hardware designers More ❯

OR Real Time Embedded Linux within the last 1 years. Demonstrated Professional Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, SonarQube, AND/OR Fortify within the last 1 years. Active Secret DoD Security Clearance Ability to obtain and maintain Special Access Program (PAR) Preferred Qualifications: Ability to collaborate with systems engineers, hardware designers More ❯

OR Real Time Embedded Linux within the last 1 years. Demonstrated Professional Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, SonarQube, AND/OR Fortify within the last 1 years. Active Secret DoD Security Clearance Ability to obtain and maintain Special Access Program (PAR) Preferred Qualifications: Ability to collaborate with systems engineers, hardware designers More ❯

OR Real Time Embedded Linux within the last 1 years. Demonstrated Professional Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, SonarQube, AND/OR Fortify within the last 1 years. Active Secret DoD Security Clearance Ability to obtain and maintain Special Access Program (PAR) Preferred Qualifications: Ability to collaborate with systems engineers, hardware designers More ❯

OR Real Time Embedded Linux within the last 1 years. Demonstrated Professional Experience with Static & Dynamic Code Analysis Tools and Fuzzing Tools such as: Coverity, SonarQube, AND/OR Fortify within the last 1 years. Active Secret DoD Security Clearance Ability to obtain and maintain Special Access Program (PAR) Preferred Qualifications: Ability to collaborate with systems engineers, hardware designers More ❯

the SDLC and agile methodologies. Development experience in Linux environment, preferably RHEL. Preferred Qualifications: Experience using Bash or similar scripting languages to automate tasks. Experience configuring and using SonarQube, Fortify, or other code analyzers. Experience with automated testing frameworks such as Eggplant and Microsoft Testing Framework. Experience with Continuous Integration Technologies such as Jenkins and Bamboo. Experience using Visual More ❯

as RLM, Ueploy, Jenkins, Artifactory, Maven, GitHub, etc Experience conducting vulnerability assessments and articulating security issues to technical and non-technical audience. Understanding of Snyk, Checkmarx, CDXGen, Dependency Track, Fortify, GitHub Adcance Security, Sonatype or Black Duck platform is a plus. Knowledge of tools and processes used to expose common vulnerabilities and implement countermeasures is expected. Excellent communication skills More ❯

best practices, automated builds and tests, quality gates, software quality, and CI tools, i.e., Jenkins. Familiarity with security coding standard best practices, static and dynamic scanning tools, i.e., SonarQube, Fortify, Coverity, etc. Programming and scripting experience in a UNIX environment (C++, Perl, Python, Bash, Ruby, Shell, Scripts). Programming and scripting experience in a Windows environment Your ability to More ❯

capabilities into applications (e.g., S/MIME email, SSL traffic). Developing applications that can log and handle errors, exceptions, and application faults and logging. Using code analysis tools (HP Fortify Static Code Analysis and Software Security Center, WebInspect). Performing root cause analysis and incident investigation. Applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality More ❯

JUnit, Jest, Robot, Selenium) • Exposure to Linux/Windows system administration, Docker, OCI containers, and orchestration (Kubernetes, Helm) • Familiarity with C2 Systems, DoD STIGs, secure coding standards, SonarQube, and Fortify • Knowledge of networking, debugging, and performance testing techniques • Experience with databases, design, and structures • Understanding of Agile methodologies and collaboration with Atlassian Suite (JIRA, Confluence, Bitbucket) • Ability to apply More ❯

JUnit, Jest, Robot, Selenium) • Exposure to Linux/Windows system administration, Docker, OCI containers, and orchestration (Kubernetes, Helm) • Familiarity with C2 Systems, DoD STIGs, secure coding standards, SonarQube, and Fortify • Knowledge of networking, debugging, and performance testing techniques • Experience with databases, design, and structures • Understanding of Agile methodologies and collaboration with Atlassian Suite (JIRA, Confluence, Bitbucket) • Ability to apply More ❯

AWS cloud technologies including: EC2, PaaS (OpenShift), Lamdas, S3 buckets, Reserved Instances, etc. Understanding of code baseline management Utilization of the following: Jira, Confluence, Jenkins, Python, Gitlab, CloudFormation, Zabbix, HPFortify, ACAS, PostgreSQL, Scrum, Kanban, Terraform Knowledge of Systems, Architectural, SW Development and SW Sustainment Practices Windows Domain Administrator of user accounts and group policy objects and Linux administration Proactive self More ❯

real-time applications: flight critical software, Safety critical software, medical software, or mission critical software. Experience with two of the following tools: Jira, Crucible, Bitbucket, Subversion, Bamboo, Jenkins, SonarQube, Fortify, or Coverity. Experience with one of the following real time operating systems: Wind River VxWorks, Green Hills Integrity, or Realtime Linux. Experience with multiple serial bus data interfaces, including More ❯

and JWICS. In-depth understanding of network protocols, operating systems, and infrastructure. Proficiency in incident response, forensic analysis, and security incident handling techniques. Familiarity with security tools such as Fortify, Acunetix, and Prisma Cloud. Strong communication skills to effectively present technical concepts to diverse stakeholders. Certifications: CISSP or equivalent to meet DoD 8140 requirements. Clearance: Active TS/SCI More ❯

Testing, including creating automated test scripts Strong problem-solving abilities, capable of reviewing performance issues, identifying root causes, and developing solutions Familiarity with Risk Management Framework/STIG/Fortify/SonarQube mitigation techniques Experience in performance modeling Background in microservices architecture Flexibility and willingness to undertake unexpected tasks are highly valued Experience with DevSecOps and build management Skills More ❯

test scrips Strong problem solving skills, including the ability to review performance issues, identify root cause, recommend and develop a solution Experience with Risk Management Framework/STIG/Fortify/SonarQube mitigation For more queries, please contact More ❯

and/or RHEL system administration experience. Experience with ESS/HBSS, Splunk, ConfigOS, and other DoD-relevant cyber tools. Familiarity with Software Assurance (SwA) tools and techniques (e.g., Fortify). Knowledge of FISMA, NIST 800-53, and DoD cybersecurity policies. Experience supporting cybersecurity test events, red/blue team exercises, or penetration testing. Background in DoD systems architecture More ❯

experience Experience developing software for Unix/Linux and Windows platforms Experience with Software Integration testing including developing automated test scripts Experience with Risk Management Framework/STIG/Fortify mitigation Prior experience designing and developing microservices and deploying with containers; experience setting up a container environment TECHNICAL SKILLS REQUIRED: Java experience Effective oral and written communication skills Ability More ❯

across DevOps and product teams Exposure to Oracle ERP systems and data platforms Desirable skills Familiarity with middleware technologies (Kafka, IBM MQ, ACE) Experience with security testing tools (e.g. Fortify, SonarQube, Twistlock) Knowledge of application monitoring tools such as Control M Exposure to generative AI and Tableau reporting Participation in innovation initiatives such as hackathons What you'll get More ❯

experience Experience developing software for Unix/Linux and Windows platforms Experience with Software Integration testing including developing automated test scripts Experience with Risk Management Framework/STIG/Fortify mitigation Prior experience designing and developing microservices and deploying with containers; experience setting up a container environment Salary Range: $100,000 - $148,000 Our Approach At SecureStrux, we are More ❯