51 to 69 of 69 Static Code Analysis Jobs

tools pipeline. Leverage and customize GitLab and Git for complex embedded software builds. Integrate a wide range of tools into the development pipeline, including static code analysis, software Bill of Materials (SBOM), and dynamic testing tools. Utilize GitLab, Bitbucket, GIT, Eclipse, Jira, Confluence, and debugging tools such More ❯

monitoring of containerized applications using Kubernetes Design, implement, and maintain multiple DevOps pipelines Implement CD & CI solutions to support rapid development and integration Integrate static code analysis and other security mechanisms into the pipeline Troubleshoot and resolve network, automation pipelines, and infrastructure issues Qualifications: Current/active More ❯

Kubernetes distributions (EKS, RKE, etc). Design, implement and maintain multiple DevOps pipelines. Implement CI & CD solutions to support rapid development and integration. Integrate static code analysis and other security mechanisms into pipeline. Work with software and system engineers to apply automated test and documentation processes. Troubleshoot More ❯

and applies system patches, and rollback. Implement STIG guidance to support ATO sustainment efforts Troubleshoot and resolve network, automation pipelines, and infrastructure issues. Integrate static code analysis and other security mechanisms into pipeline. Embrace the agile mindset and planning cadence. Communicate with technical teams and articulate technical More ❯

you'll assist in the identification and implementation of information assurance/cybersecurity requirements. The successful candidate must have experience with NIST RMF, threat analysis, vulnerability management, as well as accreditation and authorization processes and shepherding projects through to ATO approval. Our CACI cybersecurity teams use proven solutions to … of information and networking security requirements for Federal government, Department of Defense, or intelligence community. Experience using SonarQube, JFrog XRAY, eMASS, ACAS, WebInspect, Nessus, Static Code Analysis, Burp Suite or similar tools. Experience performing vulnerability management activities including analysis, preparing recommendations, or remediation. Must be detailed More ❯

science, Software Engineering, or a related field, or equivalent experience. Technical Skills: Proficiency with Object-Oriented Programming (OOP), preferably C#.Preferred Skills: Experience with Fortify (static code analysis). Experience with technical documentation tools like Visio and MS Project. Background in missile warning/missile defense systems. Operational More ❯

equivalent experience. Experience: A minimum of 5 years relevant experience. Technical Skills: Proficiency with Object-Oriented Programming (OOP), preferably C#.Preferred Skills: Experience with Fortify (static code analysis). Experience with technical documentation tools like Visio and MS Project. Background in missile warning/missile defense systems. Operational More ❯

Principal Cybersecurity Systems Engineer or Senior Principal Cybersecurity Systems Engineer on this team, you will have the following responsibilities: • Perform software vulnerability assessment utilizing static code analysis tools. • Familiarity with DoD and Navy cybersecurity workforce requirements including certification and training, DoD 8140 and SECNAV M-5239.2. • Experience More ❯

project tracking tools such as Jira designing, deploying, and monitoring Kafka clusters deploying and maintaining artifact repositories (such as Nexus, Artifactory) deploying and configuring static and dynamic code analysis tools (such as SonarQube, Coverity). leading teams in an Agile/SCRUM software development process Current Security+ More ❯

operating systems Detail-oriented Good verbal and written communication skills Desired Qualifications: Java programming experience is desired Strong experience with software vulnerability scanning with static and dynamic code analysis Strong experience with software docker or package artifact management using JFrog Artifactory, Nexus or similar Experience with software More ❯

security approaches internally and externally. Application & Network Security Design secure application workflows, security features, APIs, and network infrastructures. Identify and mitigate vulnerabilities in application code and network configurations. Ensure security controls for web applications, mobile apps, and backend systems are robust and effective. Security Testing & Validation Perform hands-on … security testing, including static and dynamic code analysis, penetration testing, and vulnerability assessments. Develop and maintain automated security testing tools and processes. Provide technical expertise in developing security processes, incident response, and vulnerability remediation efforts. Develop and enforce secure development lifecycle (SDLC) practices within development teams. Mentorship More ❯

practices, and providing direct input to project teams and business stakeholders is essential. Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling. In-depth experience working in … an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and delivery tools (e.g. GitHub, Jenkins, Bamboo). Good expertise in taking security policy statements and translating them into actual, implementable, security controls and techniques that can make our software … Senior Software Security Architect, Senior Application Security Architect, SDLC, Secure by Design, Architecture, Software Development, Engineering, DevOps, InfoSec, Security, Security Strategy, Best Practice, Programming, Code, C++, C#, C, .NET Core, Java, JavaScript, Node.js, Angular, React, OWASP, Agile, Application Threat Modelling, Security Policy, Security Controls, ISO 27001, NIST, GDPR, Cloud More ❯

practices, and providing direct input to project teams and business stakeholders is essential. Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling. In-depth experience working in … an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and delivery tools (e.g. GitHub, Jenkins, Bamboo). Good expertise in taking security policy statements and translating them into actual, implementable, security controls and techniques that can make our software More ❯

/HBSS ConfigOS Splunk/Elastic, etc. Must have knowledge and experience with configuring, running, and scripting audit tools Knowledge of Software Assurance (SwA) static and dynamic code analysis (e.g., Fortify) What We Can Offer You: Northrop Grumman provides a comprehensive benefits package and a work environment More ❯

tools and monitor system performance, identify bottlenecks, and implement optimisations for improved resource utilisation . Implement security tools and practices, including vulnerability scanning and static code analysis. Communicate effectively with development teams to understand their requirements and align DevOps processes. Configure and maintain monitoring systems for log aggregation … and procedures. Requirements Demonstrated experience in designing, deploying, and managing infrastructure and applications on both AWS and Azure cloud platforms. Familiarity with Infrastructure as Code (IaC) tools such as Terraform, Bicep, CloudFormation, etc Experience with CI/CD tools for building and managing automated continuous integration and continuous delivery More ❯

managing infrastructure components using automation tools, monitoring system performance, identifying bottlenecks, and optimizing resource utilization. Implementing security tools and practices, including vulnerability scanning and static code analysis. Communicating effectively with development teams to align DevOps processes with requirements. Configuring and maintaining monitoring systems for log aggregation and leading … detailed documentation for system configurations and procedures. Requirements Experience designing, deploying, and managing infrastructure and applications on AWS and Azure. Familiarity with Infrastructure as Code (IaC) tools such as Terraform, Bicep, CloudFormation, etc. Experience with CI/CD tools for automated build and deployment pipelines. Hands-on experience with More ❯

Fortinet's Code Security team is responsible for shipping a suite of products that can be used to help secure customer codebases. The technology involves static and dynamic program analysis and their combination, used to find, as well as prevent, threats and to understand risk, and serves … personnel ranging from developers to security engineers to VP+C-suite. The Code Security offering which was recently announced integrates with the Fortinet CNAPP platform providing end-to-end security from code to cloud in a way where insights from different points in the software lifecycle work together to … holistic view of security. We are looking for candidates to work on both the underlying analyses and on the platform for deploying them. The Analysis roles involve Programming Language technologies, such as build systems, compilers, formal methods, or static or dynamic program analysis. The Platform roles involve a More ❯

better results are obtained. Job purpose We are looking for skilled Java developers to work as part of a team with experts in AI, static and dynamic program analysis, and software verification. This is a great opportunity for a Java developer to learn new AI and program synthesis … software in an Agile environment Provide architectural guidance and review on Java development techniques such as the use of the Spring Framework, classloading, bytecode analysis and manipulation, smart mocking, isolation and algorithmic development Pro-actively contribute to the team's objectives of delivering incremental value every sprint and partner … and syntax trees Benefits You'll get to work in one of the hottest tech startups in the world of deep tech AI for code, applying state-of-the-art program analysis and synthesis technology to tough problems faced by development teams at the world's leading companies. More ❯

software vulnerabilities. The candidate will be part of a small, agile team that quickly adapts and applies VR knowledge to demonstrate capabilities, from initial analysis of target systems up to developing tools to demonstrate the discoveries of the investigation. Required Qualifications: US citizenship and an active Top Secret security … more disassemblers (IDA, Ghidra, Binary Ninja, etc). Experience with modern exploitation techniques and mitigations (ASLR, DEP/NX, etc). Experience with modern static or dynamic program analysis techniques Key Responsibilities: Reverse engineering, system understanding, and vulnerability discovery against open and closed-source software products. Conducting experiments More ❯