1 to 4 of 4 Static Application Security Testing Jobs with Hybrid or WFH Options

Innova Solutions is immediately hiring for a Sr. Security Engineer Position type: Full-time Contract Duration: 12+ Months Contract Location: Atlanta, GA Hybrid role As an Sr. Security Engineer, you will: Qualifications: B.S. degree in Computer Science, Computer Engineering, Information Assurance or related field Minimum 5+ years of … professional experience in application security, penetration testing, security assessment, secure software development or related field Hands-on experience working with Cloud and/or DevSecOps related technologies Excellent understanding of DevSecOps techniques and processes, guide integration of various tools in DevSecOps processes (GitLab/GitHub, SonarQube … as Sonatype CLM Excellent written and verbal communication skills Strong sense of urgency and ownership Skills: Conduct Static Application Security Test (SAST), Dynamic Application Security Test (DAST) and Source Code Analysis (SCA) using VeraCode Correlate findings from tools such as VeraCode Source Code Agent to more »

Job Overview: We are looking for a talented Security Engineer to join Arm’s Product Security team. In this role, you will play a key part in enhancing the security of Arm’s software and processes, while contributing to building a strong security engineering culture across … software. Review and advise on output of various Security Development Lifecycle (SDLC) stages such as threat modeling, security testing, including DAST, SAST, SCA Enable engineering teams to implement various stages of Arm's SDLC independently Provide consultation on specific areas of software security and on the … working with Arm's open source software. Knowledge of Arm assembly. Delivered software security training. Experience in configuration and creation of rules for SAST tools such as Coverity and SonarQube. Experience working with relevant security certification schemes (e.g., PSA Certified, common criteria, SESIP) and international standards (e.g, ISO more »

endpoint management using tools such as Microsoft Intune endpoint protection with tools like Crowdstrike and Qualys Data Loss Prevention systems application security; SAST and DAST tools SIEM solutions (Splunk or similar) logging and monitoring best practices cloud infrastructure security and management (AWS or similar) cloud security … CSPM solutions such as Wiz threat intelligence incident management and response regulatory frameworks such as ISO 27001 and how they translate to a successful security strategy Requirements We are looking for a Senior Cloud Security Engineer who is adaptable, able to work independently and mission driven. The candidate … of cloud-native applications, from networking to API level, with a particular emphasis on security. They will be expected to implement the automation of security processes, for example by using CI/CD pipelines. The candidate will be expected to monitor infrastructure using a variety of tools and rapidly more »

to manage, and it’s tuned for critical demanding workloads at cloud scale. If this sounds enticing and you have a passion for product security, then consider joining Oracle Linux Product Security (OLPS) team. As part of the OLPS, you will be responsible for tracking vulnerabilities in userspace … components, with occasional participation in kernel security processes. Most significant and complex vulnerabilities would need to be promptly reproduced and analyzed for impact, demanding good prototyping and analytical skills. Given a wide variety of applications shipped with Oracle Linux and associated programming languages, you will never be bored! The … bugs for security implications Impact analysis for vulnerabilities, both internal and external Assist development teams with reproducing and analyzing vulnerabilities Must-have skills: SAST/DAST scanning experience and report analysis Detailed knowledge of CVE processes and CVSS scoring Detailed knowledge of Linux OS components (kernel and userspace) Detailed more »