Security Automation and Security Testing (SAST) Engineer at Princeton, New Jersey, USA |
Email: [email protected] |
From: Bharath, Smartfolks [email protected] Reply to: [email protected] Title Security Automation and Security Testing (SAST) Engineer Location Princeton, NJ (Day 1 Onsite) Term: Contract Job Description We are seeking a highly skilled and motivated Security Automation and Security Testing (SAST) Engineer to join our Information Security team. The successful candidate will be responsible for implementing and maintaining security testing frameworks, performing static code analysis, and ensuring the security of our software applications. Required Qualifications Education: Bachelors degree in Computer Science, Information Security, or a related field (or equivalent experience). Experience: Proven experience in security testing and static code analysis. Experience with security tools such as Fortify, Checkmarx, Veracode, or similar. Familiarity with CI/CD pipelines and tools such as Jenkins, GitLab CI, or CircleCI. Skills: Strong programming skills in languages such as Python, Java, C#, or similar. In-depth understanding of secure coding practices and software development life cycle (SDLC). Excellent problem-solving skills and attention to detail. Preferred Qualifications Certifications: Relevant certifications such as CISSP, CEH, OSCP, or similar. Experience: Experience in cloud security and securing applications in cloud environments (AWS, Azure, GCP). Knowledge of dynamic application security testing (DAST) and other security testing methodologies. Key Responsibilities Security Testing: Perform static code analysis on software applications to identify vulnerabilities. Develop and maintain automated security testing scripts and tools. Integrate security testing into the CI/CD pipeline to ensure early detection of security issues. Automation: Automate repetitive security testing tasks to improve efficiency. Develop custom scripts and tools to enhance the capabilities of the security testing framework. Ensure security automation tools are up-to-date and properly configured. Collaboration: Work closely with development teams to provide guidance on secure coding practices. Collaborate with DevOps teams to integrate security testing tools into the CI/CD pipeline. Communicate security risks and findings to relevant stakeholders. Compliance and Best Practices: Ensure compliance with industry standards and regulatory requirements. Stay updated with the latest security trends, vulnerabilities, and mitigation techniques. Promote security awareness and best practices within the organization. Personal Attributes Strong analytical and critical thinking skills. Excellent communication and interpersonal skills. Ability to work independently and as part of a team. Keywords: csharp continuous integration continuous deployment New Jersey Security Automation and Security Testing (SAST) Engineer [email protected] |
[email protected] View all |
Thu Aug 22 01:38:00 UTC 2024 |