SAST Engineer (Security/Cyber Security Engineer) || Princeton, NJ (Day 1 Onsite)

Title : SAST Engineer  (Security/Cyber Security Engineer)

Location – Princeton, NJ (Day 1 Onsite)

Duration: Long Term

 

Job Description –

We are seeking a highly skilled and motivated Security Automation and Security Testing (SAST) Engineer to join our Information Security team. The successful candidate will be responsible for implementing and maintaining security testing frameworks, performing static code analysis, and ensuring the security of our software applications.

 

  • Experience:
    • Proven experience in security testing and static code analysis.
    • Experience with security tools such as Fortify, Checkmarx, Veracode, or similar.
    • Familiarity with CI/CD pipelines and tools such as Jenkins, GitLab CI, or CircleCI.
  • Skills:
    • Strong programming skills in languages such as Python, Java, C#, or similar.
    • In-depth understanding of secure coding practices and software development life cycle (SDLC).
    • Excellent problem-solving skills and attention to detail.

 

Preferred Qualifications

  • Certifications:
    • Relevant certifications such as CISSP, CEH, OSCP, or similar.
  • Experience:
    • Experience in cloud security and securing applications in cloud environments (AWS, Azure, GCP).
    • Knowledge of dynamic application security testing (DAST) and other security testing methodologies.

 

Key Responsibilities

  • Security Testing:
    • Perform static code analysis on software applications to identify vulnerabilities.
    • Develop and maintain automated security testing scripts and tools.
    • Integrate security testing into the CI/CD pipeline to ensure early detection of security issues.
  • Automation:
    • Automate repetitive security testing tasks to improve efficiency.
    • Develop custom scripts and tools to enhance the capabilities of the security testing framework.
    • Ensure security automation tools are up-to-date and properly configured.
  • Collaboration:
    • Work closely with development teams to provide guidance on secure coding practices.
    • Collaborate with DevOps teams to integrate security testing tools into the CI/CD pipeline.
    • Communicate security risks and findings to relevant stakeholders.
  • Compliance and Best Practices:
    • Ensure compliance with industry standards and regulatory requirements.
    • Stay updated with the latest security trends, vulnerabilities, and mitigation techniques.
    • Promote security awareness and best practices within the organization.

Personal Attributes

  • Strong analytical and critical thinking skills.
  • Excellent communication and interpersonal skills.
  • Ability to work independently and as part of a team.

Regards

Sagar Bhardwaj

Sr. Technical Recruiter

300 Alexander Park |Suite #200|Princeton , NJ 08540

Office: +1 7324521006 Ext238

Email: [email protected]| URL: http://www.diverselynx.com

 

0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Most Voted
Newest Oldest
Inline Feedbacks
View all comments