SAST Application Security Testing Engineer

SAST Application Security Testing Engineer

Posted 6 days ago by 1753509609

Apply
Negotiable
Outside
Remote
USA
Apply
Application Development Application Security Code Injection Code Review Continuous Integration and Continuous Delivery Financial Information eXchange (FIX) Protocol Mobile Application Development Secure Coding Security Testing Software Coding Software Development Source Codes SQL (Programming Language) SQL Injection Threat Modeling Vulnerability

Summary: The SAST Remediation Engineer is responsible for identifying and fixing security vulnerabilities within the software development lifecycle using Static Application Security Testing (SAST) tools. This role involves collaborating with development teams to integrate security practices into CI/CD pipelines and guiding developers on remediation steps. The engineer will also automate security testing processes and support secure architecture reviews to enhance application security. This position serves as a crucial link between security and development teams to mitigate risks effectively.

Key Responsibilities:

  • Collaborate with development teams to integrate SAST tools into CI/CD pipelines for continuous security scanning.
  • Review SAST vulnerability reports and prioritize findings based on severity.
  • Guide developers on remediation steps for vulnerabilities such as SQL injection and buffer overflows.
  • Assist in secure software development practices, including threat modeling and secure coding standards.
  • Automate security testing processes and maintain security tools for improved efficiency.
  • Support secure architecture reviews and enforce security policies across development projects.
  • Participate in security training and awareness programs for developers.

Key Skills:

  • Experience with SAST tools, specifically CheckMarx/Nexus.
  • Strong understanding of code review processes.
  • Familiarity with CI/CD pipelines.
  • Knowledge of secure coding practices and vulnerability remediation.
  • Ability to collaborate effectively with development teams.
  • Experience in threat modeling and secure design.

Salary (Rate): £65 hourly

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Role :- SAST Remediation Engineer
Term :- W2 Contract
Rate : 65W2 Per hour max
Location :- Remote

Detailed Job Description:-

MUST HAVE: SAST, CheckMarx/Nexus, code review, CI/CD Pipelines

A SAST Remediation Engineer in application security is responsible for identifying, analyzing, and fixing security vulnerabilities detected by Static

Application Security Testing (SAST) tools within the software development lifecycle. Their key duties include:

Collaborating with development teams to integrate SAST tools into CI/CD pipelines and ensure continuous security scanning of source code.

Reviewing SAST vulnerability reports, prioritizing findings based on severity, and guiding developers on remediation steps to fix issues such as SQL injection, buffer overflows, and insecure coding patterns.

Assisting in secure software development practices by providing expertise in threat modeling, secure design, and secure coding standards.

Automating security testing processes and maintaining security tools to improve vulnerability detection and remediation efficiency.

Supporting secure architecture reviews and helping enforce security policies and standards across application development projects.

Participating in security training and awareness programs to foster a security-first mindset among developers.

This role acts as a bridge between security and development teams to ensure vulnerabilities are addressed early in the SDLC, reducing risks and enhancing overall application security posture.

Apply
Similar Jobs
Loading data...