Automation and Security Testing (SAST) Engineer - Diverse Linx
Princeton, NJ
About the Job
Title Automation and Security Testing (SAST) Engineer
Location Princeton, NJ (Day 1 Onsite)
Job Description
We are seeking a highly skilled and motivated Security Automation and Security Testing (SAST) Engineer to join our Information Security team. The successful candidate will be responsible for implementing and maintaining security testing frameworks, performing static code analysis, and ensuring the security of our software applications.
Required Qualifications
Bachelor s degree in Computer Science, Information Security, or a related field (or equivalent experience).
- Experience:
-
- Proven experience in security testing and static code analysis.
- Experience with security tools such as Fortify, Checkmarx, Veracode, or similar.
- Familiarity with CI/CD pipelines and tools such as Jenkins, GitLab CI, or CircleCI.
- Skills:
-
- Strong programming skills in languages such as Python, Java, C#, or similar.
- In-depth understanding of secure coding practices and software development life cycle (SDLC).
- Excellent problem-solving skills and attention to detail.
Preferred Qualifications
- Certifications:
-
- Relevant certifications such as CISSP, CEH, OSCP, or similar.
- Experience:
-
- Experience in cloud security and securing applications in cloud environments (AWS, Azure, GCP).
- Knowledge of dynamic application security testing (DAST) and other security testing methodologies.
Key Responsibilities
- Security Testing:
-
- Perform static code analysis on software applications to identify vulnerabilities.
- Develop and maintain automated security testing scripts and tools.
- Integrate security testing into the CI/CD pipeline to ensure early detection of security issues.
- Automation:
-
- Automate repetitive security testing tasks to improve efficiency.
- Develop custom scripts and tools to enhance the capabilities of the security testing framework.
- Ensure security automation tools are up-to-date and properly configured.
- Collaboration:
-
- Work closely with development teams to provide guidance on secure coding practices.
- Collaborate with DevOps teams to integrate security testing tools into the CI/CD pipeline.
- Communicate security risks and findings to relevant stakeholders.
- Compliance and Best Practices:
-
- Ensure compliance with industry standards and regulatory requirements.
- Stay updated with the latest security trends, vulnerabilities, and mitigation techniques.
- Promote security awareness and best practices within the organization.
Personal Attributes
- Strong analytical and critical thinking skills.
- Excellent communication and interpersonal skills.
- Ability to work independently and as part of a team.
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.
Source : Diverse Linx