Responsibilities:
- Implement, operationalize, and troubleshoot Static Application Security Testing (SAST) tools such as Black Duck, Checkmarx, Semgrep, and CodeQL.
- Integrate security testing into CI/CD pipelines using tools like GitHub Actions, Jenkins, or Azure DevOps and automate processes with scripting.
Qualifications:
- Bachelor’s degree in a relevant discipline or equivalent experience with 3-5 years in security engineering.
- Proficiency in application security fundamentals, threat modeling, and secure coding practices throughout the SDLC.
- Strong written and verbal communication skills for triaging vulnerabilities and collaborating with teams.
Perks:
- Remote workforce primarily within the U.S., with comprehensive group medical and dental insurance options.
- Flexible Time Off (FTO) program alongside 12 corporate holidays and eligibility for a retirement plan after two months.
- Additional allowances for mobile phone and home internet, plus a pet benefit option.
GuidePoint Security
GuidePoint Security is a cybersecurity value-added reseller offering expertise, solutions, and services to help organizations minimize risk. The company has over 1,200 employees, serves more than 6,200 customers, including Fortune 500 companies and U.S. government agencies, and fosters a collaborative workplace with knowledgeable colleagues and mentorship.