157 Checkmarx Jobs - Page 2

Role: Perform detailed security analysis of application source code to identify vulnerabilities, weaknesses, and compliance issues. Use manual and automated tools (e.g., Checkmarx, SonarQube) to ensure secure coding standards are met. Collaborate with developers to remediate findings and improve software security posture. Skills: Source Code Review, Multiple Languages, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) 2. Level 1 Resource Source Code Review (SCR) Skills: Source Code Review, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT)

Job Description : YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation. At YASH, we're a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth - bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future. We are looking forward to hireApplication Security Professionals in the following areas : Read/learn/discuss latest trends/tools/best practices/updates of cyber security, applicati...

Participate in team prioritization discussions with Product/Business stakeholders Drive code/design/process trade in team require Own delivery tasks design, dev, test, deployment, configuration, documentation for business needs Required Candidate profile Expertise in .Net Tech Stack - API Development, SQL Server DB, Windows Services, Command-Line execution of a .Net Program secure coding standards ( OWASP, CWE, SEI CERT Test TDD/BDD

Level 2 Resource Source Code Review (SCR) Experience : 5-6 years Skills : Source Code Review, Multiple Languages, Checkmarx , SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Level 1 Resource Source Code Review (SCR) Experience : 2-3 years Skills : Source Code Review, Checkmarx , SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT)

Level 3 Resource - Application Penetration Tester (APT) Experience : 7-9 years Skills : Advanced Application Penetration Testing (Web/ Mobile/ API), BurpSuite, MIS Reporting, Certifications (CEH/ OSCP/ SANS25/ LPT/ CEPT) Perform manual and automated penetration testing on web applications, mobile apps, and APIs to identify vulnerabilities. Conduct thorough assessments for OWASP Top 10 vulnerabilities, insecure configurations, and potential business logic flaws. Utilize tools such as Burp Suite, OWASP ZAP, Nmap, Nessus, Metasploit, Nikto, Checkmarx, and SonarQube for testing and validation. Evaluate source code security through Static and Dynamic Application Security Testing (SAST/DAST) techn...

Level 1 Resource Source Code Review (SCR) Experience: 2- 3 years Skills: Source Code Review, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT)

Level 2 Resource Source Code Review (SCR) Experience: 5 - 6 years Skills: Source Code Review, Multiple Languages, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT)

As a Senior Java Backend Developer, you will have the following responsibilities: - Analyzing, designing, programming, debugging, and modifying software enhancements and/or new products used in local, networked, or Internet-related computer programs. The code must be used in the core version of applications available for sale commercially. - Interacting with product managers and/or users to define system requirements and/or necessary modifications. - Participating in software design meetings and analyzing user needs to determine technical requirements. - Writing technical specifications based on conceptual design and stated business requirements. - Writing code, completing programming, and p...

Job Description: Expereince Required: 10 to 15 years Essential Duties and Responsibilities: As a senior member of the DevOps team, you will lead initiatives that elevate developer experience, streamline automation, and ensure robust, scalable delivery pipelines. You'll collaborate with the development teams to improve the delivery experience by designing and maintaining fully automated modern CI/CD workflows. Your expertise in scripting (PowerShell/CLI), Docker, Kubernetes and GitOps tooling will be key to building resilient, observable systems that empower developers and accelerate product delivery while maintaining high security standards and foster cost efficiency. CI/CD & Automation Desi...

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose to uplift everyone, everywhere by being the best way to pay and be paid. Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa. Job Description The Infrastructure reliability engineer team prides itself in kee...

We are looking for a highly skilled Application Security Engineer with deep expertise in secure code review, static analysis tools, and vulnerability detection across multiple programming languages. The ideal candidate will play a critical role in ensuring that our applications are designed, developed, and deployed securely. Key Responsibilities: Conduct manual and automated source code reviews to identify vulnerabilities, insecure patterns, and logic flaws across multiple languages (e.g., Java, Python, .NET, JavaScript, C/C++, PHP). Utilize and manage SAST tools such as Checkmarx and SonarQube to perform comprehensive code analysis and triage results. Collaborate with development teams to p...

Level 2 Resource Source Code Review (SCR) Skills: Source Code Review, Multiple Languages, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT)2 Roles and Responsibility Conduct thorough code reviews to identify vulnerabilities and weaknesses in software applications. Utilize VAPT tools to analyze and report on code quality and security issues. Collaborate with development teams to implement remediation measures and improve overall code quality. Develop and maintain documentation of code review processes and procedures. Stay up-to-date with emerging trends and technologies in VAPT and source code review. Provide training and guidance to junior team members on best practices in VAPT...

Level 2 Resource Source Code Review (SCR) Experience : 5 - 6 years Skills : Source Code Review, Multiple Languages, Checkmarx , SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Level 1 Resource Source Code Review (SCR) Experience : 2 - 3 years Skills : Source Code Review, Checkmarx , SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT)

Role Overview: As a Senior Full Stack Engineer specializing in Java Backend & React, you will play a crucial role in analyzing, designing, developing, and delivering software solutions. Your responsibilities will include defining requirements for new applications and customizations while adhering to standards, processes, and best practices. Key Responsibilities: - Participate in team prioritization discussions with Product/Business stakeholders - Estimate and own delivery tasks (design, dev, test, deployment, configuration, documentation) to meet the business requirements - Automate build, operate, and run aspects of software - Drive code/design/process trade-off discussions within the team ...

Role Overview: You will be responsible for developing and designing backend systems using NodeJS and related frameworks such as express, Loopback, and Koa. Additionally, you will be involved in frontend development using TypeScript/JavaScript, performance tuning, and API development. Your role will also require expertise in coding principles, CI/CD pipeline, quality assurance, distributed services, containerization, API gateway integration, and authentication methods like Single-Sign-on and token-based authentication. Key Responsibilities: - Experienced in backend development with NodeJS and frameworks like express, Loopback, Koa - Proficient in using profiling tools such as AppDynamics and ...

Job Summary As a Level 2 Source Code Review (SCR) resource, you will perform detailed security reviews of application source code across multiple programming languages. You will identify security flaws, logic vulnerabilities, and coding inefficiencies, and work with development teams to remediate and improve code security posture throughout the SDLC. Key Responsibilities Conduct manual and automated source code review (SCR) across diverse programming languages and frameworks Analyze code for security vulnerabilities (e.g. injection, XSS, CSRF, insecure deserialization, access control issues, logic flaws) Use static analysis / SAST tools (e.g. Fortify, Checkmarx, SonarQube, Veracode) and supp...

As a Software Engineer in the Cloud Platform team at Ford Motor Company, you will be instrumental in designing, developing, and supporting Platforms, APIs, and services to enable the creation and management of Platforms and APIs deployed to the Ford mobility ecosystem. Your role will involve working in a collaborative software delivery team, where you will have the opportunity to function in different capacities such as architect, high-skilled software developer, technical team leader, consultant, and product evangelist. **Responsibilities:** - Serve as a Software Engineer to design, develop, and support Platforms, APIs, and services - Participate in white board sessions to gather customer r...

JOB DESCRIPTION To meet the growing needs of the mobility business, the Cloud Platform team is looking for a highly motivated, technology focused individual with a passion to work on a collaborative software delivery team to enable the creation and management of Platforms and APIs deployed to the Ford mobility ecosystem. The position will be responsible for implementing platform and API solutions. The candidate for this position must be to function in different roles within the team, from architect to high-skilled software developer and technical team leader, to consultant and product evangelist. RESPONSIBILITIES Serve as a Software Engineer that enables the design, development, and support ...

Job Purpose and Impact The Senior Professional, Application Data & Cloud Security job designs, implements and oversees security measures across development, security and operations, software as a service or platform as a service and multi-cloud environments. With minimal supervision, this job ensures the integrity, confidentiality and availability of data and applications, thereby supporting the organization's overall security posture and compliance with industry standards. Key Accountabilities SECURITY FRAMEWORKS: Designs and implements development, security and operations tools and processes as well as multi-cloud control capabilities to improve security posture across the organization. SE...

Job Description: About Us At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank o...

We are looking for a highly skilled and experienced Secure Code Review Analyst to join our team at Suzva Software Technology. The ideal candidate will have 2 to 10 years of experience in the field. Roles and Responsibility Conduct thorough code reviews to identify potential security vulnerabilities and weaknesses. Analyze and interpret complex code, identifying areas for improvement and implementing remediation measures. Collaborate with development teams to implement secure coding practices and standards. Develop and maintain comprehensive reports detailing findings and recommendations. Stay up-to-date with emerging trends and technologies in secure coding. Participate in ongoing training a...

Responsibilities : Key Responsibilities: Conduct secure code reviews, static (SAST) and dynamic (DAST) application security testing. Develop and maintain Python scripts and tools for security automation. Work closely with development teams to integrate security into the SDLC and CI/CD pipelines. Perform vulnerability assessments using tools like Qualys WAS and ArmorCode. Analyze and remediate security issues in web applications and APIs. Maintain and enhance security dashboards and reporting mechanisms. Stay updated with the latest application security threats, trends, and best practices. Mandatory Skills: Python Programming - for automation and tool development. SQL - for data analysis and ...

Source Code Review (SCR) Source Code Review, Multiple Languages, Checkmarx, SonarQube, A (CEH/OSCP/SANS25/LPT/CEPT) We are seeking a highly skilled Source Code Review (SCR) Consultant with expertise in multiple programming languages and hands-on experience using leading code analysis tools such as Checkmarx and SonarQube. The ideal candidate should have a strong background in application security, secure coding practices, and vulnerability identification/mitigation. Candidates with certifications like CEH, OSCP, SANS25, LPT, CEPT will be given preference. Key Responsibilities Perform manual and automated source code reviews across multiple programming languages. Utilize tools such as Checkma...

1. Level 2 Resource Source Code Review (SCR) Skills: Source Code Review, Multiple Languages, Checkmarx, SonarQube, Certifications (CEH/ OSCP/ SANS25/LPT/ CEPT) 2. Level 1 Resource Source Code Review (SCR) Skills: Source Code Review, Checkmarx, SonarQube, Certifications (CEH/ OSCP/ SANS25/ LPT/CEPT) Key Responsibilities: Perform manual and automated code reviews to identify security vulnerabilities in web, mobile, and backend applications. Collaborate with developers, DevOps, and QA teams to ensure secure coding practices and help fix identified issues. Use SAST tools (e.g., Fortify, Checkmarx, Veracode, SonarQube) to scan code and interpret results. Validate and triage findings to eliminate ...

Role & Responsibilities We are looking for a Static Code Analysis / SAST Specialist with deep expertise in secure coding and static application security testing (SAST). The ideal candidate will have hands-on experience using industry-leading tools and be capable of performing in-depth secure code reviews across multiple programming languages. Key Responsibilities: Perform static code analysis using tools such as SonarQube, Veracode, Checkmarx , or similar platforms. Conduct secure code reviews across various programming languages including Java, Python, .NET/C#, and C/C++ . Identify, triage, and remediate security vulnerabilities found in source code, differentiating between true positives a...