Security engineer Job at PRIMUS Global Services, Inc, Dallas, TX

LzhYeC9ZRGNpbFJDVzkrR1hlU3BRaWtHS2c9PQ==
  • PRIMUS Global Services, Inc
  • Dallas, TX

Job Description

Security Engineer - SAST - Remote - 63096

One of our top clients has an urgent need for a Security Engineer - SAST to work remotely on a long-term contract.

Pay Rate : $50-$55/hr

  • SAST/SCA Experience – General experience working with Static Application Security Testing (SAST) and Software Composition Analysis (SCA) tools.
  • SAST/SCA (Veracode) Onboarding & ServiceNow Management – Ability to onboard applications into Veracode, configure scans, troubleshoot integration issues, and effectively manage Veracode-related RITMs within ServiceNow. This includes handling requests for adding/removing applications, teams, and API accounts, as well as reviewing mitigation submissions.
  • GitLab CI/CD Security Operations – Strong understanding of GitLab CI/CD pipelines and how security scanning tools, including Veracode, are integrated. Ability to troubleshoot security scan issues, analyze pipeline failures, and determine when to escalate to the engineering team for resolution.
  • Mitigation Assessment & Approval – Expertise in evaluating remediation plans and compensating controls to determine their effectiveness in addressing security risks. Ability to make informed approval or denial decisions based on industry best practices and organizational security policies.
  • What specific SAST and SCA tools should the candidate be familiar with?
    • Veracode, GitLab Ultimate
  • How much experience should they have with these tools?
    • The candidate should have a solid understanding of how these tools function and their purpose within the security framework. While deep expertise is not required, they should be comfortable navigating the tools and leveraging their capabilities effectively.
  • What will the candidate's responsibilities be when onboarding and managing applications in security tools?
    • Upon receiving a RITM (Request Item), the candidate must extract relevant details from the ticket and properly configure the team/application in Veracode with accurate data. They should ensure all necessary information from the ticket is correctly applied or take appropriate action based on the request.
  • What troubleshooting skills are crucial for resolving integration issues with security tools?
    • The candidate should be proficient in navigating Gitlab pipeline jobs and glean useful information from the command-line interface logs. Additionally, they should be able to navigate Veracode or other SAST platform tools when helping a dev or customer and know when to engage other appropriate teams for resolution if further support is required.
  • How should the candidate handle security-related tasks and requests in ServiceNow?
    • The process aligns with the responsibilities outlined in question 3. The candidate should review the request details, ensure accuracy, and take the necessary steps to fulfill the request appropriately.
  • What kind of experience should they have with integrating security scanning tools into CI/CD pipelines?
    • While they are not expected to develop integrations themselves, the candidate should have a working knowledge of how SAST and SCA tools integrate into GitLab. They must understand these integrations well enough to assess their functionality and troubleshoot basic issues.
  • How should the candidate evaluate and approve remediation plans and compensating controls?
    • The candidate should thoroughly review requests, ensuring all necessary details are included. If information is insufficient, they should engage with the requestor (e.g., developers) to obtain additional details. Once the full context is available, they must assess whether the proposed remediation or compensating control effectively mitigates the risk and take the appropriate action to approve or deny the request.
  • Will the candidate be involved in remediating issues found in scans? If so, to what extent?
    • No, the candidate will not be directly coding fixes. However, they will act as a consultant, working closely with developers to help them understand identified vulnerabilities and guide them in remediating their code effectively.

For Immediate Consideration, Please Contact

AISHWARYA

PRIMUS Global Services

Direct - (972) 798-2408

Desk - (972) 753-6500 Ext. 215

Email: [email protected]

Job Tags

Remote job, Full time, Contract work, Immediate start,

Similar Jobs

White Force Outsourcing Pvt Ltd

Car driver Job at White Force Outsourcing Pvt Ltd

 ...Urgent requirements:-Position:- 4 wheeler Driver(Car pickup and drop service )Experience:- min 1-2 yrs exp. in Manual & Automatic Car driving Location:- Delhi ( Mayapuri, Motinagar, Okhla, wazirpur, gurgaon, Noida)Salary:- 150 per Trip(15-15 days salary process... 

Hampton Inn & Suites Richmond

Night Auditor - Hampton Inn Richmond, IN Job at Hampton Inn & Suites Richmond

 ...day's operations. The primary focus of this role is to reconcile the days financial activities, manage guest services during the overnight shift, Manager on duty coverage and provide exceptional guest experiences.Essential functions: Reasonable accommodations may be... 

Eye To Eye Careers

Full-Time Optometrist - $10k sign on bonus, $5k relocation! Competitive salary, Work Life Balance & Great benefits! - Medford, OR Job at Eye To Eye Careers

Full-Time Optometrist - $10k sign on bonus, $5k relocation! Competitive salary, Work Life Balance & Great benefits! - Medford, Oregon Apply today and be a part of a practice that has built a valued reputation in the Medford, OR community with a focus on excellent patient... 

Moda Health

Sales Assistant I Job at Moda Health

 ...organization. Lets be better together. Position Summary Provides internal administrative assistance to the Account Manager Provides daily access for Agents, Group Administrators and Sales and Services staff by phone, email and in person. Provides administrative support... 

The Comforted Kitty

Cat Sitter Job at The Comforted Kitty

 ...of turning your passion for felines into a rewarding job? If so, The Comforted Kitty is looking to contract immediately with a self-employed Cat Sitter in the San Francisco area. The position is very flexible: you set your own hours, service area, and when you want...