Hiring!! Application Security Analyst - Remote (need candidate - Charlotte, NC/ Raleigh, NC / GA/ TX / VA)

Hi,

Please go through below role and let me know your interest -

Need w2 candidate only !!

Job role: Application Security Analyst - W2 only
Location: Remote in client's locations (Charlotte, NC/ Raleigh, NC / Atlanta, GA/ Dallas, TX / Richmond,VA)
Duration: 6 Months CTH

Job Description:
Role Responsibilities:

• Manage new API security intake requests, ensuring proper documentation and risk assessment.
• Coordinate with development teams to gather additional technical details for security reviews.
• Track and ensure timely responses between security and development teams for remediation and clarifications.
• Maintain and optimize application security scanning schedules for APIs, containers, and applications.
• Perform and validate DAST (Dynamic Application Security Testing) and SAST (Static Application Security Testing) scans, analyze results, and drive remediation.
• Oversee container security assessments, ensuring compliance with organizational standards.
• Document findings, create actionable reports, and communicate risks effectively to technical and non-technical stakeholders.
• Support knowledge transfer from outgoing consultants and ensure continuity of security processes.

Must Have Skills/Prior Experiences:

• Hands-on experience with API security testing and vulnerability management.
• Strong knowledge of DAST and SAST tools (e.g., Burp Suite, OWASP ZAP, Veracode, Checkmarx, Fortify).
• Familiarity with container security (e.g., Docker, Kubernetes, image scanning tools like Anchore or Trivy).
• Proven ability to manage security intake processes and coordinate across multiple development teams.
• Solid understanding of secure coding practices, OWASP Top 10, and API-specific security risks.
• Excellent communication and stakeholder management skills for cross-team collaboration.
• Ability to work independently and hit the ground running in a fast-paced environment.

PlNice to Have Sklls/Prior Experiences:

• Knowledge of cloud-native security (AWS, Azure, Google Cloud Platform) and API gateways.
• Experience with CI/CD pipeline integration for security tools.
• Familiarity with threat modeling and risk assessment methodologies.
• Exposure to DevSecOps practices and automation of security testing.
• Certifications such as CSSLP, GWAPT, or API Security Specialist.

--------

Thanks.

Regards,

Ashish

Email ID: