SAST Remediation Engineer - Onsite

Overview

Contract - W2

Skills

Java
.Net
Python
NIST
Financial services
BEST PRACTICES
TRANSLATE
REMEDIATION
EXCELLENT VERBAL AND WRITTEN COMMUNICATION SKILLS
Vulnerability Assessment
Cryptographic

Job Details

Cerebra Consulting Inc is a System Integrator and IT Services Solution provider with a focus on Big Data, Business Analytics, Cloud Solutions, Amazon Web Services, Salesforce, Oracle EBS, Peoplesoft, Hyperion, Oracle Configurator, Oracle CPQ, Oracle PLM and Custom Application Development. Utilizing solid business experience, industry-specific expertise, and proven methodologies, we consistently deliver measurable results for our customers. Cerebra has partnered with leading enterprise software companies and cloud providers such as Oracle, Salesforce, Amazon and able to leverage these partner relationships to deliver high-quality, end-to-end customer solutions that are targeted to the needs of each customer.

Job Title: SAST Remediation Engineer
Location: Pittsburgh PA / Florham Park NJ - Onsite
Type: Contract
Job Description:
We are seeking a skilled SAST Remediation Engineer to join our team and provide strong security and remediation services to meet project requirements. The ideal candidate must have hands-on experience in secure code review, especially in Java and .Net environments.
Key Responsibilities:
  • Perform security best practices during the design and proposal of solutions for enterprise customers.
  • Conduct secure code reviews with strong experience in Java / .Net.
  • Evaluate and remediate application vulnerabilities using tools like Fortify and Veracode.
  • Collaborate with development teams to understand and explain security risks and their impact.
  • Provide detailed remediation support, including code snippets.
  • Follow security frameworks and processes, such as OWASP Top 10, NIST, OSSTMM, and OSINT.
  • Adopt a risk-based approach to translate technology risks into actionable and prioritized remediation tasks.
Required Skills:
  • Strong knowledge of application vulnerability assessment, penetration testing, and ethical hacking.
  • Experience with secure code review in Java and .Net environments.
  • Good understanding of security frameworks, cryptographic libraries, and server-side security.
  • Proficient in tools like Fortify, Veracode, and other SAST tools.
  • Excellent verbal and written communication skills.
  • Ability to listen, ask probing questions, and deliver impactful presentations.
Nice to Have:
  • Certifications in security/technology domains (Java / .Net / Python).
  • Experience in the banking or financial services domain is a plus.
Thanks,
Sudhanshu Srivastava

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.