Rust Jobs for Rustaceans

Key Responsibilities:

• Lead the implementation and enhancement of SCA practices using tools like Checkmarx One, Veracode, Snyk, or Black Duck.
• Develop custom queries and manage engine pack upgrades within SCA tools.
• Collaborate with development teams to integrate security into the SDLC and CI/CD pipelines.
• Write scripts in PowerShell, Python, or JavaScript to automate security processes.
• Tune false positives and reduce vulnerability noise in security scans.
• Support audits and compliance efforts (e.g., SOC 2, PCI-DSS).
• Contribute to the design of secure coding frameworks and application security strategies.
• Research and recommend cutting-edge tools and practices, including AI-based solutions.

** Required Qualifications **

• 5+ years of experience in Application Security and DevSecOps.
• Strong expertise in SCA tools and practices.
• Proficiency in scripting languages: PowerShell, Python, or JavaScript.
• Solid understanding of NIST standards and vulnerability tuning.
• 3+ years of experience with programming languages such as .NET, C#, Java, Rust, or C++.
• Experience integrating SAST/DAST tools into CI/CD pipelines.

**Nice To Have **

• Experience with AI tooling in the context of application security.
• Familiarity with container security and SBOM creation.

**Ideal Candidate Profile **

• Focused solely on application security (not networking, cloud, or infrastructure-heavy).
• Demonstrated experience with Checkmarx, Fortify, Veracode, or similar tools.
• Proven ability to embed security into development workflows and pipelines.