Hiring - Application Security Analyst (SAST, DAST, SCA, and OWASP Top 10) Location: Fort Mill SC

[Bishwa Mahato]

Title: Application Security Analyst (SAST, DAST, SCA, and OWASP Top 10)

Location: Fort Mill SC

$55/HR C2C

Any Visa except GC

Responsibilities:

• Schedule and perform regular application security tests.

• Conduct penetration tests on critical software and systems and test changes before production release.

• Analyze and validate discovered vulnerabilities, track testing activities, and present findings to stakeholders.

• Maintain vulnerability dashboards, improve asset management, and enhance threat-modelling processes.

• Review source code to identify security issues and duplicates.

• Use security testing tools such as Fortify and Burp Suite and automate scans within CI/CD pipelines.

• Collaborate with development teams to improve secure-coding practices.

• Support incident response investigations and perform red-, purple-, and penetration-testing engagements.

 

Required Skills & Experience:

• 4–6+ years of experience in security testing, including SAST, DAST, SCA, and OWASP Top 10.

• Hands-on experience verifying vulnerabilities through manual testing.

• Familiarity with security platforms such as Checkmarx, AppScan, Fortify, and Veracode.

• Experience working with web services, JSON, and API testing.

• Proficiency in one or more programming languages (.NET, C, C++, Java, Python).

• Knowledge of object-oriented programming concepts and JavaScript frameworks (Node.js, React).

• 1–3 years of web-development experience using HTML, ASP, ColdFusion, JSP, Node.js, and React.

• Experience with pipeline integration and source-code management tools (Jenkins, GitHub).

• Working knowledge of relational databases (SQL Server, MySQL) and ability to write SQL queries.

• Basic understanding of Microsoft Azure.