Description

"Required Skills:
• Indepth knowledge and experience in performing code scanning and analysis for security vulnerabilities.
• Proficiency in using SonarQube for code quality and security assessments.
• Strong understanding of secure coding practices and common security vulnerabilities.
• Ability to communicate effectively with developers and other stakeholders to address code issues.
• Relevant certifications in security, such as Certified Information Systems Security Professional (CISSP), are a plus.
• Experience with other code scanning tools and technologies in addition to SonarQube.
• Knowledge of secure coding standards, OWASP Top 10, and other industry security frameworks.
• Familiarity with scripting languages for automation of code scanning processes.
• Ability to work in a fast
• *paced environment and handle multiple projects simultaneously.
• Strong analytical and problem
• *solving skills to identify and resolve complex security issues.

Roles and responsibilities:
• Conduct thorough code scanning and analysis using various tools with a focus on TVM (Threat and Vulnerability Management).
• Utilize expertise in SonarQube to perform code reviews, identify security vulnerabilities, and ensure code quality.
• Collaborate with development teams to provide recommendations for improving code security and quality.
• Develop and implement code scanning strategies to proactively identify and mitigate security risks.
• Stay updated on the latest security threats and vulnerabilities to enhance the code scanning process. "

Education

ANY GRADUATE