Application Security Engineer (Checkmarx / SAST) - Remote Work

Application Security Engineer (Checkmarx / SAST) at BairesDev

In this role, you'll operate SAST tooling in production day to day, running and tuning Checkmarx or equivalent tools, managing false positives, and performing source‑to‑sink validation on individual findings. This is hands‑on triage work, not program management, requiring the precision to distinguish real vulnerabilities from noise and the discipline to document every decision. This is your opportunity to be the technical expert who keeps application security grounded in real findings rather than metrics, directly shaping the security posture of production systems.

What You'll Do:

• Run and tune SAST tooling in production environments.
• Triage individual security findings through source‑to‑sink validation.
• Manage false positives and document true versus false positive determinations.
• Collaborate with development teams to remediate confirmed vulnerabilities. <...