About the Role
Job Description
:Perform SAST/SCA/DAST scans using industry vulnerability scanner
SAST/SCA – Veracode, using supplied compiled binary, configure scan platform to correct scan for both static code CWE’s as well as SCA derived CVEs. Work will include coordination with app owner to ensure all branches of code are included in compiled binary file.
DAST – Work begins with crawling the target application to identify existing directory and file structure. Once identified, execute DAST scan using HCL product to identify dynamic issue only visible during code execution.
During testing process, tester MUST ensure application is not degraded and/or taken out of service due to scanning activities
Tester must ensure results from scanner are present in VM reporting platforms and visible to approved app users
Validation - Supplier will perform manual validation and false-positive analysis on the automated scan results.
Rem...
Ready to Join Through a Referral?
Apply now and get connected directly with the hiring team
Apply for this Position