Information Security Engineer

Focuses on integrating our Static Application Security Testing (SAST) tool Checkmarx with Corgea building autocode remediation feature for inscope WF apps, enhance any integrations and processes within the pipeline using AI and Machine Learning (ML) features of Corgea, ehancing shift left experience with development teams.

Main Responsibilities:

• Developing and implementing SAST strategies for AI/ML code, customizing SAST tools needed to integrate LLM, AI/ML frameworks, automating testing and integration into CI/CD pipelines, and troubleshooting tool issues.
• Provide hands on technical support for Checkmarx and Checkmarx ONE platform
• Drive vendor accountability to address product defects
• Support patching, upgrade testing
• Collaborate with Product Owners, Application Security Champions, development team members and offshore partners
• Ensure documentation is current and reflects, process changes and have an eye for detail

Required Skills:

• 4+ years of application security experience
• 3+ years of AI/ML development including frameworks like TensorFlow or PyTorch
• 2+ Experience with generative AI models, reinforcement learning, autocode remediation models
• 2+ years of experience with Agile and Atlassian products such as jira/confluence or equivalent
• Good understanding of OWASP top 10
• Strong verbal, written, and interpersonal communication skills
• Excellent customer service skills
• Ability to troubleshoot complex technology integration issues

Desired Skills:

• 2+ years of cloud experience
• 3+ years of scripting experience – python
• 2+ years of SQL experience
• 1+ years of experience using Corgea AI will be plus