Truist · 16 hours ago
Cybersecurity Engineer - SAST Engineer/ DevOps
Atlanta, GA
Full-time
Onsite
Senior Level
5+ years expTruist is a financial services company seeking a Cybersecurity Engineer specializing in SAST and DevOps. The role involves reviewing source code security mitigations, providing troubleshooting support, and managing SAST tooling operations.
BankingFinanceFinancial Services
No H1B
Responsibilities
Review proposed mitigations and verify that they effectively address identified vulnerabilities
Identify any challenges or issues that might be related to VeraCode SAST scans
Working with organizational stakeholders (Developers, Mitigation team, BISMs) to ensure they understand and can follow established procedures
Provide troubleshooting support for scan related activities
Stay up-to-date with the latest information related to application security and source code review
Review and potentially implement upcoming and new opportunities to improve the effectiveness of the SAST program (e.g. VeraCode releases new functionality such as Container scanning)
Assist with identification and execution of program improvement opportunities
Manage day to day SAST related activities such as account, team, and application management
Provide SAST process related training for development teams
Continually improve the SAST program
Provide automation of repeatable tasks
Create and manage actionable metrics
Communicate changes and status to stakeholders
Qualification
Required
Bachelor's degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experience
In-depth knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security
Previous experience in planning and managing IT projects
Preferred
Proficiency in using SAST and SCA tooling
Understand software development and testing methodologies and continuous integration/continuous delivery (CI/CD)
Understand static analysis tools and techniques – especially if they are up to date on some of the generative ai capabilities
Program language knowledge for commonly used languages such as C#, Java, Python, and JavaScript
Familiarity with common code deployment methods and automation tools such as Jenkins
Web application security knowledge and an understanding of the most common web application security vulnerabilities
An understanding of the SAST and SCA process - what it is, why it is used, and when
An understanding of the abilities and limitations of SAST tooling
Knowledge of the software development life cycle, especially in areas of code development, testing, and deployment
Experience working with different frameworks such as NIST and OWASP
An understanding of different data sensitivity classification types such as personally identifiable information
Excellent communication skills
In-depth knowledge of application security vulnerabilities and how to mitigate them
Ability to work independently and as part of a team
Time management and organizational skills
Benefits
Medical
Dental
Vision
Life insurance
Disability
Accidental death and dismemberment
Tax-preferred savings accounts
401k plan
Vacation
Sick days
Paid holidays
Defined benefit pension plan
Restricted stock units
Deferred compensation plan
Company
Truist
Truist is the sixth-largest commercial bank in the U.S.
10001+ employees
Funding
Current Stage
Late StageTotal Funding
unknown2021-01-01Seed
Leadership Team
Michael Maguire
Chief Financial Officer
James Cordovana
SVP of Cloud Security Enterprise Architect
Recent News
2026-01-16
Bizjournals.com Feed (2025-11-12 15:43:17)
2026-01-15
Company data provided by crunchbase