Kforce Inc · 6 hours ago
SAST Implementation SME
Tampa, FL
Contract
Onsite
Senior Level
$53/hr - $63/hrKforce Inc is seeking a SAST Implementation SME who will focus on integrating and optimizing Static Application Security Testing (SAST) tools and processes across the organization. This leadership role will guide the implementation and operationalization, ensuring alignment with secure coding standards and organizational objectives.
ConsultingEmploymentFinancial ServicesHuman ResourcesStaffing Agency
Responsibilities
Serve as the delegate for the Project Lead, supporting program execution and stakeholder engagement
Lead the selection, proof-of-concept (PoC), configuration, and implementation of SAST tools (e.g., Checkmarx, Veracode, SonarQube, Fortify) within development environments and CI/CD pipelines
Define and optimize policies, standards, and workflows for SAST integration and vulnerability management
Collaborate with engineering, security, and product teams to embed SAST into the Software Development Lifecycle (SDLC) and DevSecOps pipelines
Guide the development of secure coding training and awareness programs
Monitor industry trends to recommend enhancements to SAST tool implementation and utilization methodologies
Establish metrics and reporting frameworks to measure program effectiveness and progress
Support troubleshooting and escalation management for SAST-related issues in collaboration with technical teams and vendors
Qualification
Required
High School diploma/GED required
SAST Expertise: Deep understanding of SAST tools and their deployment, configuration, and optimization
Secure Coding Practices: Strong knowledge of vulnerability prevention techniques and standards (e.g., OWASP Top 10, CWE/SANS Top 25)
Tooling Knowledge: Familiarity with Checkmarx, Veracode, SonarQube, Fortify, and related technologies
DevSecOps Integration: Experience embedding SAST into CI/CD pipelines and automating security checks
SCA Expertise: Deep understanding of SCA principles, tools, and best practices for managing open-source and third-party components
Software Supply Chain Security: Strong knowledge of vulnerability prevention, license compliance, and SBOM management
Tooling Knowledge: Familiarity with Endor Labs, Mend/WhiteSource, Black Duck, Snyk, and related technologies
DevSecOps Integration: Experience embedding SCA into CI/CD pipelines and automating security checks
Program Leadership: Ability to guide large-scale security initiatives, manage tool migrations, and optimize processes
Strategic Communication: Skilled in influencing stakeholders and articulating program goals and improvements
Risk Assessment: Experience assessing vulnerabilities and license risks in third-party components
Benefits
Medical/dental/vision insurance
HSA
FSA
401(k)
Life, disability & ADD insurance
Paid time off
Paid sick leave
Company
Kforce Inc
Kforce is a solutions firm specializing in technology, finance and accounting, and professional staffing services.
Founded in 1962
1001-5000 employees
H1B Sponsorship
Kforce Inc has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (792)
2024 (667)
2023 (734)
2022 (843)
2021 (1197)
2020 (858)
Funding
Current Stage
Public CompanyTotal Funding
unknown2024-05-20IPO
2014-06-08Acquired
Leadership Team
Aaron Travis
Digital Experience Delivery Director | Kforce Consulting Solutions
Recent News
2025-11-19
2025-11-07
2025-11-04
Company data provided by crunchbase