Static Application Security Testing (SAST) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Kforce Inc · 6 hours ago

Static Application Security Testing (SAST)

positionTampa, FL
timeContract
remoteOnsite
senioritySenior Level
money$53/hr - $63/hr

Kforce Inc is seeking a Static Application Security Testing (SAST) expert to implement and optimize Software Composition Analysis tools and processes. This leadership role involves guiding the integration of security practices into the software supply chain and developing training strategies for secure coding and governance.

ConsultingEmploymentFinancial ServicesHuman ResourcesStaffing Agency
check
H1B Sponsor Likelynote

Responsibilities

Serve as the delegate for the Project Lead, supporting program execution and stakeholder engagement
Lead the implementation, configuration, and management of SCA tools (e.g., Endor Labs, Mend/WhiteSource, Black Duck, Snyk) to identify vulnerabilities and license compliance issues in open-source and third-party components
Define and optimize policies, standards, and workflows for SCA integration and vulnerability management
Integrate SCA tools and processes into the Software Development Lifecycle (SDLC) and CI/CD pipelines to automate security checks
Guide the development of secure coding and open-source governance training programs
Monitor industry trends and emerging technologies to recommend enhancements to SCA tools and methodologies
Establish metrics and reporting frameworks to measure program effectiveness and progress
Support troubleshooting and escalation management for SCA-related issues in collaboration with technical teams and vendors
Oversee generation and management of Software Bills of Materials (SBOMs) for compliance and risk assessment

Qualification

DevSecOps IntegrationSCA ExpertiseSoftware Supply Chain SecurityRisk AssessmentTooling KnowledgeStrategic CommunicationProgram Leadership

Required

Experience embedding SCA into CI/CD pipelines and automating security checks
Experience assessing vulnerabilities and license risks in third-party components
Deep understanding of SCA principles, tools, and best practices for managing open-source and third-party components
Strong knowledge of vulnerability prevention, license compliance, and SBOM management
Familiarity with Endor Labs, Mend/WhiteSource, Black Duck, Snyk, and related technologies
Skilled in influencing stakeholders and articulating program goals and improvements
Ability to guide large-scale security initiatives, manage tool migrations, and optimize processes

Benefits

Medical/dental/vision insurance
HSA
FSA
401(k)
Life, disability & ADD insurance
Paid time off
Paid sick leave

Company

Kforce Inc

twittertwittertwitter
Glassdoor3.8
company-logo
Kforce is a solutions firm specializing in technology, finance and accounting, and professional staffing services.
dateFounded in 1962
location
Tampa, Florida, USA
people-size1001-5000 employees
web-link
https://www.kforce.com/

H1B Sponsorship

Kforce Inc has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (792)
2024 (667)
2023 (734)
2022 (843)
2021 (1197)
2020 (858)

Funding

Current Stage
Public Company
Total Funding
unknown
2024-05-20IPO
2014-06-08Acquired

Leadership Team

leader-logo
Aaron Travis
Digital Experience Delivery Director | Kforce Consulting Solutions
linkedin

Recent News

PR Newswire
Monument Consulting Announces 2025 Strategic Suppliers
2025-11-19
thefly.com
Kforce price target lowered by $5.50 at UBS
2025-11-07
Business Wire
Kforce Reports Third Quarter 2025 Revenue of $332.6 Million and EPS of $0.63
2025-11-04
Company data provided by crunchbase