Job Description
The Code Scanning SME will focus on optimizing code scanning and secure development practices. This leadership role will guide the evolution of the code review process, particularly in light of a planned migration to new tooling. The SME will provide strategic input to improve program efficiency, ensure alignment with secure coding standards, and influence the development of training and best practices.
• Serve as the delegate for the Project Lead, supporting program execution and stakeholder engagement.
• Provide leadership and strategic guidance for code scanning program optimization, including tool migration planning and process improvements.
• Define and refine policies, standards, and workflows for code scanning and vulnerability management.
• Collaborate with engineering, security, and product teams to ensure secure coding practices are embedded in development processes.
• Influence the development of secure coding training and awareness programs.
• Monitor industry trends to recommend enhancements to optimize scanning tools and methodologies.
• Establish metrics and reporting frameworks to measure program effectiveness and progress.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
• Secure Coding Practices: Strong understanding of secure development methodologies and vulnerability prevention techniques.
• Code Scanning Tools: Familiarity with Veracode, Checkmarx, Endor Labs, GitHub Advanced Security and related SAST/SCA technologies.
• Program Leadership: Ability to guide large-scale security initiatives, manage tool migrations, and optimize processes.
• CI/CD Integration: Knowledge of embedding security controls into development pipelines.
• Strategic Communication: Skilled at influencing stakeholders and articulating program goals and improvements.
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.