Talent.com
Source Code Review / SAST Security Analyst
Source Code Review / SAST Security AnalystShieldByte Infosec Pvt. Ltd. • Mumbai, Maharashtra, India
Source Code Review / SAST Security Analyst

Source Code Review / SAST Security Analyst

ShieldByte Infosec Pvt. Ltd. • Mumbai, Maharashtra, India
6 days ago
Job description

Position : Source Code Review / SAST Security Analyst

Experience : 1–8 years

Location : Ghatkopar, Mumbai

Job description

Shieldbyte Infosec is a leading cybersecurity company. We specialize in penetration testing, phishing simulation, cybersecurity training, and cybersecurity compliance audits. Join us to make a global impact in the dynamic field of cybersecurity.

We are seeking a skilled Source Code Review / SAST Security Analyst to identify security vulnerabilities across applications, APIs, and platforms through detailed code analysis. The ideal candidate will have hands-on experience with secure coding practices and static application security testing (SAST), and the ability to collaborate with development teams to remediate issues and strengthen product security.

Responsibilities

  • Perform manual and tool-based Source Code Reviews to identify vulnerabilities, insecure patterns, logic flaws, and architectural weaknesses.
  • Conduct Static Application Security Testing (SAST) using industry-standard tools (e.g., SonarQube, Checkmarx, Fortify, Veracode, Snyk, GitLab SAST).
  • Analyze code in multiple programming languages , including but not limited to Java, Python, PHP, JavaScript / Node.js, C#, Go, Ruby, and mobile app codebases (Android / iOS).
  • Work closely with developers to explain findings , provide secure coding guidance, and support remediation.
  • Validate fixes and conduct retesting to ensure vulnerabilities are properly resolved.
  • Prepare detailed technical reports , risk ratings, and executive summaries.
  • Review CI / CD pipelines to integrate security controls and automated SAST scans.
  • Evaluate and enhance secure SDLC (SSDLC) processes.
  • Identify OWASP Top 10, SANS Top 25, API security issues, and business logic weaknesses in codebases.
  • Participate in architecture reviews , threat modeling sessions, and code-level deep dives.
  • Stay updated with the latest security research, CVEs, and secure coding standards.

Skills and Qualifications

  • 1–8 years of hands-on experience in source code analysis and SAST .
  • Strong understanding of secure coding principles and common vulnerability patterns.
  • Familiarity with OWASP , Secure Coding Standards , and industry best practices.
  • Experience using one or more SAST tools (Checkmarx, Fortify, SonarQube, Veracode, GitLab SAST, Snyk, etc.).
  • Ability to read, interpret, and analyze complex code logic.
  • Strong knowledge of at least two programming languages.
  • Good understanding of web applications, APIs, and microservice architecture.
  • Knowledge of DevSecOps integrations and CI / CD pipelines is a plus.
  • Excellent verbal and written communication skills.

    • Preferred Qualifications

  • Experience with DAST, SCA, or penetration testing is an added advantage.
  • Certifications such as CEH, OSCP, GWAPT, CASE, CSSLP, or similar will be preferred.
    • Create a job alert for this search

    Security Analyst • Mumbai, Maharashtra, India

    Related jobs
    Lead Security Engineer

    Lead Security Engineer

    NTT Global Networks • Mumbai Metropolitan Region, India
    Lead Engineer – Security Operations.Strong technical and subject matter expertise in at least four or more of the following security specialties : . Firewall : Cisco, Palo Alto, Checkpoint, Fortinet, Z...Show more
    Last updated: 30+ days ago • Promoted
    Senior Application Security Engineer

    Senior Application Security Engineer

    Sphera • Mumbai, IN
    Sphera is a leading global provider of enterprise software and services that enables companies to manage and optimize their environmental, health, safety and sustainability.Our mission is to create...Show more
    Last updated: 19 days ago • Promoted
    QA Analyst (Remote)

    QA Analyst (Remote)

    Get Hired • Mumbai, IN
    Remote
    Conduct technical quality assurance of recorded interviews, watching assigned recordings end-to-end.Flag and annotate issues such as premature termination, audio / video glitches, and other anomalies...Show more
    Last updated: 13 hours ago • Promoted • New!
    WAF - L2 / L3

    WAF - L2 / L3

    airtel • Navi Mumbai, Maharashtra, India
    Provide L3 support for Akamai WAF (Kona Site Defender), including policy tuning,.Monitor and analyze WAF events, logs, and alerts to detect and mitigate web attacks. Handle incident management and e...Show more
    Last updated: 22 days ago • Promoted
    Security Analyst - Threat Hunting

    Security Analyst - Threat Hunting

    SHI Solutions India Pvt. Ltd. • Mumbai, Maharashtra, India
    We have an immediate requirement for.SHI Locuz Enterprise Solutions Pvt Ltd.Work Experience - 3+years(relevant).Work Location – Mumbai (Aeroli). Install, configure, and manage.Create and deploy cust...Show more
    Last updated: 30+ days ago • Promoted
    Settlement Analyst

    Settlement Analyst

    eClerx • Mumbai, Maharashtra, India
    We have a Walk-In drive scheduled on the 14th & 15th Nov for Security Settlements.Candidates having relevant 2-10 years of experience can attend the below drive. Mindspace Airoli, Thane Belapur road...Show more
    Last updated: 20 days ago • Promoted
    Saviynt (Cloud Identity Security and Management Solutions)

    Saviynt (Cloud Identity Security and Management Solutions)

    Tata Consultancy Services • Mumbai, Maharashtra, India
    Come and join us for an exciting career with TCS!!!.TCS has always been in the spotlight for being adept in “the next big technologies”. What we can offer you is a space to explore varied technologi...Show more
    Last updated: 22 days ago • Promoted
    Technical Screening Analyst (Recruitment)

    Technical Screening Analyst (Recruitment)

    Stellar Consulting Solutions, LLC • Mumbai, IN
    Stellar Consulting Solutions, LLC is looking for a technically strong, detail-oriented Technical Screening Analyst / IT Resource Analyst. This role is perfect for someone who understands technology ...Show more
    Last updated: 18 days ago • Promoted
    SAP Security Administrator

    SAP Security Administrator

    YASH Technologies • Mumbai, IN
    Handle day-to-day SAP Security help desk tickets.Understand and apply Role-Based Access Control (RBAC) concepts and policies. Provision SAP user accounts (create, modify, and deactivate).Communicate...Show more
    Last updated: 9 days ago • Promoted
    Oracle Cloud Security and Risk Management (RMC) Consultant

    Oracle Cloud Security and Risk Management (RMC) Consultant

    Atom • Mumbai, IN
    Job Title : Oracle Cloud Security and Risk Management (RMC) Consultant.We are seeking an experienced Oracle Cloud Security and Risk Management (RMC) Consultant to join our team.The ideal candidate w...Show more
    Last updated: 30+ days ago • Promoted
    Security Operations Engineer

    Security Operations Engineer

    ITPeopleNetwork • Mumbai, IN
    We are looking for a junior to mid-level.Saviynt Identity Access Management (IAM / IGA).CyberArk Endpoint Privilege Manager (EPM). The ideal candidate will assist in user access governance, email thre...Show more
    Last updated: 11 days ago • Promoted
    Fraud & Payments Risk Analyst - 50820

    Fraud & Payments Risk Analyst - 50820

    Turing • Mumbai, IN
    Based in San Francisco, California, Turing is the world’s leading.AI labs and a trusted partner for global enterprises deploying advanced AI systems. Turing supports customers in two ways : first, by...Show more
    Last updated: 24 days ago • Promoted
    Security Lead

    Security Lead

    Emeritus • Mumbai, Maharashtra, India
    Daskalos is seeking a Security Lead to drive hands-on security across applications, cloud infrastructure and operations.This is a remote role for someone with 8-10 years of practical experience in ...Show more
    Last updated: 8 days ago • Promoted
    Senior Portfolio Risk Analyst

    Senior Portfolio Risk Analyst

    Arcana • Mumbai, IN
    Arcana is a portfolio intelligence platform used by hedge funds and asset managers to analyze performance and risk.We’re rethinking the tools institutional investors rely on—and we’re hiring analys...Show more
    Last updated: 16 days ago • Promoted
    Sr. Security Analyst

    Sr. Security Analyst

    Eventus Security • Mumbai, Maharashtra, India
    Location : Sanpada, Navi Mumbai or Ahmedabad.We are seeking an experienced Level 2 Cyber Security Analyst to join our team. The successful candidate will be responsible for monitoring and analyzing s...Show more
    Last updated: 8 hours ago • Promoted • New!
    Sap Security

    Sap Security

    TalentBridge • Mumbai, IN
    Sap Security – Finance (SAP S / 4HANA Security).Months of Contract (With high possibility of Full Time).We are seeking an experienced SAP S / 4 Security Specialist with strong expertise in designing, b...Show more
    Last updated: 10 days ago • Promoted
    AppScan Product _Lead Security Expert _Remote Location

    AppScan Product _Lead Security Expert _Remote Location

    HCLSoftware • Mumbai, IN
    Remote
    Greetings from “HCL Software” Is a Product Development Division of HCL Tech!!.HCL Software” : - Is a Product Development Division of HCL Tech : That operates its primary Software Business.At HCL Soft...Show more
    Last updated: 9 days ago • Promoted
    Security Lead

    Security Lead

    BDx Data Centers • Navi Mumbai, Maharashtra, India
    Provide timely and effective security incident response within a 24x7 SOC environment.Lead operation teams to effectively maintain the lifecycle of both on-premises and cloud-based security solutio...Show more
    Last updated: 30+ days ago • Promoted