Application Security Tooling Administrator

Conviso Inc is looking to hire Application Security Tooling Administrator. This is remote role and it comes with benefits, 401K & some accrued PTO. Title: Application Security Tooling Administrator Remote RoleCertification Requirement: DoD 8570 IAT II (i.e. Security+) Active Secret clearance needed Key ResponsibilitiesOwn and operate Sonatype, Fortify, StackRox (ACS), and Burp in on-prem/cloud (OCI preferred).Integrate security tools into CI/CD with policy gates and secure-by-default workflows.Tune policies, reduce false positives, and run auditable vulnerability management.Partner with engineering on remediation, retesting, and secure coding guidance.Lead container/Kubernetes security and incident-ready detections.Deliver metrics, dashboards, and RMF/ATO audit support.Required Qualifications3+ years in application security engineering and/or DevSecOps in regulated environments.Hands-on admin experience in pipeline integration with Sonatype, Fortify, StackRox/ACS, and Burp.Strong CI/CD automation and DevSecOps experience.Solid knowledge of Secure SDLC, OWASP Top 10, SBOM, containers/K8s, Linux, networking, and TLS.Experience with common build systems (Maven, .NET, npm, pip) and Oracle Cloud Infrastructure.Relevant certifications (one or more): Security+, CISSP, CSSLP, GIAC, Kubernetes security certs.