×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant Information Security

Security Testing Specialist - SAST

Job in Pittsburgh, Allegheny County, Pennsylvania, 15201, USA
Listing for: PNC Financial Services Group, Inc.
Full Time position
Listed on 2026-06-10
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, Information Security
Job Description & How to Apply Below
Position Overview

At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company's success. As a Software Security Specialist Sr within PNC's Technology organization, you will be based in Pittsburgh, PA;
Cleveland, OH;
Denver, CO;
Birmingham, AL; or Phoenix, AZ.

* Review findings from Static Application Security Testing (SAST) scanning solutions to identify true positive vulnerabilities.

* Manually review code using your expert knowledge to identify vulnerabilities in code which may be missed or is not possible to be detected by automated SAST scanners

* aid in onboarding new and existing in-scope mnemonics to the program. This allows us to receive continuous scan results as developers push new builds in order to shift left and identify vulnerabilities earlier in the development process.

* evaluate new SAST solutions to further enhance our program as the market shifts and new techniques/technologies are made available

Skills:

* JAVA, .NET, Python

* Application Development and Application Security experience

* Perform tool assisted application security testing (SAST)

* Manually reviewing code for vulnerabilities

* Triage and report vulnerabilities discovered

* Assist developers with vulnerability remediation

* Assist teams with onboarding to our SAST platform and orchestrating scans with our CI/CD platform

PNC is an in-office company that fosters a supportive culture where employees can thrive and achieve balance. We encourage candidates to connect with their recruiter and hiring manager to understand workplace expectations and ensure the role aligns with their goals.

PNC will not provide sponsorship for employment visas or participate in STEM OPT for this position.

Job Description

* Carries out security testing of applications, infrastructure, and/or platforms to discover security vulnerabilities.

* Performs manual & automated security testing.

* Performs manual testing to validate vulnerabilities.

* Reviews the testing results with stakeholders and creates a report to review results with stakeholders.

* Assists in the design and implementation of security solutions and continuously enhances information security approaches and methodologies at manager discretion.

PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be:

* Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.

* Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.

Qualifications

Successful candidates must demonstrate appropriate knowledge, skills, and abilities for a role. Listed below are skills, competencies, work experience, education, and required certifications/licensures needed to be successful in this position.

Preferred Skills

Access Control (AC), Application Security, Application Security Code Review, Application Security Testing, Building Architecture, Customer Solutions, Disaster Recovery Planning, Information Security, Network Security, Physical Security, Risk Assessments, Security Technologies, Static Application Security Testing (SAST)

Competencies

Analytical Thinking, Effective Communications, Information Assurance, Information Security Management, Information Security Technologies, IT Environment, IT Standards, Procedures & Policies, IT Systems Management, Problem Solving, Software Security Assurance

Work Experience

Roles at this level typically require a university / college degree, with 5+ years of industry-relevant experience. Specific certifications are often required. In lieu of a degree, a comparable combination of education, job specific certification(s), and experience…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search