Post Job Free
Sign in

Application Security Analyst with SAST/DAST/SCA Expertise

Location:
Miami Gardens, FL
Posted:
January 06, 2026

Contact this candidate

Resume:

SHAMSAD ASGAR

******@*******.*** 954-***-**** Hollywood, FL 33021

Summary

IT security professional with 10 years of experience designing and implementing security solutions in high-availability environments. Skilled in Web Application and API security adept at delivering strong risk management practices. Securing networks and applications to make the environment more secure. Looking forward to working with an organization where I can put my knowledge and think out of the box to achieve targets.

Skills

Burp suits

Checkmarx

CxOne

SAST

DAST

Workday

Blackduck

Service Now

Splunk

CrowdStrike Falcon

Salesforce

OAuth 2.0, JWT, API Keys, Basic Auth

Veracode

Rapid 7

Vulnerability management

Swagger

Basic Cryptography

Azure

Thread Modeling

Qualys

SOC

Python

Postman

CI/CD (GitHub Actions, Jenkins)

Experience

FIS Global Solutions Jacksonville, FL

IT Security Analyst Senior (Remote)

04/2023-09/2025

Performed research on new vulnerabilities, attack vectors, exploits, too

Performed DAST scan on the multiple targets using Burpsuite.

Performed Threat Modelling of applications

SAST using Checkmarx and Veracode evaluate the Vulnerabilities whether secure development practices have been implemented to properly mitigate the Vulnerabilities.

Reviewed findings from Static Application Security Testing (SAST) and Software Composition Analysis (SCA)

Blackduck OSS for SCA Remediation

Analyzing Bug Bounty Reports to evaluate the cause of exploitation and identify if the scanner can detect the associated vulnerability or any Vulnerability that it can be associated with.

Well versed with OWASP Top 10 concepts

Tracking and Reproduce Pentest Findings to help Development teams to remediate the Issues as per the SLA

Monitor security events, alerts, and indicators of compromise using SIEM tools and dashboards

Coordinate with remote teams for issues related to cloud platforms (AWS/Azure)

Ryder System Inc Miami, FL

Application Security Analyst

02/2021 – 03/2023

Assist with planning and executing application & on-prem/cloud security solutions across the lifecycle – design, implementation and operations

Implemented application security controls, support delivery teams and staff, and guide application development team members

Implement Static Application Security Testing (SAST) environment and ensure is performing optimally

Supported security strategy plans and roadmaps based on secure development best practices and provide guidance and hands-on experience to project teams in design, development, and maintenance of security solutions including cloud

Integrated security-scanning tools as part of DevSecOps.

Support security automation tools to improve efficiency and productivity for application development teams

Maintained and updated Salesforce security documentation, ensuring alignment with platform best practices and compliance frameworks (NIST, OWASP, CIS)

Analyzed the dynamic test results & Open-Source scan results and validate report, findings and recommendations

Collaborated with dependent Salesforce orgs and cross-functional teams to standardize security baselines, share vulnerability findings, and coordinate remediation.

Reduced critical vulnerabilities by 45% through early detection and standardized remediation workflows

Ryder System Inc Miami, FL

Quality Assurance Analyst

02/2014 - 05/2021

Established test scripts in QTP using VB Script for automation of Web Based Applications.

Performed automation Scripts in QTP, Modified Scripts for various data and set up checkpoints in scripts and have extensive knowledge on object repository and parametrization.

Accomplished quickly learning new technologies, methods, procedures and applying them to projects.

Worked with team members to create efficient workflows, resulting in high productivity.

Conducted backend validation using SQL.

Logged defects in JIRA and collaborated with developers

Designed and executed API test cases for REST endpoints.

Education and Certification

Nova Southeastern University Davie, FL

Master of Science in Information Security

05/2014

Florida Atlantic University Boca Raton, FL

Bachelor of Science in Computer Engineering

12/2005

Certification

CompTIA Security+ (SYO-701)

Azure Security Engineer Associate (AZ-500)

Training

Hands on SOC Analyst & Data Analytics



Contact this candidate