Security Remediation Specialist

Security Remediation Analyst

Location: Sat Lake, Utah - Remote

Job Type: Contract - 12-14 Weeks

Compensation: $30

We are seeking a highly collaborative and organized individual to remediate and remove commitments in our client’s repository. This role requires attention to detail, commitment to documentation, and cross-team collaboration. Execute a high-velocity security “burn-down” across 150+ Git Hub repositories and perform a comprehensive PII sanitization of our Jira instance.

• Vulnerability Resolution: Hands‑on fixing of SAST/SCA findings (e.g., CodeQL, Dependabot). You will be responsible for writing the code fixes and upgrading libraries.
• Secret Liquidation: Identifying hardcoded secrets, coordinating with Dev Ops for rotation, and using tools (like git-filter-repo) to scrub them from Git history.
• Bulk PR Management: Managing the rollout of security patches across 150 repositories, ensuring minimal disruption to development workflows.
• Triage: Evaluating findings to prioritize “Critical” and “High” risks while documenting false positives.
• PII Scanning: Configuring and running automated scans (e.g., Soteri, Atlassian Guard) to identify sensitive data (SSNs, CCs, Credentials) in Jira tickets, comments, and attachments.
• Data Redaction: Executing the permanent redaction or masking of PII while maintaining the integrity of ticket history.
• Prevention Logic: Implementing Jira Automation rules or “hooks” to prevent future PII leaks.

Equal Employment Opportunity Statement
Gravity IT Resources is an Equal Opportunity Employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, disability, genetic information, veteran status, or any other legally protected characteristic. All employment decisions are based on qualifications, merit, and business needs.