Application & Cloud Security Engineer

Overview

Hybrid
$60 - $70
Contract - Independent
Contract - W2
Contract - 12 Month(s)

Skills

cloud security
application
Checkmarx
Invicti
SonarQube
PRISMA
cloud
security

Job Details

Job: Application & Cloud Security Engineer

Location: Houston, TX 77002

Term: 6-Months Contract to Hire

Interview Process: 30-minute video team may have second round in-person

Project Day to Day: responsible for maintaining the tools, check marks for the application security that does scanning, check for code. Applications security Checkmarx (SAST), Invicti (DAST), SonarQube. Cloud Security PRIMSA cloud, WIZ

When should this person start? ASAP

Is budget approved? YES

C2C accepted? Must be able to convert on W2 W/O sponsorship

Travel: NO

Hours: 40/HR. work week

Remote: Hybrid | 3 days onsite/2 days remote

TOP SKILLS:

Applications security Checkmarx (SAST), Invicti (DAST), SonarQube

Cloud Security PRIMSA

    • WIZ would be a plus, but need to focus on PRISMA

Will consider Multi-cloud with Application skills

    • Soft skills: lots of collaboration, lead projects and almost get started on day one, know tools & technical side
  • Will drive initiatives that manager gets from CISO

HR JOB SUMMARY:

We are seeking a motivated Application & Cloud Security Engineer with hands-on experience in modern AppSec and CloudSec tools. This role will focus on securing applications and cloud environments by enabling scanning tools, triaging findings, driving remediation with engineering teams, and maturing automation and metrics.

Key Responsibilities

  • Application Security:
    • Configure, manage, and optimize Checkmarx (SAST), Invicti (DAST), and SonarQube to ensure continuous application scanning.
    • Enable SAST/DAST scanning, secrets scanning, API security, and dependency management across repositories.
    • Partner with development teams to triage vulnerabilities, provide remediation guidance, and integrate security in CI/CD pipelines.
  • Cloud Security:
    • Administer and enhance Prisma Cloud and Wiz for CSPM, CNAPP, and CWPP use cases.
    • Identify and remediate misconfigurations, compliance violations, and workload risks across Azure, Google Cloud Platform, and hybrid cloud environments.
    • Support IaC security checks, cloud posture reporting, and runtime monitoring.
  • Collaboration & Governance:
    • Work closely with Engineering, IAM, Networking, and Infrastructure teams to drive secure-by-design practices.
    • Document standards, playbooks, and security guardrails across AppSec and CloudSec.
    • Contribute to automation of dashboards, ticketing (ServiceNow), and metrics visualization (Tableau/PowerBI).

Required Skills & Qualifications

  • 5+ years and above of experience in Application Security and/or Cloud Security.
  • Hands-on expertise with:
    • Checkmarx, Invicti, SonarQube (AppSec tools).
    • Prisma Cloud, Wiz (CloudSec tools).
  • Understanding of secure coding, OWASP Top 10, and cloud security best practices (Azure CAF, Google Cloud Platform Security Foundations).
  • Familiarity with CI/CD pipelines, DevOps workflows, and Infrastructure-as-Code (Terraform, GitHub Actions, Jenkins, etc.).
  • Strong problem-solving skills, ability to prioritize high-risk findings, and collaborative approach with developers/engineers
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.