Application & Cloud Security Engineer

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - W2
Contract - Independent
Contract - 6 Month(s)
No Travel Required

Skills

Checkmarx
Invicti
SonarQube
Application Security
Cloud Security
Prisma
GCP
DAST
ServiceNow

Job Details

Hi,

Title: Application & Cloud Security Engineer
Location: Onsite Houston, TX ( Hybrid 3 days work from office and 2 days remote) No Remote.
Job Type: Contract
Duration: 6+ Months


Skills:
2 years and above of experience in Application Security and/or Cloud Security
Must Have: Checkmarx, Invicti, SonarQube (AppSec tools)

Must Have: Prisma Cloud, Wiz (CloudSec tools).
Must have: Understanding of secure coding, OWASP Top 10, and cloud security best practices (Azure CAF, Google Cloud Platform Security Foundations).
Familiarity with CI/CD pipelines, DevOps workflows, and Infrastructure-as-Code (Terraform, GitHub Actions, Jenkins, etc.).
Strong problem-solving skills, ability to prioritize high-risk findings, and collaborative approach with developers/engineers.

Job Description:
We are seeking a motivated Application & Cloud Security Engineer with hands-on experience in modern AppSec and CloudSec tools. This role will focus on securing applications and cloud environments by enabling scanning tools, triaging findings, driving remediation with engineering teams, and maturing automation and metrics.
Application Security:
Configure, manage, and optimize Checkmarx (SAST), Invicti (DAST), and SonarQube to ensure continuous application scanning.
Enable SAST/DAST scanning, secrets scanning, API security, and dependency management across repositories.
Partner with development teams to triage vulnerabilities, provide remediation guidance, and integrate security in CI/CD pipelines.
Cloud Security:
Administer and enhance Prisma Cloud and Wiz for CSPM, CNAPP, and CWPP use cases.
Identify and remediate misconfigurations, compliance violations, and workload risks across Azure, Google Cloud Platform, and hybrid cloud environments.
Support IaC security checks, cloud posture reporting, and runtime monitoring.
Collaboration & Governance:
Work closely with Engineering, IAM, Networking, and Infrastructure teams to drive secure-by-design practices.
Document standards, playbooks, and security guardrails across AppSec and CloudSec.
Contribute to automation of dashboards, ticketing (ServiceNow), and metrics visualization (Tableau/PowerBI).

Thanks & Regards,

Hari Haran.S

Mobilizing Technology.

O:

C:

Email:

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.