Need Application Security & Cloud Security Engineer - Houston, TX

Overview

Full Time
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - Months Contract-to-hire

Skills

FOCUS
API
Management
Use Cases
Regulatory Compliance
Reporting
Collaboration
Computer Networking
Dashboard
ServiceNow
Visualization
Tableau
Microsoft Power BI
Software Security
Cloud Computing
OWASP
Cloud Security
Microsoft Azure
Google Cloud Platform
Google Cloud
Continuous Integration
Continuous Delivery
DevOps
Workflow
Terraform
GitHub
Jenkins
Conflict Resolution
Problem Solving

Job Details

TOP SKILLS:
Prisma Cloud is required.
Checkmarx (SAST), Invicti (DAST), and SonarQube client really wants all 3 but 1 of these would be fine too.

We are seeking a motivated Application & Cloud Security Engineer with hands-on experience in modern AppSec and CloudSec tools. This role will focus on securing applications and cloud environments by enabling scanning tools, triaging findings, driving remediation with engineering teams, and maturing automation and metrics.

Key Responsibilities

  • Application Security:
    • Configure, manage, and optimize Checkmarx (SAST), Invicti (DAST), and SonarQube to ensure continuous application scanning.
    • Enable SAST/DAST scanning, secrets scanning, API security, and dependency management across repositories.
    • Partner with development teams to triage vulnerabilities, provide remediation guidance, and integrate security in CI/CD pipelines.
  • Cloud Security:
    • Administer and enhance Prisma Cloud and Wiz for CSPM, CNAPP, and CWPP use cases.
    • Identify and remediate misconfigurations, compliance violations, and workload risks across Azure, Google Cloud Platform, and hybrid cloud environments.
    • Support IaC security checks, cloud posture reporting, and runtime monitoring.
  • Collaboration & Governance:
    • Work closely with Engineering, IAM, Networking, and Infrastructure teams to drive secure-by-design practices.
    • Document standards, playbooks, and security guardrails across AppSec and CloudSec.
    • Contribute to automation of dashboards, ticketing (ServiceNow), and metrics visualization (Tableau/PowerBI).

Required Skills & Qualifications

  • 2 years and above of experience in Application Security and/or Cloud Security.
  • Hands-on expertise with:
    • Checkmarx, Invicti, SonarQube (AppSec tools).
    • Prisma Cloud, Wiz (CloudSec tools).
  • Understanding of secure coding, OWASP Top 10, and cloud security best practices (Azure CAF, Google Cloud Platform Security Foundations).
  • Familiarity with CI/CD pipelines, DevOps workflows, and Infrastructure-as-Code (Terraform, GitHub Actions, Jenkins, etc.).
  • Strong problem-solving skills, ability to prioritize high-risk findings, and collaborative approach with developers/engineers
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Andeo Group