Cloud Container Security Engineer- Hybrid- Locals to GA Only
msysinc Atlanta
Title: Cloud Container Security Engineer- Hybrid- Locals to GA Only
Location: Atlanta, GA, USA
Length: Long term
Hands-on experience with cloud technologies and DevSecOps processes.
Proficiency in integrating security tools in CI/CD processes (GitLab, Jenkins, Docker, Kubernetes).
Familiarity with AWS Well-Architected Framework or TOGAF.
Strong knowledge of cloud security (AWS, Azure, GCP) and application lifecycle management platforms.
Expertise with static analysis tools (Veracode, HP Fortify) and open-source scanning tools (Sonatype CLM).
Strong understanding of OWASP Top 10 and vulnerability risk assessment.
Excellent written and verbal communication skills.
Experience exploiting security vulnerabilities in web and mobile applications.
Proficiency in software development (Java, C#.NET, JavaScript).
Perform application security assessments, container security evaluations, and manual API testing.
Identify application vulnerabilities and conduct root cause analysis for issues found in the source code.
Review and integrate security capabilities into cloud environments and DevSecOps models (AWS, Azure, GCP).
Guide development teams in integrating security services and applications into CI/CD pipelines (GitLab, Jenkins, Tekton, Kubernetes).
Manage and support security tools for containers (e.g., Palo Alto Prisma, Aqua, Wiz).
Validate and address vulnerability findings from static and dynamic analysis tools.
Develop and present security findings and remediation reports to stakeholders at all levels.
Perform security assessments on web applications and APIs across different technology stacks.
Ensure security requirements and privacy by design are built into all architectures and projects.
Location: Atlanta, GA, USA
Length: Long term
Restriction: W2 or C2C
Description:
Webcam interview*** ***13+ Months contract with possible extension *** ***Hybrid*** ***Locals to GA Only***
Description:
Job Overview:
As a Senior Application & Cloud Container Security Engineer, you will be joining Security Team. You will be responsible for solving advanced technical security challenges, building a world-class application security testing organization, and collaborating with various teams to promote high standards and professionalism.You will focus on application security assessments, code reviews, container security, and manual API testing using industry-standard tools like Burp Suite.
Candidate Should Have:
5+ years of experience in application security, penetration testing, secure software development, or related fields.Hands-on experience with cloud technologies and DevSecOps processes.
Proficiency in integrating security tools in CI/CD processes (GitLab, Jenkins, Docker, Kubernetes).
Familiarity with AWS Well-Architected Framework or TOGAF.
Strong knowledge of cloud security (AWS, Azure, GCP) and application lifecycle management platforms.
Expertise with static analysis tools (Veracode, HP Fortify) and open-source scanning tools (Sonatype CLM).
Strong understanding of OWASP Top 10 and vulnerability risk assessment.
Excellent written and verbal communication skills.
Strong sense of urgency and ownership.
Preferred:
Extensive experience in application security, ethical hacking, and secure coding practices.Experience exploiting security vulnerabilities in web and mobile applications.
Proficiency in software development (Java, C#.NET, JavaScript).
Professional certifications (AWS Practitioner, CISSP, or cloud security certifications).
Job Responsibilities:
Conduct Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Source Code Analysis (SCA) using tools like Veracode.Perform application security assessments, container security evaluations, and manual API testing.
Identify application vulnerabilities and conduct root cause analysis for issues found in the source code.
Review and integrate security capabilities into cloud environments and DevSecOps models (AWS, Azure, GCP).
Guide development teams in integrating security services and applications into CI/CD pipelines (GitLab, Jenkins, Tekton, Kubernetes).
Manage and support security tools for containers (e.g., Palo Alto Prisma, Aqua, Wiz).
Validate and address vulnerability findings from static and dynamic analysis tools.
Develop and present security findings and remediation reports to stakeholders at all levels.
Perform security assessments on web applications and APIs across different technology stacks.
Ensure security requirements and privacy by design are built into all architectures and projects.
Provide subject matter expertise on secure coding practices, ethical hacking, and security testing.
Promote security awareness and knowledge in the developer community
Stefanini, IncAtlanta
Stefanini Group is looking for Sr Application Security Engineer for a globally recognized company!
For interested applicants, click the apply button or you may reach out to Alfher Hidalgo at (248) 728-2627/Alfher.Hidalgo@stefanini.com for faster...
Alpharetta, 17 mi from Atlanta
Overview:
We are seeking an experienced Cloud Engineer with expertise in AWS, Terraform, and security solutions, including Palo Alto. The successful candidate will also be proficient with Azure DevOps for continuous integration and deployment...
Intone NetworksAtlanta
architects, cloud operations, security engineers, and application developers to deliver seamless solutions.Taking charge of development, maintenance, releases, performance monitoring, troubleshooting, and consulting within the SAP PI/PO/CPI system...