No H1B, CPT & TN
Cloud Security Engineer
Duration: 1 year to start
Location: Atlanta or Eagan, MN (Hybrid)
Required Skills
AWS, SAST and DAST
Job Summary:
This person will partner directly with the DevOps team, Application Development team, and Project Managers to ensure application security is included in all project and systems engineering plans.
They will perform static code analysis and 3rd party open-source vulnerability scanning, SAST & DAST.
Project Details:
Must Haves
Application Security engineering
- Experience working with Cloud technology (AWS)
- Scanning experience: Static Application Security Test (SAST) and Dynamic Application Security Test (DAST) using Veracode
- Vulnerability scanning: Qualys and/or Tenable
- Experience reviewing source code for Security Vulnerabilities (Manual and automated with scanning tools)
- Containerization Experience (must be able to speak to this in the interview!):
- Docker containers and Kubernetes for application containerization.
- Monitoring containerized applications (Palo Alto Prisma Cloud is a huge plus) and providing solutions to mitigate critical vulnerability based on design and OWASP Top 10 (MUST be familiar with and able to speak to OWAS Top 10!)
Desired Skills
Qualys, Tenable
Veracode
Palo Alto Prisma Cloud
HP Fortify, IBM Rational, Veracode or Coverity, Find Bugs, FindSecurityBugs, Brakeman and
Open-Source scanning tools (Sona type CLM)
- Any certifications like CISSP, CISM, OSCP and CEH are also a huge plus
Thank You,
Rohit Singh
Sr.IT Technical Recruiter | First Ring Solutions LLC | Philadelphia, PA, 19102
E: rohitsingh@firstringsolutions.com D: (215) 437-3001 Cell: (267) 857-9855
