Cloud Security Engineer -Junior

Immediate need for a talented Cloud Security Engineer -Junior . This is a 04 months contract opportunity with long-term potential and is located in Charlotte NC /Atlanta GA /Raleigh, NC (Onsite) . Please review the job description below and contact me ASAP if you are interested.

Job ID:26-05172

Pay Range: $58 - $60/hour. Employee benefits include, but are not limited to, health insurance (medical, dental, vision), 401(k) plan, and paid sick leave (depending on work location).

Key Responsibilities:

• Deploy and configure container scanning tools to ensure secure containerized environments.
• Analyze vulnerabilities identified through SAST, DAST, SCA, and container scans, prioritizing remediation based on risk.
• Develop and maintain custom scripts to automate security processes and enhance scanning capabilities.
• Consult with development teams to provide secure coding guidance and assist with remediation strategies.
• Onboard applications into DAST scanning workflows, ensuring proper configuration and coverage.
• Configure and troubleshoot DAST scans, resolving issues related to application accessibility and scan accuracy.
• Review and validate SAST and SCA findings, confirming or rejecting false positives and "mitigated by design" claims from development teams.
• Document findings, create actionable reports, and communicate technical details effectively to stakeholders.

Key Requirements and Technology Experience:

• Key Skills; Strong experience with application security tools: DAST (e.g., Burp Suite, OWASP ZAP), SAST (e.g., Checkmarx, Veracode), and SCA (e.g., Black Duck, Snyk).
• Hands-on experience with container security and deployment of scanning tools (e.g., Wiz, Prisma, Aqua Security).
• Proficiency in scripting languages (Python, Bash, or PowerShell) for automation and tool integration.
• Deep understanding of secure software development lifecycle (SDLC) and common vulnerabilities (OWASP Top 10).
• Strong experience with application security tools: DAST (e.g., Burp Suite, OWASP ZAP), SAST (e.g., Checkmarx, Veracode), and SCA (e.g., Black Duck, Snyk).
• Hands-on experience with container security and deployment of scanning tools (e.g., Wiz, Prisma, Aqua Security).
• Proficiency in scripting languages (Python, Bash, or PowerShell) for automation and tool integration.
• Deep understanding of secure software development lifecycle (SDLC) and common vulnerabilities (OWASP Top 10).
• Ability to troubleshoot complex scanning issues and optimize configurations for accuracy and performance.
• Strong analytical skills for vulnerability triage and risk prioritization.
• Excellent communication skills for consulting with development teams and explaining technical findings.
• Experience integrating security tools into CI/CD pipelines.
• Familiarity with cloud-native security (AWS, Azure, GCP) and container orchestration (Kubernetes).
• Knowledge of API security testing and microservices architecture.
• Exposure to DevSecOps practices and security automation frameworks.
• Relevant certifications such as OSWE, GWAPT, or CSSLP.

Our client is a leading Financial Industry, and we are currently interviewing to fill this and other similar contract positions. If you are interested in this position, please apply online for immediate consideration.

Pyramid Consulting, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, colour, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.


By applying to our jobs you agree to receive calls, AI-generated calls, text messages, or emails from Pyramid Consulting, Inc. and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy here.

#cha