CNAPP Wiz Engineer

Role Overview

Responsible for leading the design, integration, and optimization of enterprise DevSecOps capabilities with a primary focus on Vulnerability Management (VM), Application Security (AppSec), and Cloud-Native Application Protection Platforms (CNAPP). This role serves as a technical leader and strategic advisordriving secure-by-design practices across CI/CD pipelines and application ecosystems.

Partners closely with application engineering, cloud, and platform teamsto embed security controls into development workflows, enabling scalable and automated security outcomes across hybrid and multi-cloud environments.

Key Responsibilities

• Strategic DevSecOps Leadership
  • Lead the design and implementation of DevSecOps frameworksintegrating security into CI/CD pipelines (e.g., GitHub Actions, Jenkins, GitLab CI).
  • Act as a trusted advisor to application and platform teams, influencing secure coding, build, and deployment practices.
  • Define and drive security guardrails, standards, and patternsfor cloud-native and application environments.
• CNAPP Platform Ownership (Wiz, Prisma Cloud, etc.)
  • Serve as the primary technical ownerfor CNAPP platforms, including onboarding, configuration, policy management, and optimization.
  • Develop and maintain runtime, posture management, and vulnerability policiesacross cloud workloads.
  • Integrate CNAPP insights into engineering workflows, ticketing systems, and reporting dashboards.
• Vulnerability Management (VM)
  • Drive enterprise VM strategy for cloud, container, and application layers.
  • Advance risk-based prioritization and remediation workflows integrated into CI/CD and developer tools.
  • Partner with engineering teams to reduce mean time to remediation (MTTR)and improve vulnerability posture.
• Application Security (AppSec)
  • Oversee integration and tuning of SAST, DAST, SCA, and container scanning toolswithin pipelines.
  • Establish secure SDLC practices, including threat modeling, code review standards, and security testing automation.
  • Provide expert guidance on application-layer vulnerabilities and remediation strategies.
• CI/CD Security Integration
  • Architect and implement security tooling integrations into CI/CD pipelines, ensuring minimal developer friction.
  • Enable shift-left security practiceswith automated checks, policy enforcement, and feedback loops.
  • Collaborate with DevOps teams to standardize pipeline security templates and reusable modules.
• Cross-Functional Collaboration
  • Work closely with cloud engineering, SRE, infrastructure, and application teamsto align on security priorities.
  • Influence vendor strategy and tool selection for DevSecOps and CNAPP capabilities.
  • Represent security in architecture reviews, change control boards, and major transformation initiatives.
• Operational Excellence & Metrics
  • Define and track KPIs such as vulnerability aging, pipeline coverage, and policy compliance.
  • Lead continuous improvement initiatives to enhance automation, scalability, and developer experience.
  • Act as escalation point for complex security and integration challenges.

Minimum Requirements

• Experience
  • Requires a minimum of 7+ years of experiencein DevSecOps, Application Security, Cloud Security, or related domains.
  • Proven experience integrating security into CI/CD pipelines at scale.
  • Hands-on experience administering and optimizing CNAPP platforms (e.g., Wiz, Prisma Cloud).
• Technical Expertise
  • Strong knowledge across multiple domains, including:
    • Cloud Security (AWS, Azure, GCP)
    • Application Security (SAST, DAST, SCA)
    • Container & Kubernetes Security
    • Vulnerability Management & Risk Prioritization
    • Security Architecture & Design
  • Experience with infrastructure-as-code (IaC) security, API integrations, and automation scripting.
• Collaboration & Influence
  • Demonstrated ability to partner with engineering teamsand influence security adoption without direct authority.
  • Experience driving enterprise-wide security initiatives and standards.

Preferred Qualifications

• Experience with tools such as:
  • Wiz, Prisma Cloud (CNAPP)
  • Checkmarx, Veracode, Snyk, SonarQube (AppSec)
  • CI/CD platforms (GitHub, GitLab, Jenkins)
• Strong understanding of DevOps and Agile methodologies
• Security certifications preferred (e.g., CISSP, CCSP, CSSLP, GWAPT, GCSA)
• BA/BS in Information Systems, Computer Science, or related field strongly preferred

Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico.

Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at

Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.

Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.

If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department at [email protected] or View phone number on click.appcast.io. Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered.

UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems.