{"schemaVersion":"jobsearcher.job.v1","id":"80abd8f7dc61e37f37ee8395","url":"https://jobsearcher.com/jobs/80abd8f7dc61e37f37ee8395","canonicalUrl":"https://jobsearcher.com/jobs/80abd8f7dc61e37f37ee8395","title":"Application & Cloud Security Engineer","description":"Build and maintain security automation in CI/CD pipelines.Run code scanning, dependency checks, and container image scanning.Manage secret storage, rotation, and detection.Application & API Security:Review code and help teams follow secure coding practices.Protect APIs with authentication, rate limits, and validation.Support developers in fixing identified vulnerabilities.Manage IAM roles, access control, and least-privilege policies.Configure Cloudflare WAF and cloud firewall rules.Monitor cloud configurations and enforce security best practices.Track vulnerabilities, alerts, and suspicious activities.Support incident response and root-cause analysis.Maintain dashboards and automated alerts.Compliance & Governance:Support ISO27001, SOC2, or other compliance requirements.Keep documentation, audit logs, and security reports up to date.Work with the Security Architect on long-term improvements.Requirements:Must Have:Bachelor's degree in Computer Science, Cybersecurity, Information Security, or related technical field.3+ years in Application Security, Cloud Security, or DevSecOps.Experience with AWS/Azure/GCP security tools.Hands-on with CI/CD pipelines and security scanners (SAST/DAST/SCA).Solid understanding of IAM, WAF, encryption, and secret management.Knowledge of OWASP Top 10 and API Security Top 10.Experience working with logging, SIEM, and monitoring tools.Nice to Have:Kubernetes security experience (OPA, Falco, image signing).Experience with Cloudflare security tools.Penetration testing or red-team experience.Understanding of ISO 27001, SOC2, UL 3300, or GDPR.Security certifications (e.g., CEH, GCSA, CISSP, AZ-500).J-18808-Ljbffr","company":"Vinmotion","rawCompany":"vinmotion","city":"California","state":"MO","isRemote":false,"isActive":false,"createdAt":"2026-04-10T04:33:17.126Z","occupations":[{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"},{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"},{"code":"15-1212.00","title":"Information Security Analysts","slug":"information-security-analysts"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541511","title":"Custom Computer Programming Services","slug":"custom-computer-programming-services"},{"code":"513210","title":"Software Publishers","slug":"software-publishers"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Application & Cloud Security Engineer","description":"Build and maintain security automation in CI/CD pipelines.Run code scanning, dependency checks, and container image scanning.Manage secret storage, rotation, and detection.Application & API Security:Review code and help teams follow secure coding practices.Protect APIs with authentication, rate limits, and validation.Support developers in fixing identified vulnerabilities.Manage IAM roles, access control, and least-privilege policies.Configure Cloudflare WAF and cloud firewall rules.Monitor cloud configurations and enforce security best practices.Track vulnerabilities, alerts, and suspicious activities.Support incident response and root-cause analysis.Maintain dashboards and automated alerts.Compliance & Governance:Support ISO27001, SOC2, or other compliance requirements.Keep documentation, audit logs, and security reports up to date.Work with the Security Architect on long-term improvements.Requirements:Must Have:Bachelor's degree in Computer Science, Cybersecurity, Information Security, or related technical field.3+ years in Application Security, Cloud Security, or DevSecOps.Experience with AWS/Azure/GCP security tools.Hands-on with CI/CD pipelines and security scanners (SAST/DAST/SCA).Solid understanding of IAM, WAF, encryption, and secret management.Knowledge of OWASP Top 10 and API Security Top 10.Experience working with logging, SIEM, and monitoring tools.Nice to Have:Kubernetes security experience (OPA, Falco, image signing).Experience with Cloudflare security tools.Penetration testing or red-team experience.Understanding of ISO 27001, SOC2, UL 3300, or GDPR.Security certifications (e.g., CEH, GCSA, CISSP, AZ-500).J-18808-Ljbffr","datePosted":"2026-04-10T04:33:17.126Z","dateModified":"2026-04-10T04:33:17.126Z","hiringOrganization":{"@type":"Organization","name":"Vinmotion","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"California","addressRegion":"MO","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"80abd8f7dc61e37f37ee8395"},"url":"https://jobsearcher.com/jobs/80abd8f7dc61e37f37ee8395"}}