Information security Engineer 4, Posture Mgmt
Description:
Location: Phoenix, AZ
Salary: $69.00 USD Hourly - $74.00 USD Hourly
Description:
Our client is seeking an experienced Lead Information Security Engineer to join their Cloud Workload Lifecycle Security (CWLS) team, within the Cybersecurity - Vulnerability & Patch Management organization. This person will be a part of one of the core teams working on their digital transformation and will be a part of their enterprise cloud migration team and will support the their migration from Prisma Cloud Enterprise to the Wiz CNAPP (Cloud Native Application Protection Platform) tool, with specific focus on Cloud Security Posture Management or the CSPM module of the Wiz product. This area of their team specializes in engineering and support for Public Cloud misconfiguration and configuration drift detective scanning and the associated integrations to partner systems for logging, delivery of Findings, etc.
KEY RESPONSIBILITIES:
Leveraging your deep expertise with automation to "semi-automate" Rego Policy as Code development, leveraged to monitor for cloud resource misconfiguration/config. drift.
Engineering and support for the migration of CSPM capabilities from Palo Alto Prisma Cloud Enterprise to Wiz.
Act as the subject matter expert (SME) for Wiz capabilities, roadmap features, and best practices specific to CSPM.
Enable and tune Wiz detection for:
Public Cloud mis-configurations
Public Cloud config drift
Ad-hoc, on demand mis-config. scanning for Developers w/ IDE integration
Ability to efficiently transform security requirements/parameters into Rego policies for Wiz CSPM.
Strong collaboration with direct teammates, vendors and partners, ensuring the success of policy development automation.
Lead technical/engineering requirement gathering discussions and effectively design/develop complex solutions.
Troubleshoot and resolve support escalation cases related to Wiz CSPM.
Contribute to internal code repositories to continuously improve overall code quality for the team.
Provide high quality documentation of the delivered solutions.
Train other team members on utilizing the PaC semi-automation tooling/approach you establish for our policy development practice
Be a motivated self-starter, quick to adapt and stay focused on delivering results in a fast-paced environment with aggressive deadlines.
Work effectively with a virtual Team consisting of members across various locations in the U.S. and India.
Preferred Skills:
4+ years of Intermediate to Advanced experience with Terraform/automation
2+ years of practical experience and strong understanding of Azure & Google public cloud - platforms, services, configurations, workloads & hardening practices(
1+ year of experience with Resource Query Language (RQL) and/or Rego policy dev
Experience with extracting, transforming, and loading data via REST API endpoints
Advanced experience with Python programming/automation
Familiarity with CI/CD tools (GitHub Actions, GitLab CI, Jenkins, Azure DevOps)
REQUIRED SKILLS:
5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
4+ years of Intermediate to Advanced experience with Terraform/automation
2+ years of practical experience and strong understanding of Azure & Google public cloud - platforms, services, configurations, workloads & hardening practices
1+ year of experience with Resource Query Language (RQL) and/or Rego policy dev
Experience with extracting, transforming, and loading data via REST API endpoints
Advanced experience with Python programming/automation
Familiarity with CI/CD tools (GitHub Actions, GitLab CI, Jenkins, Azure DevOps)
Strong verbal and written communication skills
Proven ability to work independently, as well as having strong interpersonal skills to work effectively within a Team and with partners
Strong analytical skills, proven critical thinking capabilities and ability to solve complex problems with minimal direct oversight
Intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, MS Teams, SharePoint)
Ability to handle multiple, high priority deliverables concurrently
Ability to communicate confidentially, professionally, and effectively, in both written and verbal formats, with stakeholders and partners
1+ year experience working on teams practicing Agile Scrum or Kanban methodologies
DESIRED SKILLS:
1+ year of deep Wiz experience, in either an engineering or support role
Advanced experience with Rego policy automation
Knowledge and understanding of DevSecOps and deployment automation to cloud environments
Expertise and experience with API driven automation of policy creation
Expertise and experience with Infrastructure as Code (IaC) and/or Policy as Code (PaC) concepts/tools
Expertise with automated testing
Intermediate to advanced experience with Kubernetes, preferably AKS/GKE/OCP
Familiarity with various cloud security and related risk frameworks (Cloud Security Alliance (CSA), CIS, NIST, etc.)
Experience with change and incident management practices in large enterprises
Security certifications such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalent, CISA, CISM, CISSP, CRISC, CCSK
Microsoft Azure and/or Google Cloud Certifications
By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively "Judge") to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes. Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.
Contact:
This job and many more are available through The Judge Group. Please apply with us today!