Job Description

• Leveraging your deep expertise with automation to “semi-automate” Rego Policy as Code development, leveraged to monitor for cloud resource misconfiguration/config. drift.
• Engineering and support for the migration of CSPM capabilities from Palo Alto Prisma Cloud Enterprise to Wiz.
• Act as the subject matter expert (SME) for Wiz capabilities, roadmap features, and best practices specific to CSPM.
• Enable and tune Wiz detection for:
• Public Cloud mis-configurations
• Public Cloud config drift
• Ad-hoc, on demand mis-config. scanning for Developers w/ IDE integration
• Ability to efficiently transform security requirements/parameters into Rego policies for Wiz CSPM.
• Strong collaboration with direct teammates, vendors and partners, ensuring the success of policy development automation.
• Lead technical/engineering requirement gathering discussions and effectively design/develop complex solutions.
• Troubleshoot and resolve support escalation cases related to Wiz CSPM.
• Contribute to internal code repositories to continuously improve overall code quality for the team.
• Provide high quality documentation of the delivered solutions.
• Train other team members on utilizing the PaC semi-automation tooling/approach you establish for our policy development practice
• Be a motivated self-starter, quick to adapt and stay focused on delivering results in a fast-paced environment with aggressive deadlines.
• Work effectively with a virtual Team consisting of members across various locations in the U.S. and India.

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 4+ years of Intermediate to Advanced experience with Terraform/automation
• 2+ years of practical experience and strong understanding of Azure & Google public cloud – platforms, services, configurations, workloads & hardening practices
• 1+ year of experience with Resource Query Language (RQL) and/or Rego policy dev
• Experience with extracting, transforming, and loading data via REST API endpoints
• Advanced experience with Python programming/automation
• Familiarity with CI/CD tools (GitHub Actions, GitLab CI, Jenkins, Azure DevOps)
• Strong verbal and written communication skills
• Proven ability to work independently, as well as having strong interpersonal skills to work effectively within a Team and with partners
• Strong analytical skills, proven critical thinking capabilities and ability to solve complex problems with minimal direct oversight
• Intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, MS Teams, SharePoint)
• Ability to handle multiple, high priority deliverables concurrently
• Ability to communicate confidentially, professionally, and effectively, in both written and verbal formats, with stakeholders and partners
• 1+ year experience working on teams practicing Agile Scrum or Kanban methodologies

• 1+ year of deep Wiz experience, in either an engineering or support role
• Advanced experience with Rego policy automation
• Knowledge and understanding of DevSecOps and deployment automation to cloud environments
• Expertise and experience with API driven automation of policy creation
• Expertise and experience with Infrastructure as Code (IaC) and/or Policy as Code (PaC) concepts/tools
• • Expertise with automated testing Intermediate to advanced experience with Kubernetes, preferably AKS/GKE/OCP
• Familiarity with various cloud security and related risk frameworks (Cloud Security Alliance (CSA), CIS, NIST, etc.)
• Experience with change and incident management practices in large enterprises
• Security certifications such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalent, CISA, CISM, CISSP, CRISC, CCSK
• Microsoft Azure and/or Google Cloud Certifications