Judge Group, Inc.
Judge Group, Inc.

Information security Engineer 4, Posture Mgmt

Phoenix, AZ, US • Posted 29 days ago • Updated 5 hours ago
Contract Independent
On-site
USD $69.00 - 74.00 per hour
Company Branding Image
Fitment

Dice Job Match Score™

🤯 Applying directly to the forehead...

Job Details

Skills

  • Cyber Security
  • Patch Management
  • FOCUS
  • Migration
  • Palo Alto
  • Roadmaps
  • Management Information Systems
  • IDE
  • Requirements Elicitation
  • Documentation
  • Virtual Team
  • Information Security
  • Training
  • Military
  • Terraform
  • Hardening
  • Data Loading
  • RESTful
  • Python
  • Continuous Delivery
  • GitHub
  • GitLab
  • Continuous Integration
  • Jenkins
  • DevOps
  • Communication
  • Analytical Skill
  • Critical Thinking
  • Management
  • Microsoft Office
  • Microsoft Excel
  • Microsoft PowerPoint
  • Microsoft Visio
  • Microsoft Outlook
  • Microsoft SharePoint
  • Agile
  • Scrum
  • Kanban
  • DevSecOps
  • Cloud Computing
  • API
  • Policy Writing
  • Automated Testing
  • Kubernetes
  • OCP
  • Cloud Security
  • Collaboration
  • Incident Management
  • Information Systems
  • Information Assurance
  • CISA
  • CISM
  • CISSP
  • ISACA
  • Microsoft Azure
  • Google Cloud Platform
  • Google Cloud
  • Privacy
  • Marketing

Summary

Location: Phoenix, AZ
Salary: $69.00 USD Hourly - $74.00 USD Hourly
Description:

      Our client is seeking an experienced Lead Information Security Engineer to join their Cloud Workload Lifecycle Security (CWLS) team, within the Cybersecurity - Vulnerability & Patch Management organization. This person will be a part of one of the core teams working on their digital transformation and will be a part of their enterprise cloud migration team and will support the their migration from Prisma Cloud Enterprise to the Wiz CNAPP (Cloud Native Application Protection Platform) tool, with specific focus on Cloud Security Posture Management or the CSPM module of the Wiz product. This area of their team specializes in engineering and support for Public Cloud misconfiguration and configuration drift detective scanning and the associated integrations to partner systems for logging, delivery of Findings, etc.

      KEY RESPONSIBILITIES:
      • Leveraging your deep expertise with automation to "semi-automate" Rego Policy as Code development, leveraged to monitor for cloud resource misconfiguration/config. drift.
      • Engineering and support for the migration of CSPM capabilities from Palo Alto Prisma Cloud Enterprise to Wiz.
      • Act as the subject matter expert (SME) for Wiz capabilities, roadmap features, and best practices specific to CSPM.

      Enable and tune Wiz detection for:
        • Public Cloud mis-configurations
        • Public Cloud config drift
        • Ad-hoc, on demand mis-config. scanning for Developers w/ IDE integration
      • Ability to efficiently transform security requirements/parameters into Rego policies for Wiz CSPM.
      • Strong collaboration with direct teammates, vendors and partners, ensuring the success of policy development automation.
      • Lead technical/engineering requirement gathering discussions and effectively design/develop complex solutions.
      • Troubleshoot and resolve support escalation cases related to Wiz CSPM.
      • Contribute to internal code repositories to continuously improve overall code quality for the team.
      • Provide high quality documentation of the delivered solutions.
      • Train other team members on utilizing the PaC semi-automation tooling/approach you establish for our policy development practice
      • Be a motivated self-starter, quick to adapt and stay focused on delivering results in a fast-paced environment with aggressive deadlines.
      • Work effectively with a virtual Team consisting of members across various locations in the U.S. and India.

      Preferred Skills:
      • 4+ years of Intermediate to Advanced experience with Terraform/automation
      • 2+ years of practical experience and strong understanding of Azure & Google public cloud - platforms, services, configurations, workloads & hardening practices(
      • 1+ year of experience with Resource Query Language (RQL) and/or Rego policy dev
      • Experience with extracting, transforming, and loading data via REST API endpoints
      • Advanced experience with Python programming/automation
      • Familiarity with CI/CD tools (GitHub Actions, GitLab CI, Jenkins, Azure DevOps)

      REQUIRED SKILLS:
      • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
      • 4+ years of Intermediate to Advanced experience with Terraform/automation
      • 2+ years of practical experience and strong understanding of Azure & Google public cloud - platforms, services, configurations, workloads & hardening practices
      • 1+ year of experience with Resource Query Language (RQL) and/or Rego policy dev
      • Experience with extracting, transforming, and loading data via REST API endpoints
      • Advanced experience with Python programming/automation
      • Familiarity with CI/CD tools (GitHub Actions, GitLab CI, Jenkins, Azure DevOps)
      • Strong verbal and written communication skills
      • Proven ability to work independently, as well as having strong interpersonal skills to work effectively within a Team and with partners

      Strong analytical skills, proven critical thinking capabilities and ability to solve complex problems with minimal direct oversight

      Intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, MS Teams, SharePoint)

      Ability to handle multiple, high priority deliverables concurrently

      Ability to communicate confidentially, professionally, and effectively, in both written and verbal formats, with stakeholders and partners

      1+ year experience working on teams practicing Agile Scrum or Kanban methodologies

      DESIRED SKILLS:
      • 1+ year of deep Wiz experience, in either an engineering or support role
      • Advanced experience with Rego policy automation
      • Knowledge and understanding of DevSecOps and deployment automation to cloud environments
      • Expertise and experience with API driven automation of policy creation
      • Expertise and experience with Infrastructure as Code (IaC) and/or Policy as Code (PaC) concepts/tools
      • Expertise with automated testing
      • Intermediate to advanced experience with Kubernetes, preferably AKS/GKE/OCP
      • Familiarity with various cloud security and related risk frameworks (Cloud Security Alliance (CSA), CIS, NIST, etc.)
      • Experience with change and incident management practices in large enterprises
      • Security certifications such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalent, CISA, CISM, CISSP, CRISC, CCSK
      • Microsoft Azure and/or Google Cloud Certifications



By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively "Judge") to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes. Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.

Contact:

This job and many more are available through The Judge Group. Please apply with us today!
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: cxjudgpa
  • Position Id: 1116806
  • Posted 29 days ago

Company Info

About Judge Group, Inc.

The Judge Group, is a leading professional services firm specializing in talent, technology, and learning solutions. We consult, staff, train, and solve. Through our work we make people and organizations better.

Our services are successfully delivered through a network of more than 30 offices across the United States, Canada, and India. The Judge Group is proud to partner with the best and brightest companies in business today, including over 60 of the Fortune 100. We serve organizations in financial services, healthcare, life sciences, insurance, government (including aerospace and defense), manufacturing, and technology and telecommunications.

About_Company_OneAbout_Company_Two
Go to company profile
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Cloud Developer (TS/SCI)

Washington, District of Columbia

Today

Contract

USD 125,000.00 - 135,000.00 per year

Dev Sec Ops Engineer

Boston, Massachusetts

Today

Contract

USD 125,000.00 - 140,000.00 per year

Security Controls Engineer

Irving, Texas

Today

Full-time

USD 110,000.00 - 120,000.00 per year

Information Security Engineer

Chandler, Arizona

Today

Contract

USD 69.00 - 74.00 per hour

Search all similar jobs