We are seeking a highly skilled Cloud Security Engineer with expertise in Cloud Security Posture Management (CSPM) and hands-on experience with Wiz preferred (other tool experience acceptable) to strengthen our cloud security program. This role will be responsible for identifying, assessing, and remediating cloud security risks across multi-cloud environments, driving security posture improvements, supporting compliance initiatives, and partnering with engineering teams to embed security into cloud-native architectures. The ideal candidate will have strong cloud security engineering experience, deep knowledge of cloud platforms, and the ability to operationalize security controls at scale.
ESSENTIAL DUTIES AND RESPONSIBILITIES
Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.
Manage and administer the Wiz CSPM platform to monitor and improve cloud security posture across AWS, Azure, and GCP environments.
Identify, investigate, prioritize, and remediate cloud security findings, misconfigurations, excessive permissions, exposed assets, and compliance gaps.
Develop and maintain cloud security policies, standards, and security baselines aligned with organizational and regulatory requirements.
Perform continuous security assessments of cloud infrastructure, workloads, containers, serverless environments, and cloud services.
Partner with cloud engineering, DevOps, architecture, and application teams to implement security best practices and secure-by-design principles.
Build and maintain automated security monitoring, alerting, and remediation processes.
Assess infrastructure-as-code (IaC) deployments and recommend security improvements for Terraform.
Support cloud threat detection, incident response investigations, and forensic activities.
Conduct risk assessments and provide actionable recommendations to reduce cloud attack surface.
Develop dashboards, reports, and metrics demonstrating cloud security posture, risk trends, and remediation progress.
Provide technical guidance and mentorship to cloud and security teams regarding security best practices.
Stay current on emerging cloud threats, vulnerabilities, and industry security trends.
Qualifications
Required Qualifications
The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
1. Bachelor’s degree or equivalent education, training, and work-related experience.
2. Minimum of 7 years of experience in security engineering or related cybersecurity roles.
3. Deep specialized knowledge in cybersecurity principles, theories, and concepts.
4. Proven experience in software development lifecycle security practices.
5. Deep knowledge of threat modeling, security testing, and penetration testing.
6. Experience implementing and managing complex information security technologies.
Preferred Qualifications
Hands-on experience with Wiz Cloud Security Platform or similar tool.
Experience with CSPM, CNAPP, CWPP, CIEM, and vulnerability management technologies.
Knowledge of cloud-native security services across AWS, Azure, and GCP.
Strong experience securing one or more cloud environments:
Understanding of cloud networking, IAM, encryption, logging, monitoring, and security architecture.
Scripting experience with Python, PowerShell, Bash, or similar languages.
Experience with CI/CD pipelines and DevSecOps tools.
Familiarity with Terraform, CloudFormation or similar automation technologies.
Experience integrating security controls within cloud deployment pipelines.
Knowledge of security frameworks
AWS certifications (Solutions Architect, DevOps Engineer, etc.)
Professional experience implementing and operating Wiz in enterprise cloud environments.
Relevant security certifications such as:
Experience supporting large-scale multi-cloud environments.
Knowledge of Zero Trust security principles.
Experience with SIEM platforms such as Microsoft Sentinel, Splunk
Strong analytical, troubleshooting, and problem-solving skills.
Excellent written and verbal communication skills with the ability to present security risks and recommendations to technical and stakeholders.