Cloud Security Engineer

Cloud Security Engineer Location: Chandler, AZ (Hybrid) Duration: 9 Months Contract Pay: $75/hr W2 ONLY, NO C2C Job Summary: We are seeking a experienced Lead Information Security Engineer (Information security Engineer 4 - Contingent) to join our Cloud Workload Lifecycle Security (CWLS) team, within the Cybersecurity - Vulnerability & Patch Management organization. Be a part of one of the core teams working on digital transformation; join our dynamic, diverse, fast-paced team environment where we secure and reduce risk for our Enterprise cloud migration. The Information security Engineer 4 - Contingent - Posture Management Engineer will support migration from Prisma Cloud Enterprise to the Wiz CNAPP (Cloud Native Application Protection Platform) tool, with specific focus on Cloud Security Posture Management or the CSPM module of the Wiz product. This area of our team specializes in engineering and support for Public Cloud mis-configuration and configuration drift detective scanning and the associated integrations to partner systems for logging, delivery of Findings, etc KEY RESPONSIBILITIES: Leveraging your deep expertise with automation to "semi-automate" Rego Policy as Code development, leveraged to monitor for cloud resource misconfiguration/config. drift. Engineering and support for the migration of CSPM capabilities from Palo Alto Prisma Cloud Enterprise to Wiz. Act as the subject matter expert (SME) for Wiz capabilities, roadmap features, and best practices specific to CSPM. Enable and tune Wiz detection for: Public Cloud mis-configurations Public Cloud config drift Ad-hoc, on demand mis-config. scanning for Developers w/ IDE integration Ability to efficiently transform security requirements/parameters into Rego policies for Wiz CSPM. Strong collaboration with direct teammates, vendors and partners, ensuring the success of policy development automation. Lead technical/engineering requirement gathering discussions and effectively design/develop complex solutions. Troubleshoot and resolve support escalation cases related to Wiz CSPM. Contribute to internal code repositories to continuously improve overall code quality for the team. Provide high quality documentation of the delivered solutions. Train other team members on utilizing the PaC semi-automation tooling/approach you establish for our policy development practice Be a motivated self-starter, quick to adapt and stay focused on delivering results in a fast-paced environment with aggressive deadlines. Work effectively with a virtual Team consisting of members across various locations in the U.S. and India. REQUIRED SKILLS: 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education 4+ years of Intermediate to Advanced experience with Terraform/automation 2+ years of practical experience and strong understanding of Azure & Google public cloud - platforms, services, configurations, workloads & hardening practices 1+ year of experience with Resource Query Language (RQL) and/or Rego policy dev Experience with extracting, transforming, and loading data via REST API endpoints Advanced experience with Python programming/automation Familiarity with CI/CD tools (GitHub Actions, GitLab CI, Jenkins, Azure DevOps) Strong verbal and written communication skills Proven ability to work independently, as well as having strong interpersonal skills to work effectively within a Team and with partners Strong analytical skills, proven critical thinking capabilities and ability to solve complex problems with minimal direct oversight Intermediate to advanced experience working with Microsoft Office products (e.g. Word, Excel, PowerPoint, Visio, Outlook, MS Teams, SharePoint) Ability to handle multiple, high priority deliverables concurrently Ability to communicate confidentially, professionally, and effectively, in both written and verbal formats, with stakeholders and partners 1+ year experience working on teams practicing Agile Scrum or Kanban methodologies DESIRED SKILLS: 1+ year of deep Wiz experience, in either an engineering or support role Advanced experience with Rego policy automation Knowledge and understanding of DevSecOps and deployment automation to cloud environments Expertise and experience with API driven automation of policy creation Expertise and experience with Infrastructure as Code (IaC) and/or Policy as Code (PaC) concepts/tools Expertise with automated testing Intermediate to advanced experience with Kubernetes, preferably AKS/GKE/OCP Familiarity with various cloud security and related risk frameworks (Cloud Security Alliance (CSA), CIS, NIST, etc.) Experience with change and incident management practices in large enterprises Security certifications such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalent, CISA, CISM, CISSP, CRISC, CCSK Microsoft Azure and/or Google Cloud Certifications

Created: 2026-03-07