Information Security Engineer

We are seeking an experienced Information Security Engineer to join the Cloud Workload Lifecycle Security (CWLS) team within Cybersecurity. In this role, you will help secure enterprise cloud environments by managing and reducing risk through effective findings management, automation, and data-driven insights. You will contribute to large-scale cloud transformation efforts by working across engineering and application teams to identify, analyze, and remediate security vulnerabilities. Responsibilities

• Lead and execute hands-on engineering work focused on cloud security findings management using Wiz (CNAPP platform).
• Define, tune, and operationalize security alerts and findings across cloud environments.
• Analyze large-scale security datasets and develop reporting pipelines and dashboards (e.g., Power BI, Tableau).
• Build and maintain automation solutions and scripts (Python, Bash, Terraform, PowerShell) to improve operational efficiency.
• Develop data pipelines to aggregate, enrich, and analyze security findings across cloud and enterprise systems.
• Partner with engineering and application teams to prioritize and remediate vulnerabilities and misconfigurations.
• Support cloud migration initiatives, including transition from Prisma Cloud to Wiz.
• Provide subject matter expertise in application lifecycle security, compliance, and vulnerability management.
• Collaborate cross-functionally to drive risk reduction across public and private cloud environments.
• Contribute to process improvements and share technical expertise with team members.

• Bachelor's degree or equivalent practical experience.
• 5+ years of experience in information security engineering or a related field.
• Experience with public cloud platforms (Azure and/or Google Cloud), including security controls and best practices.
• Experience with cloud security tools (e.g., Wiz or similar CNAPP platforms).
• Experience with scripting or automation (Python, Bash, Terraform, or PowerShell).
• Experience integrating security tools with enterprise platforms (e.g., Splunk, ServiceNow).
• Experience with data visualization tools (e.g., Power BI, Tableau).
• Understanding of identity and access management (IAM) and data protection principles.
• Strong analytical, problem-solving, and communication skills., * Experience in cloud security engineering, vulnerability management, or cloud migrations.
• Familiarity with container security and Kubernetes environments.
• Experience with security tools such as Microsoft Defender, Google Security Command Center, or Sentinel.
• Knowledge of security frameworks (e.g., NIST, CIS, CSA).
• Experience in regulated industries (e.g., financial services, healthcare, government).
• Familiarity with Agile methodologies (Scrum or Kanban).
• Security certifications (e.g., CISSP, CISM, CISA, GIAC, CCSK) or cloud certifications (Azure, Google Cloud).
• Experience with databases (e.g., MongoDB or similar).

Key Attributes

• Self-starter with the ability to operate in a fast-paced, ambiguous environment.
• Strong collaboration and stakeholder management skills.
• Ability to manage multiple priorities and deliver high-impact results.
• Commitment to continuous learning and improving security posture across large-scale systems.