Information Security Engineer

Location: Chandler, AZ
Salary: $69.00 USD Hourly - $74.00 USD Hourly
Description:
Information Security Engineer - Posture Management Engineer

Team: Cloud Workload Lifecycle Security (CWLS) - Cybersecurity, Vulnerability & Patch Management
Locations:

• Charlotte, NC - 300 S. Brevard St.
• Chandler, AZ - 2600 S. Price Rd.
• Irving, TX - 401 Las Colinas Blvd W, Building A

About the Role

We are seeking an experienced Information Security Engineer to join the Posture Management Engineering team within CWLS. In this role, you will help drive cloud-security transformation by engineering and supporting Cloud Security Posture Management (CSPM) capabilities as we migrate from Prisma Cloud Enterprise to Wiz CNAPP.

You will focus on securing public-cloud environments through misconfiguration detection, configuration-drift monitoring, and Policy-as-Code (PaC) automation. This position requires strong technical leadership, hands-on engineering expertise, and the ability to design scalable solutions that meet enterprise security standards.
What You'll Do

• Develop and "semi-automate" Rego Policy as Code, enabling scalable detection of cloud misconfigurations and configuration drift.
• Engineer and support the migration of CSPM functionality from Palo Alto Prisma Cloud Enterprise to Wiz.
• Serve as a subject matter expert on Wiz CSPM capabilities, roadmap enhancements, and best-practice implementations.
• Configure and tune Wiz detections for:
  • Public-cloud misconfigurations
  • Configuration drift
  • Developer-initiated ad-hoc scans, including IDE integrations
• Translate security requirements into Rego policies aligned with Wiz's CSPM engine.
• Collaborate closely with engineering peers, cross-functional partners, and vendors to deliver high-quality security solutions.
• Lead technical discussions, gather requirements, and design complex cloud-security solutions.
• Troubleshoot and resolve escalation issues related to Wiz CSPM.
• Contribute to internal code repositories and continuously improve code quality and development processes.
• Create clear, comprehensive technical documentation.
• Train team members in PaC automation workflows and tooling.
• Work effectively in a distributed team across U.S. and India locations.
• Operate in a fast-paced environment while managing multiple high-priority deliverables.

Required Qualifications

• 5+ years of Information Security Engineering experience (or equivalent via work, training, military experience, or education)
• 4+ years of intermediate to advanced experience with Terraform or automation frameworks
• 2+ years of hands-on experience with Azure and Google Cloud, including platforms, services, workloads, and hardening practices
• 1+ year of experience with Resource Query Language (RQL) and/or Rego policy development
• Experience building ETL workflows leveraging REST API integrations
• Advanced proficiency in Python
• Experience with CI/CD tools such as Git Hub Actions, Git Lab CI, Jenkins, or Azure Dev Ops
• Excellent verbal and written communication skills
• Ability to work independently and collaboratively across teams
• Strong analytical and problem-solving skills with minimal oversight
• Intermediate to advanced proficiency with Microsoft Office Suite (Word, Excel, PowerPoint, Visio, Outlook, Teams, SharePoint)
• Experience working within Agile Scrum or Kanban environments
• Ability to manage multiple high-priority tasks simultaneously

Preferred Qualifications

• 1+ year of deep, hands-on experience with Wiz (engineering or support role)
• Advanced Rego policy-automation expertise
• Strong understanding of Dev Sec Ops practices and cloud-deployment automation
• Experience automating security-policy creation using APIs
• Expertise in Infrastructure as Code (IaC) and Policy as Code (PaC) concepts
• Experience with automated testing frameworks
• Intermediate to advanced experience with Kubernetes (AKS, GKE, or OCP preferred)
• Familiarity with cloud-security standards and frameworks (CSA, CIS Benchmarks, NIST, etc.)
• Experience with enterprise change-management and incident-management processes
• Relevant certifications, such as:
  • CISSP, CISM, CISA, CRISC, GIAC
  • CCSK
  • Microsoft Azure or Google Cloud certifications

By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively "Judge") to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes.

Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.

Contact:

This job and many more are available through The Judge Group. Please apply with us today!