Offer summary

Qualifications:

7+ years of experience in security engineering or security operations in cloud environments., Strong AWS cloud security experience, with knowledge of Azure and GCP., Deep understanding of securing IAM and cloud identities at scale., Bachelor's degree in computer science or related field, or equivalent experience..

Key responsabilities:

Lead threat modeling and security reviews across products and cloud infrastructure.

Build automation and security tooling to integrate security into development workflows.

Drive vulnerability management and remediation efforts throughout the software supply chain.

Collaborate with engineering and operations teams to deliver secure-by-design solutions.

Job description

Come join the company that is reinventing cloud security and empowering businesses to thrive in the cloud. As the fastest-growing startup ever, Wiz is on a mission to help organizations secure cloud environments that will accelerate their businesses. Trusted by security teams all over the world, we have a proven track record of success and a culture that values world-class talent.

Our Wizards from over 13 countries work together to protect the infrastructure of our hundreds of customers, including over 45% of the Fortune 100, who trust us to scan and secure over 230 billion files daily. We’re the leading player in a massive and growing market, but it’s still early enough for you to make a significant impact. At Wiz, you’ll have the freedom to think creatively, dream big, and use your full range of skills to contribute to our record growth. Come join our team and help us create secure cloud environments that allow the best companies to move faster.

SUMMARY

Wiz is looking for a Security Engineer for Product & Production Infrastructure who has experience performing security reviews, vulnerability management, and detection and response operations in cloud-native environments. You’ll get to collaborate with our software development and DevOps teams to secure Wiz’s products, CI/CD infrastructure, and production infrastructure. You’ll also have the opportunity to influence our product roadmap by utilizing Wiz-for-Wiz to assess, monitor, and harden our environments.

WHAT YOU’LL DO

Lead threat modeling and security reviews across Wiz's products and cloud infrastructure, identifying attack surfaces and developing scalable mitigation strategies
Build automation, policy-as-code, and security tooling that enables development teams to "shift left" and integrate end-to-end security into their workflows
Design and implement secure baselines for cloud resources and Kubernetes based infrastructure
Drive vulnerability management and remediation efforts – prioritizing issues, implementing mitigations, and designing strategic preventative controls in software supply chains from development through production
Extend our detection and response capabilities – building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Collaborate with our Wiz Federal team – extending our DevSecOps and Product Security practices to Wiz's FedRAMP environment and ensure it meets key security requirements
Build deep functional partnerships with Wiz's engineering and operations teams – helping them deliver secure-by-design solutions

WHAT YOU’LL BRING

7+ years of experience in security engineering or security operations work in cloud environments, with a focus on the below:
Strong AWS cloud security experience (we will also consider equivalent experience in Azure and GCP)
Cloud native Kubernetes services (EKS/GKE/AKS) and strong container security principles
Deep understanding of securing IAM and cloud identities at scale
Proven ability to lead technical security reviews of products and architectures, conduct threat modeling exercises, and translate findings into actionable security controls
Practical understanding of web application security concepts (such as OWASP Top-10 and similar)
Hands-on experience with IAC and related tools (Terraform, CloudFormation, Helm, Pulumi)
Experience with automation and tooling development in one or more: Python, Go, Shell, HCL, Rego

PREFERRED QUALIFICATIONS

Bachelor's degree in computer science or a related field and / or candidates with equivalent job experience in lieu of a degree
Experience working with remote, globally distributed teams
Experience working in organizations that develop software and/or operate managed infrastructure and technology services for their own customers
Experience with CNAPP, CSPM, or CIEM solutions

For this position, you may be required to provide evidence that you meet EAR part 772 and ITAR 120.15 definition of a U.S. person (Any individual who is granted U.S. citizenship; or, any individual who is granted U.S. permanent residence (green card holder); or, any individual who is granted status as a “protected person”) and that you reside in the contiguous United States.

#LI-Remote

Wiz is on a mission to build a special company. To achieve our goal, we are focused on hiring Wizards with different backgrounds, perspectives, and experiences.

Wiz is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.

By submitting your application, you acknowledge that Wiz will process your personal data in accordance with Wiz's Privacy Policy.

Required profile