Job Description: Cloud Security & DevOps Engineer (AWS, CNAPP/Wiz, Terraform, Container Security)
We are looking for a skilled Cloud Security & DevOps Engineer who have advanced skills in AWS, CNAPP (especially Wiz), Terraform—including experience deploying Wiz environments with Terraform modules using Wiz, AWS, and other third-party providers—and a strong background in container security and DevOps automation.
Key Responsibilities
AWS Cloud Security
- Design and implement robust, secure AWS cloud infrastructure.
- Build automated security controls, monitoring, and compliance for cloud environments.
CNAPP (Wiz) Administration & Automation
- Deploy, manage, and customize Wiz environments within AWS using Terraform.
- Create and maintain Terraform modules leveraging the Wiz provider, AWS provider, and essential third-party providers to automate resource provisioning and Wiz integration at scale.
- Integrate Wiz security assessments with CI/CD pipelines for proactive vulnerability management, compliance, and configuration monitoring.
- Generate actionable insights using Wiz dashboards and drive remediation efforts.
Terraform Automation
- Design IaC blueprints for onboarding new Wiz environments, using multiple providers (Wiz, AWS, third-party providers) to automate deployment workflows.
- Develop and support reusable Terraform modules and templates, standardizing secure deployment practices.
- Apply a programming-oriented approach to infrastructure automation, security integration, and workflow optimization.
- Develop, test, and maintain scripts or automation modules in Terraform, Python, or similar languages to streamline deployment and enhance security posture.
- Collaborate with internal and client DevOps teams to integrate security and monitoring as code.
Container Security
- Secure containerized environments (Docker, Kubernetes) through implemented policies, automated image scanning, and runtime protection—integrated with Wiz as appropriate.
- Develop scripts and integrations to secure container platforms via Terraform and third-party providers.
DevOps & Continuous Delivery
- Build and maintain CI/CD pipelines embedding security best practices, automated vulnerability assessments, and compliance checks.
- Champion DevSecOps collaboration, ensuring security is a foundational pillar in the delivery lifecycle.
Compliance & Reporting
- Ensure regulatory compliance for insurance industry requirements across cloud, containers, and automation.
- Document workflows, incident responses, and remediation procedures.
Qualifications
Technical Skills:
- Expert-level experience with AWS and its security services.
- Significant hands-on expertise with Wiz (deployment, integration, and management).
- Advanced proficiency in Terraform, including developing custom modules and working with the Wiz provider, AWS provider, and third-party providers (e.g., GitHub, Okta, Datadog, etc.).
- Strong background in container platforms and related security (Docker, Kubernetes).
- Proven DevOps automation experience and a strong grasp of CI/CD toolsets.
- Demonstrated programming mindset—comfortable with scripting, IaC, and solving problems using code (e.g., Terraform, Python, Bash, etc.).
Soft Skills:
- Effective communicator with experience in client engagement and cross-functional collaboration.
- Demonstrated ability to work independently and deliver outcomes in fast-paced settings.
Certifications (Mandatory):
- AWS Certified Solutions Architect or Security Specialty
- HashiCorp Certified: Terraform Associate
Certifications (Preferred)
- Kubernetes and DevOps certifications
- AI certifications
