Public Sector Architect - DoD

About Wiz

Come join the company that is reinventing cloud security and empowering businesses to thrive in the cloud. As the fastest-growing startup ever, Wiz is on a mission to help organizations secure cloud environments that will accelerate their businesses. Trusted by security teams all over the world, we have a proven track record of success and a culture that values world-class talent.

Our Wizards from over 20 countries work together to protect the infrastructure of our hundreds of customers, including over 50% of the Fortune 100, who trust us to scan and secure over 230 billion files daily. We’re the leading player in a massive and growing market, but it’s still early enough for you to make a significant impact. At Wiz, you’ll have the freedom to think creatively, dream big, and use your full range of skills to contribute to our record growth. Come join our team and help us create secure cloud environments that allow the best companies to move faster.

Summary

We’re looking for a Public Sector Architect - DoD to join our PubSec Architecture team and help Wiz on its journey into serving DoD customers at impact levels 4, 5 and beyond. We are looking for someone with architecture/engineering experience, who has guided other CSPs during their DISA authorization journey.

What You’ll Do as a Public Sector Architect - DoD

• Help design Wiz deployments to meet DoD CC SRG requirements.
• Work with our GRC/Compliance team members to translate security controls and DoD CC SRG requirements into applicable technical solutions.
• Work cross functional with Engineering and DevOps teams to consult and guide on implementation of requirements.
• Ownership and crafting of detailed diagrams that align with DISA requirements, using tools like LucidChart, Visio, etc.
• Perform architecture reviews and provide architecture requirements to help bring new features to Wiz regulated environments.
• Help test and validate new features to see their value for customer’s as well as help Wiz meet its own security and compliance goals.
• Automation of internal processes that lend themselves to meeting security controls or requirements based on a provided framework.
• Stay up to date with the latest guidelines (FedRAMP, DISA, NIST, EU) to ensure that systems and processes adhere to these standards, addressing any compliance issues promptly.

What You’ll Bring

• 6+ years of experience working as a Federal Cloud Network Architect/Engineer or Federal Network Security Architect/Engineer in AWS (other clouds a plus!).
• Experience leading a CSP through an IL4 or IL5 authorization, having completed onboarding to the BCAP and servicing Mission Owners.
• Intimate understanding of the DoD CC SRG in relation to the BCAP connection process, DoD PKI, DNS, and other technical requirements.
• Firsthand experience designing architecture in public cloud environments around the DoD CC SRG technical requirements and guiding a CSP (SaaS preferred) through an IL4 or IL5 ATO.
• Preferred experience in AWS (GCP and Azure a plus).
• Expertise architecting solutions using cloud native services, while following cloud security best practices.
• Experience working with technologies like microservices, containers, Kubernetes, IaC, Configuration Management, APIs, CI/CD.
• Ability to work independently once provided with projects and deliverables.
• Excellent skills around handling administrative activities, time management and prioritization of tasks.
• Ability to translate compliance requirements to technical outcomes.
• Ability to think outside the box when working with compliance frameworks by implementing technical solutions that meet the spirit of controls, vs. the written guidance.
• Knowledge of and ability to evaluate controls and requirements against NIST 800-53, DoD CC SRG, DISA STIGs etc.
• Knowledge of FIPS and other encryption methodologies needed to meet federal requirements.
• A thirst to use Wiz and learn everything the product can do.

Preferred Qualifications

• Ability to obtain and maintain a U.S. Secret or higher security clearance (active clearance strongly preferred).
• Candidates must meet EAR part 772 and ITAR 120.15 definition of a U.S. person (Any individual who is granted U.S. citizenship; or any individual who is granted U.S. permanent residence (green card holder); or any individual who is granted status as a “protected person”) and that they reside in the contiguous United States.

Benefits

Wiz offers a competitive package of benefits and programs to support you and your family. Below provides a description of our current benefits for employees in the US. Specific benefits may vary by location.

Health & Welfare Benefits

• Medical, dental and vision insurance
• Home Office Setup reimbursement
• Flexible Spending Accounts
• Monthly Connectivity reimbursement
• Employee Assistance Program (EAP)

Financial Benefits

• Short- and Long-term Disability Insurance
• Life & Accident Insurance
• 401(k) Retirement Savings Plan (with employer match)

Time Off

• Flexible paid time off + 11 paid holidays
• Paid leave programs, including parental, pregnancy health, medical and bereavement leave

Compensation

Starting compensation will be determined based on various factors, including but not limited to, the candidate's job-related experience, skills and geographic location. Your Talent Partner can share more about the specific salary range during the hiring process. This role is eligible to participate in Wiz’s equity plan and may also include incentive compensation.

The annual base salary range for this full-time position is listed below. US Base Pay Range: $204,000—$281,000 USD

Key skills/competency

• Cloud Security
• DoD Compliance
• Federal Architecture
• AWS Cloud
• DISA Authorization
• NIST 800-53
• Cloud Native Services
• Kubernetes
• IaC
• Microservices