Security Engineer

About Wiz

Come join Wiz, the company reinventing cloud security and empowering businesses to thrive in the cloud. As the fastest-growing startup ever, Wiz is on a mission to help organizations secure cloud environments that will accelerate their businesses. Trusted by security teams worldwide, we have a proven track record of success and a culture that values world-class talent.

Our Wizards from over 20 countries collaborate to protect the infrastructure of our hundreds of customers, including over 50% of the Fortune 100, who trust us to scan and secure over 230 billion files daily. We're the leading player in a massive and growing market, and it's still early enough for you to make a significant impact. At Wiz, you'll have the freedom to think creatively, dream big, and use your full range of skills to contribute to our record growth. Join our team and help us create secure cloud environments that allow the best companies to move faster.

Summary of the Role

We're looking for a Security Engineer to spread the power of Wiz. The ideal candidate will have experience performing security reviews, vulnerability management, and detection and response operations in cloud-native environments. You’ll collaborate with our software development and DevOps teams to secure Wiz’s products, CI/CD infrastructure, and production infrastructure. You’ll also have the opportunity to influence our product roadmap by utilizing Wiz-for-Wiz to assess, monitor, and harden our environments.

What You’ll Do

• Lead threat modeling and security review exercises across Wiz’s production and CI/CD environments – identifying and mitigating risks in our products and the cloud services that support them.
• Drive vulnerability management and remediation efforts – prioritizing issues, implementing mitigations, and designing strategic preventative controls.
• Extend our detection and response capabilities – building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents.
• Collaborate with our Wiz Federal team – extending our DevSecOps and Product Security practices to Wiz’s FedRAMP environment and ensure it meets key security requirements.
• Build deep functional partnerships with Wiz’s engineering and operations teams – helping them deliver secure-by-design solutions.

What You’ll Bring

• 5+ years of experience in security engineering or security operations work in cloud environments, with a focus on a combination of the below:
• AWS platforms and services (we will also consider equivalent experience in Azure and GCP)
• Kubernetes (AWS EKS) and container infrastructure
• IAM and managing cloud identities at-scale
• Secure development and application of IAC solutions (Terraform, Helm)
• Cloud-native observability and management tools
• Experience with automation and tooling development in one or more: Python, Go, Shell, HCL, Rego.

Preferred Qualifications

• Bachelor's degree in computer science or a related field and / or candidates with equivalent job experience in lieu of a degree.
• Experience working with remote, globally distributed teams.
• Experience working in organizations that develop software and / or operate managed infrastructure and technology services for their own customers.
• Experience with CNAPP, CSPM, or CIEM solutions.

Key skills/competency

• Cloud Security
• AWS
• Kubernetes
• IAM
• Vulnerability Management
• Threat Modeling
• Detection and Response
• DevSecOps
• Automation
• Python