WHAT YOU’LL DO
- Help build and mature the Wiz Public Sector program!
- Act as trusted advisor for all matters related to cloud security across AWS, Azure, and GCP.
- Perform architecture reviews and provide federal architecture requirements to help bring new features to Wiz4Gov.
- Ownership and crafting of detailed diagrams that align with FedRAMP ABD, NFD and DFD requirements, using tools like LucidChart, Visio, etc.
- Help test and validate new features to see their value for customer’s as well as help Wiz meet its own security and compliance goals.
- Work collaboratively with internal and external stakeholders, including DevOps teams, engineering teams, compliance officers, public sector operations and auditors, to address security-related concerns and make recommendations for improvements.
- Provide technical input into the development of System Security Plans (SSP), working with third-party assessment organizations (3PAOs) to achieve new authorizations, implement significant changes, etc.
- Stay up to date with the latest FedRAMP, DISA and NIST guidelines and ensure that systems and processes adhere to these standards, addressing any compliance issues promptly
WHAT YOU’LL BRING
- 4+ years of experience working as a Federal Cloud Architect/Engineer or Federal Security Architect/Engineer in AWS (Google Cloud and Azure is a plus!), or 7+ combined experience as a Security/Cloud Engineer or Security/Cloud Architect.
- Experience working with technologies like microservices, containers, Kubernetes, IaC, Configuration Management, APIs, CI/CD.
- Expertise architecting solutions using cloud native services, while following cloud security best practices.
- A strong sense of taking ownership for projects and leading them from start to finish.
- Excellent skills around handling administrative activities, time management and prioritization of tasks.
- Ability to translate compliance requirements to technical outcomes.
- Ability to think outside the box when working with compliance frameworks by implementing technical solutions that meet the spirit of controls, vs. the written guidance.
- Knowledge of and ability to evaluate controls and requirements against NIST 800-53, DISA CC SRG, DISA STIGs etc.
- Knowledge of FIPs and other encryption methodologies needed to meet federal requirements.
- A thirst to use Wiz and learn everything the product can do.
andidates must meet EAR part 772 and ITAR 120.15 definition of aU.S. person(Any individual who is granted U.S. citizenship;any individual who is granted U.S. permanent residence (green card holder);any individual who is granted status as a “protected person”) and that tin the contiguous United States.
