Logo
CyberTec

Cloud Security w/Palo Alto Prisma

CyberTec, Chandler, Arizona, United States, 85249


We just received a request from one of the managers at Wells - a pre-release role (it should be released in the client system in the near future so we need qualified candidates ASAP)

POSITION TITLE

= Lead Information Security Engineer (Qty. 2), Wells Fargo Cloud SecurityLOCATIONS

= Chandler, AZ (2600 S. Price Rd.), Charlotte, NC (300 S. Brevard St.) or Dallas, TX (5080 Spectrum Dr., Addison, TX -OR- 250 E John Carpenter Fwy., Irving, TX) - hybrid - MUST BE IN THE OFFICE 3 days per week at 1 of the location addresses listed, other days remote from home. PLEASE DO NOT SUBMIT CANDIDATES UNABLE OR UNWILLING TO COMMUTE TO 1 OF THESE LOCATIONS 3 DAYS PER WEEK, EVERY WEEK FOR THE DURATION OF THE ASSIGNMENT.DURATION

= Assignment starts 2/28/2024 and continues thru 11/30/2024.Max pay rate:

$69.50/hr w2 + $7/hr referral fee to youTHIS IS NOT A CONTRACT TO HIRE.

PLEASE DO NOT SUBMIT CANDIDATES SEEKING A FULL TIME PERMANENT OPPORTUNITY. This is a contract position only. We are seeking a candidate who is comfortable remaining a contractor for at least the next 9-12 months. There may be the possibility of extension of the contract into 2025 and/or there could be a full time opening during 2025 where the candidate would be welcome to apply. PLEASE ENSURE THIS IS DISCUSSED WITH CANDIDATES PRIOR TO SUBMISSION OF RESUMES.POSITION OVERVIEW

= Seeking an experienced Senior Info. Security Engineer to join our Cloud Security Delivery Team, to support engineering tasks and policy development specific to

Palo Alto Networks Prisma Cloud Enterprise . Become part of an exciting, fast paced Team that helps to ensure secure Cloud enablement as part of delivering Wells Fargo's Digital Infrastructure Strategy Program. Position responsibilities are surrounding Cloud Security Posture Management including:Leveraging your deep expertise in writing RQL queries to implement new policies to check for cloud resource misconfiguration/configuration drift.Ability to efficiently transform Information Security requirements into Prisma Cloud Enterprise policies - both net new policy "creation"/development, as well as policy modifications/update.Implement changes to support the remediation or "burn down" of alerts/finding from Prisma Cloud Enterprise scanning.Be a motivated self-starter, quick to adapt and stay focused on delivering results in a fast-paced environment with aggressive deadlines.Working effectively with a virtual Team consisting of members across various locations in the U.S. and India.

Required Qualifications:

5+ years of information security experience1+ year of deep Prisma Cloud Enterprise experience, or experience with a similar Cloud Security Posture Management toolProven experience creating Prisma Cloud Enterprise custom policies via RQL, or experience with policy development for a similar Cloud Security Posture Management toolExtensive cloud Security knowledge of services, workloads and hardening practicesExperience with Agile Scrum or Kanban methodologiesKnowledge/experience with scripting/automation languages such as Terraform, Python and/or PowerShellKnowledge and understanding of CIS and NIST Cybersecurity frameworksStrong verbal and written communication skillsProven ability to work independently, as well as having strong interpersonal skills to work effectively within a Team and with partner Teams

Desired Qualifications:

2+ years of Kubernetes experienceExperience in implementing security solutions in Google Cloud PlatformExperience with creation of Build policy subtype in Prisma Cloud Enterprise using YAMLKnowledge and understanding of DevSecOps and deployment automation to cloud environmentsFamiliarity with of various cloud security and related risk frameworks (COBIT, Cloud Security Alliance (CSA), FedRAMP, etc.)Experience enabling auto-remediation via Prisma CloudExperience with IAM & Data protection expertise for monitoring and responding to related incidentsExpertise and experience with API driven automation of policy creationExpertise and experience with Infrastructure as Code (IaC) and/or Policy as Code (Client) concepts/toolsExperience with change and incident management practices in medium to large enterprise environmentsKnowledge and understanding of Splunk and/or Google ChronicleSecurity certifications such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalentMicrosoft Azure and/or Google Cloud Certifications

Submission format - please complete in full:First Middle Last NamePay Rate:Skill Highlights- please indicate the # of years on each of the following skills:

Cloud Security EngineeringPalo Alto Networks Prisma Cloud EnterpriseScripting-

TerraformPythonPowershell

CIS and NIST Cybersecurity FrameworksKubernetesGoogle CloudYAMPIAM and Data ProtectionIaC and ClientSplunkGoogle ChronicleSecurity or Cloud Certifications

Visa Status:Location:Availability to interview:Availability to start:LinkedIn Profile:Phone Number:Email Address:Last 4 of SSN:MM/DD of birth: