Job Title: Policy Automation Engineer
Contract: 12 Months
Location: Phoenix, AZ
Job/Role Description:
- Leveraging your deep expertise with automation to “semi-automate” Prisma Cloud policy development, leveraged to monitor for cloud resource misconfiguration/config. drift.
- Ability to efficiently transform security requirements/parameters into Prisma Cloud policies.
- Strong collaboration with direct teammates, vendors and partners, ensuring the success of this policy development automation initiative.
- Lead technical/engineering requirement gathering discussions and effectively design/develop complex solutions.
- Contribute to internal code repositories to continuously improve overall code quality for the team.
- Provide high quality documentation of the delivered solutions.
- Train other team members on utilizing the RQL semi-automation tooling/approach you establish for our Prisma Cloud policy development practice
- Be a motivated self-starter, quick to adapt and stay focused on delivering results in a fast-paced environment with aggressive deadlines.
- Work effectively with a virtual Team consisting of members across various locations in the U.S. and India.
Required Skills/Experience:
- 5+ years of Information/Cybersecurity experience
- Familiarity with and basic understanding of Resource Query Language (RQL)
- Advanced experience with Python programming/automation
- Intermediate to Advanced experience with Terraform/automation
- Strong understanding of security principals and industry best practices
- Practical experience with public cloud platforms: Azure and/or Google
- Experience with CI/CD tools, e.g. Jenkins and Github
- Experience with extracting, transforming, and loading data via REST API endpoints
- Strong verbal and written communication skills
- Proven ability to work independently, as well as having strong interpersonal skills to work effectively within a Team and with partners
Desired Skills:
- 1+ year of deep Prisma Cloud Enterprise experience, in either an engineering or support role
- Intermediate to Advanced experience with RQL (Resource Query Language) development and automation
- Experience with creation of Build policy subtype in Prisma Cloud Enterprise using YAML
- Knowledge and understanding of DevSecOps and deployment automation to cloud environments
- Familiarity with of various cloud security and related risk frameworks (COBIT, Cloud Security Alliance (CSA), FedRAMP, etc.)
- Experience enabling auto-remediation via Prisma Cloud
- Expertise and experience with API driven automation of policy creation
- Expertise and experience with Infrastructure as Code (IaC) and/or Policy as Code (PaC) concepts/tools
- Intermediate to advanced experience with Kubernetes, preferably docker/AKS/GKE/TKGI/TAS
- Expertise with automated testing
- Experience with change and incident management practices in medium to large enterprise environments
- Security certifications such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalent
- Microsoft Azure and/or Google Cloud Certifications