PW - CLOUD SECURITY POLICY ENGINEER -

We are seeking a highly skilled and experienced *Senior Cloud Security Policy Engineer to join our dynamic team.
This role is pivotal in shaping and enforcing cloud security policies that protect our global central service environment.
The ideal candidate will work closely with business and technology stakeholders to translate long-term goals into robust security architectures and technology solutions.
This position demands a proactive leader who can autonomously manage security engineering tasks, ensuring seamless transition of security technologies from local to centralized service organizations.
If you are passionate about cloud security, have a strong technical background, and thrive in collaborative environments, this is an excellent opportunity to make a significant impact.
Job Responsibilities Engage with business and technology stakeholders to gather and understand long-term goals, security requirements, and compliance needs.
Map complex business requirements to security architecture frameworks, designing scalable and effective security technology solutions aligned with a global central service environment.
Apply and integrate security technologies at both enterprise and solution levels, facilitating the transition of security services from local setups to centralized cloud service organizations.
Lead and manage security engineering initiatives autonomously, translating strategic security pillars into actionable policies, standards, and technical solutions.
Collaborate cross-functionally with diverse teams, including developers, network engineers, cloud architects, and compliance officers, to ensure security policies are effectively implemented and maintained.
Continuously evaluate and improve cloud security posture using advanced Cloud Security Posture Management (CSPM) tools and methodologies.
Implement and manage Cloud Native Application Protection Platforms (CNAPP) to safeguard cloud-native applications and workloads.
Provide expert guidance on secure coding practices and automation using scripting languages to enhance security operations and incident response.
Stay current with emerging cloud security trends, threats, and technologies to proactively adapt security strategies.
Document security policies, procedures, and architecture designs to support audit and compliance requirements.
Mentor junior engineers and contribute to building a strong security engineering culture within the organization.
Python.
Proficient in Python scripting for automation, security tooling, and integration with cloud security platforms.
Ability to develop custom security scripts and tools to enhance cloud security posture.
Java.
Experience with Java programming to understand and secure enterprise applications, and integrate security controls within Java-based environments.
JavaScript.
Skilled in JavaScript for developing and securing web applications, and implementing client-side security controls.
PowerShell.
Expertise in PowerShell scripting for automating security tasks, managing cloud resources, and enforcing security policies in Windows and hybrid environments.
Bash.
Strong command of Bash scripting to automate security operations and manage Linux-based cloud infrastructure.
Cloud Security Posture Management (CSPM).
Deep understanding of CSPM tools and practices to continuously monitor, assess, and remediate cloud security risks across multi-cloud environments.
Cloud Native Application Protection Platform (CNAPP).
Experience with CNAPP solutions to protect cloud-native applications, including vulnerability management, runtime protection, and compliance enforcement.
Azure.
Hands-on experience securing Microsoft Azure environments, including identity and access management, network security, and compliance controls.
Amazon Web Services (AWS).
Proficient in AWS security services such as IAM, Security Hub, GuardDuty, and CloudTrail to design and implement secure cloud architectures.
Google Cloud Platform (GCP).
Knowledgeable in GCP security features, including Cloud IAM, Security Command Center, and VPC Service Controls.
TCP/IP Networking.
Solid understanding of TCP/IP protocols, network segmentation, firewall rules, and secure network design principles essential for cloud security architecture.
Nice to Have.
Security Architecture Frameworks.
Familiarity with security frameworks such as NIST, CIS, ISO , or SABSA to guide the design and implementation of security policies and controls.
Understanding Containerization.
Knowledge of container technologies like Docker and Kubernetes, including security best practices for container orchestration and runtime protection.