Cloud Security Posture Management

Role Purpose

The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information

͏

B3

Location – Bangalore

Shift – 12*5

Duration BAU 3 years.

JD :
Integrations and Onboarding of CI/CD pipelines

o Set up the process for the scanning of Virtual Images

o Perform Wiz Compatible DevOps integration

o Customize the IaC scan policies

• Definition of Cloud Configuration best practices

o Develop custom framework, aligning with Customer information

security policy.

• Reporting of CSPM KPIs

o Custom Dashboard will be created for holistic compliance status

o Conduct periodic reviews with cloud native business divisions to

track the remediations

• Policy and Alerts on CSPM Platform

o Customize the configuration rules to align with organization

standards for improved detections (primarily Rego queries)

o Custom graph query controls developed, which tool inherent

controls do not bring in. Additional dashboards beyond Wiz’s

capability will be created via Power BI (limiting to Power BI

capability)

• User Access provisioning on CSPM Platform

o Wiz will be integrated with SSO, RBAC permissions to be mapped

with AD groups

• Incident Management

o User roles to be understood and then least privilege access to be

provided

Integration with tools

o Integration performed with various tools using APIs, on the basis

of use cases

• Integration Support

o Appropriate action/support will be performed as per the SIEM,

SOAR, SNOW, 3rd party tool requirement (eg: Provide API

permissions to the respective tool)

• Integrity Validation

• Support SOC and Risk Management teams

o Train the Security operation teams on all issues generated by

Wiz. SOPs will be developed in accordance to ABB Cloud Security

policy and standards for various alerts and actions to be

performed

o Review outstanding cloud security issues (critical and high)

standing in the Wiz console and provide support to the

subscription owners on how to resolve these issues and report for

any exceptions

• Cloud Security Incident Resolution

Work along with Incident Management to bring in applicable Cloud

security perspectives. Inventory management supports additional

identifications of versions, exposed network, etc.

• Ongoing enhancement and integrations

o Monitor for latest enhancements released by WIZ. Will have

o Wipro shall be reaching out to various Kubernetes cluster owners

to migrate their clusters from Public to Private

o Wipro shall be reaching out to various BAs cloud developers for

integration of CI/CD pipelines

o Wipro shall be working with TRM (technical Risk Management) to

remediate policies or baselines if they are false positives

standards that help maturing and running CSPM capability

o Wipro shall be working to create new Projects/sub projects as

and when its required

o Wipro shall be moving Subscriptions from one project to another

as need arises

o Wipro shall be working to maintain the subscription ownership

information with them as critical information for CSPM

͏

Deliver

͏

͏