Job
Description
Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : DevOps Good to have skills : NA Minimum 3 Year(s) Of Experience Is Required Educational Qualification : 15 years full time education Summary: Seeking a results-driven DevSecOps Engineer with deep experience in cloud security automation, particularly with Wiz, AWS, Terraform, and CI/CD pipelines. This role demands a strong background in security policy implementation, cloud infrastructure management, and automation of security and compliance workflows. Roles & Responsibilities: -Developed custom REGO policies within Wiz Cloud to enforce security standards across AWS infrastructure, with a focus on Terraform and CloudFormation templates. -Ensured continuous compliance through proactive, automated security checks integrated into CI/CD pipelines. -Built an end-to-end automated compliance pipeline using Python and GitHub Actions, enabling real-time alerts for policy violations. -Integrated compliance updates directly into Confluence, improving visibility and reducing response time across teams. -Automated onboarding of GitHub repositories into Wiz, using GitHub APIs to extract data (teams, users, repos) and transform it into Terraform-compatible variables for streamlined policy enforcement. -Designed a Lambda-based automation framework to monitor Wiz CCR release notes, detect high-severity changes, and notify stakeholders via SNS, SQS, and JIRA tickets. -Maintained Confluence documentation dynamically for transparent and traceable change management. -Replaced legacy workflows (Power Automate & Jira) with a Selenium + Java-based automation framework for managing Wiz CCRs, enabling scalable, testable automation for rule creation and updates. -Hands-on experience with Amazon EC2 and RDS, including provisioning, hardening, patching, and monitoring. -Automated infrastructure tasks related to EC2 and RDS lifecycle via Terraform and CI/CD integration. -Used Postman extensively for validating Wiz APIs, GitHub APIs, and internal tools. -Created collections and automated test scripts for integration testing of security workflows. Professional & Technical Skills: -Cloud Security: Wiz, Rego Policies -Cloud Platforms: AWS (EC2, RDS, Lambda, SNS, SQS) -IaC: Terraform, CloudFormation -Automation & CI/CD: GitHub Actions, Python, Selenium (Java) -DevOps & Integration: GitHub API, Postman, JIRA, Confluence -Scripting: Python, Shell, Java -Proven ability to automate cloud security processes using modern DevOps tools. -Strong problem-solving skills and ability to design scalable automation frameworks. -Experience working with regulated environments and security compliance standards (e.g., CIS, NIST, ISO 27001) is a plus. Additional Information: - The candidate should have minimum 3 years of experience in DevOps. - This position is based at our Gurugram office. - A 15 years full time education is required.
