Donato Technologies - Dallas, TX
posted 2 months ago
Full-time - Mid Level
Dallas, TX
Professional, Scientific, and Technical Services
About the position
The Lead Information Security Engineer will be responsible for implementing and managing cloud security policies using Prisma Cloud Enterprise. This role requires expertise in writing RQL queries to address cloud resource misconfigurations and to develop new security policies. The engineer will work collaboratively with a virtual team across the U.S. and India, focusing on delivering results in a fast-paced environment.
Responsibilities
- Write RQL queries to implement new policies for cloud resource misconfiguration and configuration drift.
- Transform Information Security requirements into Prisma Cloud Enterprise policies, including policy creation and modifications.
- Implement changes to remediate findings from Prisma Cloud Enterprise scanning.
- Collaborate effectively with a virtual team across various locations.
- Adapt quickly to deliver results under aggressive deadlines.
Requirements
- 5+ years of Information/Cybersecurity experience.
- 1+ year of experience with Prisma Cloud Enterprise or a similar Cloud Security Posture Management tool.
- Proven experience creating custom policies via RQL or similar policy development experience.
- Extensive knowledge of cloud security services, workloads, and hardening practices.
- Experience with Agile Scrum or Kanban methodologies.
- Knowledge of scripting/automation languages such as Terraform, Python, and/or PowerShell.
- Understanding of CIS and NIST Cybersecurity frameworks.
- Strong verbal and written communication skills.
- Ability to work independently and effectively within a team.
Nice-to-haves
- 2+ years of Kubernetes experience.
- Experience implementing security solutions in Google Cloud Platform.
- Experience creating Build policy subtype in Prisma Cloud Enterprise using YAML.
- Familiarity with cloud security and risk frameworks like COBIT, CSA, FedRAMP.
- Experience enabling auto-remediation via Prisma Cloud.
- Expertise in IAM & Data protection for incident monitoring and response.
- Experience with API-driven automation of policy creation.
- Knowledge of Infrastructure as Code (IaC) and Policy as Code (PaC) concepts/tools.
- Experience with change and incident management in medium to large enterprises.
- Knowledge of Splunk and/or Google Chronicle.
- Security certifications such as CISSP, GIAC, or equivalent.
- Microsoft Azure and/or Google Cloud Certifications.
