Lead Information Security Engineer

Responsibilities What Makes This Opportunity Unique At Principal Financial Group, we prioritize creating an extraordinary environment where our employees can excel. As a Lead Information Security Engineer based in HYDERABAD, you'll be a key figure in cloud security, ensuring smooth performance and high-reaching expansion. You'll become part of our “Network Vulnerability Management & Configuration Management” Team, charged with writing custom CSPM misconfiguration rules and providing support/ guidance to our stakeholders in addressing misconfigurations/CSPM within our public cloud infrastructure. This is your opportunity to give significantly to the security foundation of our worldwide operations! Cloud Security Posture Management Must have Cloud Security Posture Management (CSPM) - Use tools to discover assets in cloud infrastructure to identify and continuously monitor for security vulnerabilities and misconfigurations Must have Experience in scripting languages such as Python (required), PowerShell etc. Must have Programming/Scripting competency with Infrastructure-as-Code (IaC) using Terraform (Preferred) or Ansible Must have hands-on experience on using Rego Policy and/ or GraphQL Must have Proficiency with GitHub, as well as Continuous Integration/ Continuous Deployment (CI/CD) processes. Collaborate with developers across the organization to manage Cloud Security Posture Management to reduce threats. Hands-on experience with CSPM tools like Wiz (preferred) or Prisma Cloud (good to have) and the ability to create custom rules as per business requirements. Understanding of native cloud solutions like EC2’s, Containers, Lambda’s, Docker, containers, Kubernetes, VDIs, cloud storage, cloud infrastructure, etc. And other cloud security services like Load Balancer, VPC Flow Logs, EKS, Lambda, and WAFs. Good to have hands on experience on SSPM (SaaS Security Posture Management) tools Hands-on experience in AWS (preferred) and Azure (good to have) Candidate should have AWS Cloud Practioner certification (CCP). AWS Cloud Security Specialty certification is a plus. Qualifications Required Skills & Experience Strong hands-on experience with Cloud Security Posture Management (CSPM). Proficiency in Python (required); experience in PowerShell is a plus. Experience with Terraform (preferred) or Ansible Practical experience creating rules using Rego and/or working with GraphQL. Strong knowledge of GitHub and CI/CD processes. Hands-on expertise with CSPM tools such as Wiz (preferred) or Prisma Cloud (good to have). Solid understanding of cloud-native services (AWS preferred; Azure good to have). Additional Information Qualifications At least 8 Years of practical experience in developing customized rules for Cloud Security Posture Management. Proven experience with Wiz. Strong proficiency in scripting languages including Python and PowerShell. Proficiency with GitHub and CI/CD processes. Strong understanding of security compliance frameworks and cloud security services. What Makes This Opportunity Unique At Principal Financial Group, we prioritize creating an extraordinary environment where our employees can excel. As a Lead Information Security Engineer based in HYDERABAD, you'll be a key figure in cloud security, ensuring smooth performance and high-reaching expansion. You'll become part of our “Network Vulnerability Management & Configuration Management” Team, charged with writing custom CSPM misconfiguration rules and providing support/ guidance to our stakeholders in addressing misconfigurations/CSPM within our public cloud infrastructure. This is your opportunity to give significantly to the security foundation of our worldwide operations! Cloud Security Posture Management Must have Cloud Security Posture Management (CSPM) - Use tools to discover assets in cloud infrastructure to identify and continuously monitor for security vulnerabilities and misconfigurations Must have Experience in scripting languages such as Python (required), PowerShell etc. Must have Programming/Scripting competency with Infrastructure-as-Code (IaC) using Terraform (Preferred) or Ansible Must have hands-on experience on using Rego Policy and/ or GraphQL Must have Proficiency with GitHub, as well as Continuous Integration/ Continuous Deployment (CI/CD) processes. Collaborate with developers across the organization to manage Cloud Security Posture Management to reduce threats. Hands-on experience with CSPM tools like Wiz (preferred) or Prisma Cloud (good to have) and the ability to create custom rules as per business requirements. Understanding of native cloud solutions like EC2’s, Containers, Lambda’s, Docker, containers, Kubernetes, VDIs, cloud storage, cloud infrastructure, etc. And other cloud security services like Load Balancer, VPC Flow Logs, EKS, Lambda, and WAFs. Good to have hands on experience on SSPM (SaaS Security Posture Management) tools Hands-on experience in AWS (preferred) and Azure (good to have) Candidate should have AWS Cloud Practioner certification (CCP). AWS Cloud Security Specialty certification is a plus. Required Skills & Experience Strong hands-on experience with Cloud Security Posture Management (CSPM). Proficiency in Python (required); experience in PowerShell is a plus. Experience with Terraform (preferred) or Ansible Practical experience creating rules using Rego and/or working with GraphQL. Strong knowledge of GitHub and CI/CD processes. Hands-on expertise with CSPM tools such as Wiz (preferred) or Prisma Cloud (good to have). Solid understanding of cloud-native services (AWS preferred; Azure good to have).