Wiz and Cloud Engineer

Wiz and Cloud Engineer

Posted Today by Cognitive Group | Part of the Focus Cloud Group

Apply
Negotiable
Inside
Undetermined
Greater London, England, United Kingdom
Apply
Azure DevOps Cloud Computing Cloud Engineering Cloud Technology Continuous Integration and Continuous Delivery DevOps DevSecOps Embedding External Auditing Financial Services Github Gitlab Google Cloud Platform (GCP) Infrastructure as Code (IaC) Jenkins Management Microsoft Azure Software Development Source Codes Templates Terraform Workflows

Summary: The role of Wiz and Cloud Engineer involves integrating Wiz Code into source code repositories and CI/CD pipelines within a regulated financial services environment. The engineer will focus on embedding security throughout the software development lifecycle, identifying and remediating vulnerabilities, and ensuring compliance with security controls. This position requires hands-on experience with CI/CD platforms and cloud environments, particularly GCP. The role is classified as inside IR35 and requires the candidate to be based in the UK.

Key Responsibilities:

  • Integrate Wiz Code into source code repositories and CI/CD pipelines.
  • Embed security scanning into build and deployment workflows.
  • Enforce policy gates and automated remediation workflows.
  • Scan and secure Terraform, CloudFormation, and other IaC templates.
  • Map code-to-cloud relationships for risk visibility.
  • Identify and remediate cloud misconfigurations.
  • Detect and remediate hardcoded secrets, credentials, and tokens.
  • Prevent sensitive data exposure in code and pipelines.
  • Implement secure secrets management best practices.
  • Triage and remediate vulnerabilities identified by Wiz.
  • Work closely with development and DevOps teams to drive remediation.
  • Support audit and compliance requirements within financial services.

Key Skills:

  • Hands-on experience implementing Wiz Code across repositories, pipelines, and cloud environments.
  • Strong experience with CI/CD platforms (e.g., GitHub Actions, GitLab CI, Jenkins, Azure DevOps).
  • Strong experience with cloud platforms, preferably GCP.
  • Experience securing Infrastructure as Code (Terraform, etc.).
  • Proven track record detecting and remediating code vulnerabilities, cloud misconfigurations, hardcoded secrets, and sensitive data exposure risks.
  • Strong understanding of DevSecOps principles and secure SDLC practices.

Salary (Rate): undetermined

City: Greater London

Country: United Kingdom

Working Arrangements: undetermined

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

We are seeking a hands-on Security Engineer with proven experience integrating Wiz Code across source code repositories, CI/CD pipelines, and cloud environments. The role focuses on embedding security into the software development lifecycle, proactively identifying and remediating vulnerabilities, misconfigurations, hardcoded secrets, and data exposure risks. This position supports a regulated financial services environment with strong governance and security controls.

Key Responsibilities:

  • Code & CI/CD Security Integration
  • Integrate Wiz Code into source code repositories and CI/CD pipelines.
  • Embed security scanning into build and deployment workflows.
  • Enforce policy gates and automated remediation workflows.
  • Infrastructure as Code (IaC) & Cloud Mapping
  • Scan and secure Terraform, CloudFormation, and other IaC templates.
  • Map code-to-cloud relationships for risk visibility.
  • Identify and remediate cloud misconfigurations.
  • Secrets & Sensitive Data Protection
  • Detect and remediate hardcoded secrets, credentials, and tokens.
  • Prevent sensitive data exposure in code and pipelines.
  • Implement secure secrets management best practices.
  • Vulnerability & Risk Management
  • Triage and remediate vulnerabilities identified by Wiz.
  • Work closely with development and DevOps teams to drive remediation.
  • Support audit and compliance requirements within financial services.

Required Experience & Skills:

  • Hands-on experience implementing Wiz Code across repositories, pipelines, and cloud environments.
  • Strong experience with CI/CD platforms (e.g., GitHub Actions, GitLab CI, Jenkins, Azure DevOps).
  • Strong experience with cloud platforms, preferably GCP.
  • Experience securing Infrastructure as Code (Terraform, etc.).
  • Proven track record detecting and remediating: Code vulnerabilities, Cloud misconfigurations, Hardcoded secrets, Sensitive data exposure risks.
  • Strong understanding of DevSecOps principles and secure SDLC practices.

This is an Inside IR35 contract role working via Umbrella Company, and you must be UK based to be considered for this role.

Apply
Similar Jobs
Loading data...