Cloud Security Engineer
AIG
American International Group, Inc, (AIG), is a global insurance organization providing a range of insurance and other financial services. Get to know us better.
American International Group, Inc. (AIG) is a leading global insurance organization. AIG member companies provide a wide range of property casualty insurance in approximately 70 countries and jurisdictions. These diverse offerings include products and services that help businesses and individuals protect their assets and manage risks.
We’re also committed to making a positive difference for our colleagues and in the communities where we work and live. We encourage colleagues to give back to the causes they care most about, supporting these efforts through our Volunteer Time Off and Matching Grants Programs.
Get to know the business
At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology team equips our colleagues with the latest tools to complete their work efficiently and with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. AIG’s Information Technology functions include enterprise architecture, software and systems engineering, cybersecurity, and technology risk and compliance.
About the role
The Cloud Security Engineer will play a critical role in safeguarding multi-cloud workloads and services. In this role, you’ll be working with the Prisma Cloud security suite, encompassing code security, workload protection, and overall posture management and compliance across the organization. This hands-on role is responsible for the engineering and operational support for the Prisma Cloud Security suite.
Responsibilities
- Develop and implement security policies, standards, and procedures for cloud-based applications and infrastructure leveraging Prisma Cloud’s security solutions, including Workload Protection (Compute), Cloud Security Posture Management (CSPM), and Code Security modules.
- Integrate robust code security measures and scanning capabilities into CI/CD pipelines and other cloud workflows using Infrastructure as Code.
- Implement and manage enterprise security policies using Prisma CSPM’s advanced capabilities, including preventive guardrails and automated remediations, to ensure proactive measures are in place.
- Collaborate with the security architecture team, cloud security engineering and security remediation teams with implementing approved blueprints policies in Prisma.
- Leverage IaC and CI/CD to seamlessly deploy, patch, and upgrade Prisma Defenders in Kubernetes, as well as serverless architectures.
- Configure vulnerability items, misconfigurations, and other alerts using ServiceNow/Prisma Cloud integration, actively assisting stakeholders with timely remediation efforts.
- Assist the SOC and Cyber Defense & Response Team during security incidents, involving timely configuration changes to Prisma and participation on incident resolution.
- Manage user access in Prisma portal based on least privilege roles, and provide operations training and support, as needed.
Requirements
- Bachelor's degree in a Cybersecurity, Information Technology, or related field, such as Computer Science or Information Technology
- 6+ years of experience supporting and implementing multi-cloud security solutions, covering areas such as configuration, deployment, troubleshooting, and on-going maintenance.
- 3+ years of direct, hands-on experience with Prisma Cloud compute agents, DevOps code scanning deployment, and posture management policy tuning, utilizing IaC automation for efficient and secure cloud operations.
- Experience with DevSecOps and shift-left principles to proactively monitor, alert and remediate security risks and misconfigurations.
- Additional certifications such as CISSP, CCSP, Security+, foundational/associate/security tracks for Azure, AWS, GCP desired.
- Proficiency with RQL to create advanced Prisma queries.
- Stay current with industry best practices and emerging trends in cloud infrastructures and contribute to the continuous improvement of Cloud Security processes and technologies.
- Strong analytical and problem-solving skills with the ability to troubleshoot complex technical issues.
- Excellent communication skills and the ability to collaborate effectively with cross-functional teams.
- Proactive and self-motivated with the ability to work independently and manage multiple tasks simultaneously.
AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.
AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities. If you believe you need a reasonable accommodation, please send an email to candidatecare@aig.com.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
