Cloud Security Governance Consultant (Wiz, CSIR, GCP)

Hybrid model: Warsaw 3 days a week, onsite

Rate: up to 195 PLN/h

The primary objective of this role is to establish and manage governance over the Wiz.io Cloud Security Platform, focusing on creating an effective Cloud Security Incident Response (CSIR) process. This position emphasizes project-oriented standards and procedures, facilitating an organized approach to cloud security.

Main Responsibilities

• Defining Wiz usage across the organization, detailing ownership models, risk categories, incident severity definitions, remediation workflows, and SLAs.

• Transforming Wiz findings into governed, repeatable processes to manage cloud security risks across Azure, AWS, and Google Cloud Platform (GCP).

• Designing a comprehensive cloud incident response framework that integrates Wiz findings into security operations.

• Establishing criteria for what qualifies as a cloud security incident and ensuring integration with SIEM tools for incident escalation, investigation, and resolution.

• Developing governance documentation, incident response playbooks, and operational procedures for scaling the Wiz platform and CSIR processes beyond project life cycles.

• Facilitating strong communication and collaboration with international stakeholders, bridging cloud engineering, security operations, and governance teams.

Key Requirements

• Hands-on experience with Wiz.io, including workflow creation, prioritization models, and governance.

• Strong expertise in Cloud Security with GCP as the primary platform.

• Experience in designing or supporting security governance, risk management, or incident response processes.

• Practical knowledge of SIEM platforms such as Microsoft Sentinel, Splunk, or CrowdStrike NG SIEM.

• Understanding of SOAR concepts and tooling (e.g., XSOAR) for response automation.

• Strong foundational security knowledge backed by relevant certifications.

• Excellent documentation and communication skills.

• Fluency in English at C1 level.