We are seeking a skilled Policy Writer with deep expertise in Netskope and modern security platforms to define, implement, and manage security policies that enable secure, productive software development. The ideal candidate will bridge the gap between security, development, and cloud operations, ensuring that policies protect critical assets without hindering engineering workflows.
Roles and Responsibilities
- Design, implement, and manage security policies for Netskope and other modern security platforms (e.g., Zscaler, Menlo Security).
- Collaborate with engineering teams to ensure security policies integrate seamlessly into developer workflows, CI/CD pipelines, and cloud environments.
- Define policies that govern secure use of SaaS tools, cloud infrastructure (AWS, Azure, GCP), containerization (Docker, Kubernetes), and package management systems (npm, pip, Maven).
- Embed security into DevSecOps processes, promoting compliance without creating bottlenecks.
- Monitor, analyze, and adjust policies to balance security, innovation, and productivity in hybrid or remote engineering environments.
- Develop guidance and documentation for developers, IT, and business stakeholders to clearly communicate security requirements and best practices.
- Support automation and scripting initiatives to streamline policy deployment and enforcement.
Required Technical / Functional Skills
- Hands-on experience with Netskope and similar cloud security platforms (e.g., Zscaler, Menlo Security).
- Strong understanding of engineering workflows and tools, including IDEs (VS Code, IntelliJ), CI/CD pipelines (Jenkins, GitLab CI/CD), and container orchestration (Docker, Kubernetes).
- Knowledge of software package management and security implications (npm, pip, Maven).
- Experience managing cloud security policies and SaaS governance.
- Familiarity with secure software development practices, including open-source dependency management.
- Strong understanding of compliance and regulatory frameworks (SOC 2, ISO 27001, GDPR) in a development context.
- Excellent communication and collaboration skills for cross-functional engagement.
Preferred Certifications
- Netskope Certified Cloud Security Administrator (NCCSA)
- Zscaler Certified Cloud Professional (ZCCP)
- Security certifications such as CISSP or CISM
- Developer/cloud certifications (e.g., AWS Certified Developer, Kubernetes certifications)
Experience
- Prior experience as a Security Engineer, DevOps Engineer, or Policy Writer supporting software development teams.
- Experience managing policies across hybrid or multi-cloud environments.
- Experience with automation/scripting (Python, PowerShell) to enforce and streamline security policies.