Cloud Security Engineer AWS

• Jobseeker Video Testimonials 
  
• Employee Glassdoor Reviews
  

We are an IT Solutions Integrator/Consulting Firm helping our clients hire the right professional for an exciting long term project. Here are a few details.

Requirements

Domain Expertise

1. AWS Organizational Governance – Designing Service Control Policies (SCP), implementing multi-account structures, delegated admin setups.
   

2. Logging & Audit Foundations – Organization-wide CloudTrail, AWS Config aggregators, hardened S3 log archives, GuardDuty, Security Hub.
   

3. CSPM / CNAPP Operations (Wiz.io) – Account/resource onboarding, posture policy tuning, integration with ticketing and log-routing tools (e.g., Cribl, SIEM).
   

4. Infrastructure as Code – Developing Terraform modules, reusable patterns, policy-as-code integration, CI-based scanning.
   

5. Vulnerability & Risk Prioritization – Applying CVSS, exploit intelligence, asset criticality, and signal correlation for severity logic.
   

6. Automation & Scripting – Python (boto3), AWS CLI, shell tooling for validation, evidence extraction, and reporting.
   

7. Identity & Access Management – Implementing least privilege, cross-account role assumptions, permission boundaries, and automation roles.
   

8. Observability & Data Routing – Familiarity with Cribl, Firehose, Kinesis, or equivalent pipelines.
   

9. Compliance Awareness – Understanding HIPAA safeguards: auditability, access control, and data protection.
   

10. Metrics & Reporting – Designing and extracting KPIs (coverage %, MTTR, SLA compliance, control effectiveness).
    

Technical Skills

• Terraform – Advanced (CNAPP onboarding, scanning pipelines)
  

• Python (boto3) – Advanced (validation and evidence automation)
  

• AWS Security Services – Deep (guardrails and findings pipelines)
  

• SCP / IAM Policy JSON – Deep (precise preventive controls)
  

• CNAPP Tooling (Wiz) – Advanced (configuration and policy management)
  

• AWS Config / Conformance Packs – Advanced (framework rule deployment)
  

• Event & Log Pipelines – Intermediate (Cribl or equivalents)
  

• CI/CD (GitHub Actions, Azure DevOps, etc.) – Intermediate (shift-left scanning and gating)
  

Benefits

Visit us at http://alignity.io/careers. Alignity Solutions is an Equal Opportunity Employer, M/F/V/D.