AWS Security Engineer

Overview

We are seeking an experienced AWS Security Engineer to ensure the security, integrity and compliance of cloud infrastructure and applications hosted on Amazon Web Services (AWS). The engineer will design, implement, and maintain security controls, conduct assessments, monitor cloud environments and lead incident response activities. This role works closely with cross -functional teams to embed security best practices and enhance the organization’s overall cloud security posture.

• Design, implement, and manage AWS cloud security controls including IAM, VPC security, S3 policies, KMS, GuardDuty, CloudTrail, and Security Hub.
  

• Conduct vulnerability assessments, penetration testing and risk analyses; recommend and implement mitigation strategies.
  

• Monitor cloud environments, investigate security events and support incident response and digital forensics.
  

• Automate security processes and integrate security tooling into CI/CD pipelines.
  

• Develop and maintain cloud security policies, procedures, standards and technical documentation.
  

• Provide training and guidance to engineering teams on secure coding practices and AWS security standards.
  

• Lead cloud security initiatives, roadmap activities and ensure alignment with compliance frameworks such as NIST, ISO 27001, ITIL, COBIT and others.
  

• Collaborate with IT, engineering, DevOps and third -party vendors to ensure secure system design, deployment and operations.
  

Requirements

• Bachelor’s degree in Computer Science, Information Security or related field
  
  or equivalent professional experience.
  

• 3+ years of hands -on AWS security engineering experience with in -depth knowledge of:
  

  • IAM
    

  • VPC security
    

  • KMS
    

  • GuardDuty
    

  • CloudTrail
    

  • Security Hub
    

  • S3 security controls
    

• AWS Security Specialty or AWS Solutions Architect certifications (preferred).
  

• Strong understanding of cloud security principle, including network segmentation, IAM governance, encryption, monitoring and logging.
  

• Proficiency in scripting and automation using Python, PowerShell or similar languages.
  

• Experience with vulnerability management, incident response and performing security assessments.
  

• Familiarity with compliance frameworks such as PCI, GDPR, GLBA, CMMC and other regulatory standards.
  

• Understanding of secure software development lifecycle (SDLC), API security, and code review practices.
  

• Strong analytical, problem -solving, communication, and documentation skills.
  

• Ability to work independently, lead initiatives, and mentor team members when needed.