What are the responsibilities and job description for the Cloud Security Engineer - AWS position at Beyondsoft?
Job Overview
We are seeking a highly skilled Cloud Security Engineer (AWS) . The ideal candidate will bring a robust understanding of cloud security frameworks, compliance requirements, and proven hands-on experience in realizing security outcomes with AWS-native security tools and automation. You will be responsible for designing, implementing, and maintaining well engineered preventive and remediation cloud security guardrails and processes in support of decentralized development and operations teams.
Cloud security engineering focuses on building secure, scalable, and resilient cloud architectures. Key security outcomes for cloud security engineering include :
1. Strengthened Access Control : Only authorized users, systems, and services can access cloud resources.
2. Resilient Cloud Infrastructure : Systems can withstand and recover from security incidents or outages.
3. Sensitive data is protected in transit and at rest, meeting privacy and compliance requirements.
4. Potential threats are detected and mitigated before they cause damage.
5. Secure DevOps (DevSecOps) : Security is integrated into the software development lifecycle (SDLC).
6. Cloud environments meet legal and organizational compliance standards.
7. Minimized impact of security incidents with clear response processes.
8. Fewer vulnerabilities and entry points for attackers .
Required Qualifications
- 10 years of Strong experience in AWS security services and frameworks.
- Hands-on experience with tools like IAM, Security Hub, GuardDuty, CloudTrail, CloudWatch, Config, and Automated Security Remediation.
- Experience in securing containers and Kubernetes configurations.
- Proficiency in network security, including securing virtual networks, firewalls and governance, and subnets.
- Experience with patching cloud IaaS resources, container image scanning.
- Experience with 3rd party remediation software such as Cloud Custodian.
- Experience implementing security in a hybrid environment.
- Proficient in scripting and automation using Python, Terraform, and AWS Lambda.
- Experience with Infrastructure as Code (IaC) tools such as CloudFormation or Terraform.
- Policy code generation with AWS Code Whisperer and / or equivalent.
- Familiarity with compliance requirements like GDPR, HIPAA, and regulatory standards.
- Understanding of AWS FSBP and CIS Benchmarks.
Certifications (Preferred)
