What are the responsibilities and job description for the Cloud Security Engineer (AWS) position at SN Cloud Solutions?
Job Details
Title: Cloud Security Engineer (AWS)
Location: Houston, TX & New York City, NY.
Duration: 12 Month(s)
Key Responsibilities
- Detect, Prevent, Remediate
- Identify, evaluate and communicate security threats, risks and vulnerabilities, and propose recommended remediation for security issues.
- Design, implement, and maintain preventive and remediation controls across AWS.
- Apply cloud security frameworks such as AWS Foundational Security Best Practices (FSBP), CIS benchmarks, and others as applicable.
- Track and report on the effectiveness of AWS detective controls and other 3rd parties.
- Security Engineering Process
- Develop processes and cloud policies/standards to increase security response effectiveness.
- Assist internal teams to integrate security into CI/CD pipelines and workflows.
- Contribute to the development of security automation and security posture improvements.
- Compliance Management
- Ensure alignment with regulatory compliance requirements, including GDPR, HIPAA, and other relevant industry and hyperscaler frameworks.
- Maintain audit readiness, conduct vulnerability assessments, and manage cloud security documentation.
- Collaboration and Training
- Work closely with cross-functional teams, including developers, architects, and operations, to implement and monitor security practices.
- Conduct training sessions and workshops for internal teams on AWS security tooling best practices.
- Continuous Improvement
- Stay updated with the latest trends in cloud security and proactively recommend improvements.
- Regularly assess and improve the organization's cloud security posture.
Required Qualifications
- Technical Expertise
- Strong experience in AWS security services and frameworks.
- Hands-on experience with tools like IAM, Security Hub, GuardDuty, CloudTrail, CloudWatch, Config, and Automated Security Remediation.
- Experience in securing containers and Kubernetes configurations.
- Proficiency in network security, including securing virtual networks, firewalls and governance, and subnets.
- Experience with patching cloud IaaS resources, container image scanning.
- Experience with 3rd party remediation software such as Cloud Custodian.
- Experience implementing security in a hybrid environment.
- Automation and Development
- Proficient in scripting and automation using Python, Terraform, and AWS Lambda.
- Experience with Infrastructure as Code (IaC) tools such as CloudFormation or Terraform.
- Policy code generation with AWS Code Whisperer and/or equivalent.
- Compliance Knowledge
- Familiarity with compliance requirements like GDPR, HIPAA, and regulatory standards.
- Understanding of AWS FSBP and CIS Benchmarks.
- DevSecOps Practices
- Experience integrating security into DevOps workflows and CI/CD pipelines.
- Familiarity with container security in AWS environments
Certifications (Preferred)
- AWS Certified Security Specialty.
- AWS Certified DevOps Engineer - Professional.
- CISSP, CCSP, or equivalent industry certifications.
Soft Skills
- Strong analytical and problem-solving skills.
- Excellent communication skills to convey technical concepts to diverse stakeholders.
- Ability to work collaboratively in a federated operating model.
- Continuous learning mindset to keep up with emerging technologies.
Thank you,
Jay
SN Cloud Solutions LLC
USA 1
Email:
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.