AWS Cloud Security Engineer - Must be Local to VA - F2F Interview

Description

Reporting to Global Security department this this role contributes to the company internal digital transformation in its evolving adoption of Hybrid Hosting Strategy and enhancing its Cloud Security capabilities. The ideal candidate will have experience defining and implementing security controls for an evolving cloud environment. This role will undertake moderately complex projects ensuring the security and compliance of Swift’s cloud infrastructure, focusing on:

• Definition of cloud security standards and procedures
• Cloud security findings (vulnerabilities and configurations) lifecycle management
• Operationalize new cloud security features and services designed and developed by the Cloud Platform Security Engineering team
• Support workloads (application and infrastructure security) in their migration to cloud

Job responsibilities

• Define and maintain cloud security standards and procedures
• Manage cloud security findings (vulnerabilities and configurations)
• Operationalize new cloud security features and services designed and developed by the Cloud Platform Security Engineering team
• Support workloads (application and infrastructure security) in their migration to cloud
• Support day to day administrative and operational activities for vulnerability and configuration hardening management - assess and triage vulnerabilities and misconfigurations, evaluate security exceptions and risk scenarios
• Build an understanding of vulnerabilities and misconfigurations management process, related controls, and key roles and responsibilities.
• Create and maintain documents and flow charts to document processes
• Translate requirements and root cause fixes into Agile user stories or work items for cloud platform/workload engineers and developers
• Engage and work directly with application owners, onboard users to cloud security tools, provide user support, perform user acceptance tests, and troubleshoot cloud tool issues
• Develop automation to solve repeatable scenarios (eg reporting, reconfigurations, AWS lambda functions) preferably in Python

We are seeking professionals with:

• 5 years of relevant work experience
• Bachelor’s degree in computer science, Information Systems or a related field

Technical Skills

• Experience with Cloud Security services, preferably AWS (Inspector, Security Hub, Config, Macie, Access Analyzer)
• Understanding of core cloud services (AWS S3, EC2, EKS, VPC, etc.) and container technologies
• Understanding of DevOps, Infrastructure as Code and IAM Permissions
• Experience with security vulnerability and configuration scan report analysis
• Understanding of industry standards and compliance requirements, such as PCI-DSS, CIS.

Response type

• cloud core services (AWS S3, EC2, EKS, VPC)     Senior (6-9)
• Analytical Thinking: Ability to analyze security threats and
• vulnerabilities and develop effective mitigation strategies.  Senior (6-9)
• cloud security services (Inspector, Security Hub, Config, Macie) Senior (6-9).