.We are looking for a highly skilled Cloud Security Engineer with expertise in AWS. The ideal candidate will be responsible for ensuring that our cloud computing environment is secure, resilient, and compliant. What Your Day Will Look Like:Provide specialized security advice and support to various teams throughout the company.Design, build, and implement enterprise-class security systems for a production AWS environment.Design and deploy tools, dashboards, scripts, and automation to promote the adoption of secure configurations by product, application, and development teams.Align security standards, frameworks, and practices with the overall business and technology strategy.Regularly carry out a variety of security assessments, including penetration testing, evaluating threats and risks, and conducting code reviews.Identify and communicate current and emerging security threats.Design security architectures tailored for the AWS environment.Perform security reviews and audits of AWS services and infrastructure.Attend to any security incidents including creating playbooks.Collaborate with colleagues to ensure solutions are effectively engineered, tested, and integrated.Develop and configure technical solutions, patterns, and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.Use metrics and security maturity models to improve our security posture.Stay informed about the latest industry trends, technologies, and best practices.Train team members in best practices and provide security guidance.What Should Be In Your Backpack:Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent experience.Strong foundational knowledge in the following security domains: Secure network architectures, Secure application development, Identity and Access Management, Threat detection and response, etc.Minimum of 3-5 years of experience with Amazon Web Services (AWS).Certifications in AWS, such as AWS Certified Security – Specialty, are a plus.Familiarity with web-related technologies including Web applications, Web Services, and Service Oriented Architectures, as well as with network/web related protocols.Hands-on experience with cloud security solutions such as Security Hub, Guard Duty, WAF, IAM, KMS, VPCs, and Security Groups.Comprehensive understanding of network-based, system-level, and application layer attacks, along with their mitigation methods.Strong scripting skills in languages like Python, Bash, etc.Experience with security tools such as SIEM, IDS/IPS, and both static and dynamic code analysis, in addition to penetration testing tools.Proficiency in Cloud Governance, Risk Management, and Compliance.Experience with conducting vulnerability and risk management activities.Experience in threat modeling and security architecture reviews.Champion our Product & Cloud Security program
