AWS Security Engineer

Hi,

This is Bhargavi from logic planet IT Staffing, hope you are doing well, check out the requirement attached below

Role: AWS Security Engineer

Location: Remote

Experience: 13+ years

As the skilled AWS Security Engineer to join our team and ensure the security of our AWS cloud environment, you be responsible for designing, implementing, and maintaining security controls to protect our cloud infrastructure and data. You will work closely with various teams to identify security risks, develop security best practices, and implement solutions to mitigate vulnerabilities.

RESPONSIBILITIES

• Design, implement, and maintain security controls in AWS cloud environments.
• Develop comprehensive cloud security architecture plans, encompassing network security, identity and access management (IAM), data encryption, and threat detection mechanisms utilizing AWS services like VPCs, IAM roles, KMS, and GuardDuty.
• Conduct security assessments, vulnerability scans, and penetration tests to identify and address security risks.
• Collaborate with cross-functional teams to ensure security best practices are followed in cloud deployments.
• Monitor and respond to security incidents, conduct forensic investigations, and implement incident response procedures.
• Develop and maintain AWS security documentation, policies, and procedures.
• Build/enhance security architecture and configure networks and endpoints to enhance the security posture of the AWS enterprise.
• Participate in Software Development Lifecycle: code review, QA security testing, pipeline management, launches, etc. 
• Develop and/or implement automated security testing tools where possible for the AWS environment.
• Train engineers on common security problems and best practices for writing secure code for the AWS environment.
• Perform hands-on testing of applications, as well as building and enforce information risk management requirements and structure, including providing practical secure architecture skills and developing and implementing Information Security best practices.
• Lead and execute projects on our security roadmap specific to AWS environment.
• Adhere to existing risk management frameworks, such as COBIT, ITIL, and ISO 27002. 
• Provide input and visibility into emerging security technologies, deployment strategies and other security protocols to ensure awareness within the IT security branch.
• Evaluate data security of AWS storage repositories and required supported databases. 
• Lead alignment of AWS technical resources with domain security posture tools to enable comprehensive security triage and analysis. 

MINIMUM QUALIFICATIONS, KNOWLEDGE, SKILLS, AND ABILITIES:

Formal Education & Certification

• Bachelor's degree in information technology, Computer Science or equivalent. Master’s degree desirable
• AWS certifications such as AWS Cloud Security Engineer Specialty and/or AWS Cloud Security Architect Professional is preferred. 

Knowledge & Experience

• 3+ years of experience working as a security engineer, specifically with AWS cloud environments.
• Deep understanding of AWS security services including IAM, VPC, S3, KMS, GuardDuty, CloudTrail, and Security Hub.
• Expertise in cloud security principles like network segmentation, encryption, identity management, and data protection.
• Strong experience with scripting and automation tools (e.g., Python, PowerShell) for security tasks.
• Strong knowledge of cloud security concepts, tools, and best practices.
• Professional security certification such as CISSP, CISM, CISA, or similar is preferred. 
• Experience with security assessments, vulnerability management, and incident response.
• Excellent communication and collaboration skills.
• Ability to work independently and as part of a team.
• Strong problem-solving and analytical skills.
• Experience in engineering and enterprise system administration roles.
• Experience developing a standard set of metrics that measure our security posture on a monthly/weekly basis.
• Proven experience developing security policies, procedures, risk registers and incident
  response plans
• Intermediate to advanced knowledge of information security concepts. 
• Experience with one or more applications development languages such as Python, Go, Ruby on Rails, Java, C/C++, .NET. 
• Solid knowledge of and experience with secure web architectures, tools and processes
• Security of virtual machine environments is highly desirable. 
• Understands infrastructure monitoring  
• Prior experience as a team lead or role mentoring junior team members.

Skills & Abilities

• Basic skills needed include: 
• Secure solutions development
• Middleware security
• N-tier apps dev infrastructure
• Compliance – PCI, GLB, GLBA, CMMC. GDPR, etc.
• Risk management and security risk assessments
• Code review, reverse engineering
• API’s and protocols 
• Authentication and authorization. SSO (Single Sign On), MFA (Multi- Factor Auth.).
• Enterprise aware (change control, downstream impacts, understanding of cause and effect, change windows, etc.) 
• Recognized as a strategic thinker and is result oriented 
• Demonstrated effective strong team player and self-motivator. Ability to work and interface internally with IT and other functional support groups with minimal guidance 
• Demonstrated successful experience in a customer-facing role 
• Demonstrated communicator both written and verbal, with effective presentation delivery and meeting facilitation  
• Demonstrated effective time management, organizational, and documentation skills
• Good analytical and troubleshooting skills with strong attention to detail

Bhargavi M Lead Technical Recruiter www.logicplanet.com

E: bhargavi.m@logicplanet.com T: +1.732.512.0009||EXT: 821 A: Unit 4525 Route 27,  Princeton, NJ 08540