Position Title: AWS Security Engineer
Position Type: Permanent
Position Location: Virginia (FULLY REMOTE)
Top Skills required: Strong security automation with Python; AWS Security Specialty certification; good CI/CD understanding; good knowledge of security best practices.
Responsibilities:
Help formulate the approach for the design, testing, and implementation of secure operating systems, services, and networks; security monitoring, tuning and management of IT security systems and applications; incident response, digital forensics, and data loss prevention actions.
- Using Infrastructure-, Security- and Governance-as-Code, implement security practices into our cloud environments and automated CI/CD processes, particularly focused on user and role management, firewalls, code scanning, data management, system recovery, and monitoring.
- Evaluate existing and new AWS security services for use in customer environment.
- Research, evaluate, and recommend new security tools, techniques, and technologies and introduce them to the enterprise in alignment with IT security strategy.
Skills:
- 7-10 years of overall IT experience, with at least 7 years of experience in security roles.
- Must have deep understanding of information security concepts, controls, tools, and current security best practices.
- At least 5 years of experience working with AWS cloud services,
- At least 2 years of automation experience working with Linux shell scripting, Python, and using technologies like Cloud Formation, CDK, Ansible, Jenkins, and/or Code* Services to automate management of cloud environments, development, and release management processes. Ability to efficiently develop Lambda functions is desired
- Understanding of, and experience applying, industry security policies, regulations, and guidelines such as NIST, FISMA, Risk Management Framework, FedRAMP, etc.
- Must be knowledgeable in security aspects of networking, databases, application, web operations (internet security), secure remote access capabilities, and securing the AWS cloud.
- Knowledge of change control and change management process, project management, Enterprise Architecture frameworks, SDLC, and general security policy.
- Knowledge of key security capabilities such as e-forensics, logging, risk management, PKI, IPsec, vulnerability management, A&A, continuous monitoring, disaster recovery, and network endpoint security.
Preferred:
- Experience working within the Jira project management software and an understanding of the BS or BA degree in computer science or related technical field or equivalent experience.
- AWS Certified Security Specialty (Required)
- Certified Information Systems Security Professional (CISSP) (Desired)
- Certified Ethical Hacker (CEH) (Desired)