AWS Cloud Security Engineer

Job Description

Job Title: AWS Cloud Security Engineer

Location: Englewood, CO

Client is building out its Security capabilities for supporting applications in the AWS cloud. This initiative within the Information Security department aims to architect, design, deploy and test the various infrastructure, application and data security controls on the cloud. The AWS Cloud Security Engineer is responsible for solutions development, architectural design, and overarching IT operations and maintenance activities of a secure AWS infrastructure.

RESPONSIBILITIES INCLUDE:

• Provide AWS Infrastructure and Systems Administration functions to include support of products and services such as IAM, EC2, S3, AWS Networking & Content delivery (VPC, IGW, NGW, ALB, NLB, CloudFront, etc.) and core Security: Security Groups, Guard Duty, Cloud Trail, Config and WAF
• Assist with the design and development of a multi-account, multi-region, highly available and highly automated AWS environment to support full software development life cycle and production of mission-critical applications (Control Tower, Organizations and Landing Zone Knowledge, CloudFormation / Terraform)
• Understand and contribute to the creation of system support documents and operational procedures
• Proactively mitigate business service disruptions with designed redundancy, backups, and highly available solutions. Maintain a highly available production infrastructure. Provide application support for product customers.
• Reactively troubleshoot outages, perform root cause analysis, and execute continual service improvements.

KNOWLEDGE, SKILLS & ABILITIES

• Knowledge of security technologies such as SIEM, Firewall, DLP and hybrid/Cloud Security environments (Elastic Search, Logz.io, McAfee CASB, Palo Alto Prisma)
• Will have considerable AWS and Linux skills, as well we DevOps skills around CI/CD and experience with tools such as GitLab (deploying using runners, etc.)
• Working knowledge and experience with project and portfolio management tools, preferably Service Now, Microsoft Project, and/or Jira
• Excellent verbal and writing skills and the ability to communicate effectively with all levels

EDUCATION & WORK EXPERIENCE

• 5+ years working with all core AWS Infrastructure Services
• 3-5 years working with AWS Security, and fluency with the AWS APIs/command line tools
• Experience implementing /maintaining security for cloud-based systems /applications in AWS
• Experience writing SOPs, system requirements, and other technical documents
• Experience centrally monitoring systems for alerts and incident management functions.
• (Incident response on Cloud, investigation on security issues)
• Scripting language experience (Python, Javascript, etc.), Strong working knowledge of AWS automation tools such as CloudFormation / Terraform. Working knowledge of RDS databases.
• Should possess one or more of the following certifications – AWS Certification(s) Solutions Architect, DevOps, SysOps and/or Security Architect; CISSP, SANS GCIH, or Vendor Certifications