Overview
Skills
Job Details
Software Developer Location: Onsite Reston, VA Length: 1+ years, long term Open to W2 full-time with benefits or C2C
Secure coding Mentor (Programming, Application Security & AWS)
Position Overview:
We are seeking a skilled Security Mentor with strong programming expertise, deep
knowledge of application security, and hands-on experience with AWS security. This role
involves mentoring software developers to adopt secure coding practices, understand
cloud security principles, and effectively secure applications deployed on AWS. The
mentor will guide developers in integrating security throughout the software
development lifecycle with a focus on AWS environments.
Key Responsibilities
Mentor developers on secure coding practices and application security
fundamentals, emphasizing AWS cloud security best practices.
Provide expertise in programming languages (e.g., Java, Python, JavaScript)
alongside AWS-specific security services such as IAM, KMS, CloudTrail,
GuardDuty, Security Hub, and WAF.
Guide developers in designing, implementing, and troubleshooting
authentication, authorization, and data protection controls in AWS.
Assist teams in applying AWS security principles including encryption, network
isolation (VPC), incident response, and compliance governance.
Conduct code reviews and security assessments focusing on AWS infrastructure
as code (CloudFormation, CDK) and automation using Lambda or scripting
languages.
Foster continuous learning by sharing updates on emerging AWS security threats,
tools, and compliance requirements.
Collaborate with security and development leads to embed AWS security best
practices into the SDLC and DevSecOps pipelines.
Support developers in understanding and mitigating common cloud security risks
and vulnerabilities specific to AWS.
Encourage reflection, feedback, and improvement in security posture across
development teams.
Required Qualifications
Proficient in one or more programming languages with practical experience in
secure software development.
Strong understanding of application security concepts and AWS cloud security
fundamentals.
Hands-on experience with AWS security services including IAM, KMS, CloudTrail,
GuardDuty, Security Hub, WAF, and VPC.
Experience implementing and automating security controls using AWS
infrastructure as code tools (CloudFormation, AWS CDK) and scripting languages
(Python, Ruby, etc.).
Familiarity with compliance frameworks and governance in AWS environments
(e.g., PCI DSS, HIPAA, ISO 27001).
Proven ability to mentor developers, explain complex security topics clearly, and
provide actionable guidance.
Knowledge of AWS security best practices such as least privilege access,
encryption in transit and at rest, API security, and incident response planning.
Strong communication and interpersonal skills to build trust and foster a culture
of security.
Preferred Qualifications
AWS Certified Security Specialty or equivalent AWS security certification.
Experience working with cloud-native security tools and continuous monitoring
solutions.
Background in DevSecOps and integrating security into CI/CD workflows on AWS.
Prior experience as a security champion or mentor in cloud environments.
Ability to tailor mentoring approaches to individual and team needs.
Keywords:
Application Security 20
Secure Coding Practices 20
Programming Languages (Java, Python, JavaScript, C#) 18
AWS Security 20
Identity and Access Management (IAM) 19
Vulnerability Assessment & Remediation 18
Security Tools (Static Code Analysis, Vulnerability Scanners) 17
Cloud Security (AWS-specific) 19
Cryptography & Encryption 16
Security Information and Event Management (SIEM) 14
Incident Response 15
Mentoring / Coaching Experience 20
Risk Management 16
Cloud Infrastructure as Code (CloudFormation, AWS CDK) 17
Compliance & Governance (PCI DSS, HIPAA, ISO 27001) 14