AWS Security Engineer

Hi,

The following requirement is open with our client.

Title                                       : AWS Security Engineer

Location                               : Raleigh, NC / Phoenix, AZ (Onsite)

Duration                              : 6+ Months 

Rate                                                 :$50/hr on W2

Relevant Experience (in Yrs.): 8+

Job Description:

·         Design and implement AWS Security Architectures including Security Landing Zones and AWS Control Tower

·         Configure and manage AWS security services such as IAM, VPC, Security Hub, GuardDuty, AWS Config, Inspector, CloudTrail, Shield, WAF, and Route 53

·         Identify and remediate cloud misconfigurations, vulnerabilities, threats, and attack vectors

·         Implement Identity and Access Management using AWS Identity Center, Cognito, SCP policies

·         Deploy AWS infrastructure and security controls using Terraform and CloudFormation

·         Implement Key Management (KMS), encryption, data protection, and certificate management

·         Build and review architecture diagrams and security solution designs

·         Gather and translate security and compliance requirements into AWS solutions

·         Ensure alignment with compliance and GRC frameworks (ISO 27001, NIST, HIPAA, PCI DSS, GDPR)

·         Work closely with customers, security teams, and stakeholders to deliver secure cloud solutions

·         Provide technical leadership and guidance on AWS security best practices

·         Strong expertise in AWS Security Services (IAM, VPC, Security Hub, GuardDuty, Config, Inspector, Logging)

·         Proven experience designing AWS Security Landing Zones and Control Tower

·         Deep understanding of cloud threats, vulnerabilities, and misconfigurations

·         Hands-on experience with Terraform and CloudFormation

·         Strong knowledge of Identity Management (AWS Identity Center, Cognito, SCPs)

·         Experience with Network Security (WAF, Shield, Network Firewall, Route 53)

·         Knowledge of Key Management, Encryption, and Certificate Management

·         Strong understanding of Compliance and GRC

·         Excellent communication, leadership, and stakeholder-management skills

·         Good-to-Have Skills

·         Experience with OPA (Open Policy Agent)

·         Exposure to Google Cloud Platform or Azure Security

·         DevOps & CI/CD tools: GitHub, Jenkins, Ansible

·         Container & orchestration: Docker, Kubernetes

·         Automation and scripting experience

·         AWS Certified Security – Specialty (Preferred)

·          

Must-Have Skills:

• ·         Security Engineer
• ·         AWS
• ·         Infrastructure as Code (Terraform / CloudFormation)

Grace

Technical Recruiter |ASCII Group LLC. 

Email:  |Direct: 

38345 W. 10 Mile Rd, Ste.#365; Farmington, MI 48335