AWS Cloud Security Engineer

Title: AWS Cloud Security Engineer

Location: Erie, PA(Onsite from Day 1)

Type: Long Term

MUST HAVE: AWS, Cloud Security Architecture, Data Protection, Network Security, CI/CD

Responsibilities:

• Develop and maintain a comprehensive AWS cloud security architecture, encompassing identity and access management (IAM), network security, data protection, encryption, logging, and monitoring.
• Design and implement security controls, policies, and procedures to protect AWS resources, data, and applications from unauthorized access, exploitation, and cyber threats.
• Conduct security assessments, risk analysis, and vulnerability scans to identify and mitigate security risks and compliance gaps in AWS environments.
• Implement and configure security tools and services on AWS, such as AWS Identity and Access Management (IAM), AWS Security Hub, AWS WAF, AWS GuardDuty, and AWS Config.
• Establish and enforce security best practices, compliance standards (e.g., PCI DSS, HIPAA, GDPR), and industry regulations in alignment with organizational policies and objectives.
• Collaborate with development and operations teams to integrate security into the software development lifecycle (SDLC) and continuous integration/continuous deployment (CI/CD) pipelines.
• Provide security guidance, technical expertise, and training to internal teams on AWS security architecture, controls, and technologies.
• Monitor security events, alerts, and incidents in AWS environments, and respond to security breaches, incidents, and anomalies in a timely and effective manner.
• Stay up-to-date with emerging threats, vulnerabilities, and security trends in cloud computing and AWS services, and recommend proactive measures and solutions to enhance security posture.
• Qualifications:
• Bachelor s degree in Computer Science, Information Security, or a related field (or equivalent work experience).
• Minimum of 10 years of experience in cloud security architecture, engineering, or a related role, with a focus on AWS.
• Strong understanding of AWS services, architecture, and security best practices, including IAM, VPC, S3, RDS, Lambda, KMS, and CloudTrail.
• Experience with security frameworks, standards, and compliance requirements (e.g., NIST, CIS, SOC 2, ISO 27001) in cloud environments.
• Hands-on experience with security tools and technologies for cloud security, such as SIEM, IDS/IPS, DLP, encryption, and key management.
• Familiarity with scripting and automation using languages like Python, PowerShell, or Bash.
• Excellent analytical skills and the ability to assess and mitigate security risks in complex, distributed systems.
• Effective communication and collaboration skills, with the ability to work effectively with cross-functional teams and stakeholders.
• AWS certifications related to security (e.g., AWS Certified Security - Specialty) are highly desirable.