Hi,
The following requirement is open with our client.
Title : AWS Application Security
Location : Irvine, CA - Onsite
Duration : 12+ Months
Relevant Experience (in Yrs.):
Job Description:
Large-scale data center to AWS migrations, defining secure landing zones, reference architectures, and guardrails. Drive end-to-end cloud security across applications, infrastructure, data, and CI/CD pipelines while ensuring alignment with industry standards and enterprise risk frameworks.
Key Responsibilities:
· Define AWS secure landing zones, multi-account strategies, and security guardrails (SCPs, IAM, segmentation).
· Perform threat modeling (STRIDE) for applications, APIs, integrations (TIBCO), and data migration flows.
· Embed security into SDLC: SAST/DAST/SCA, container & IaC scanning, and policy-as-code in CI/CD.
· Architect network security: VPC segmentation, PrivateLink, WAF/Shield, zero-trust and egress controls.
· Establish data protection: encryption (KMS, TDE), key management, masking/tokenization, secure backups.
· Implement cloud monitoring & incident response using CloudTrail, GuardDuty, Security Hub, SIEM.
· Conduct risk assessments & design reviews aligned to OWASP, NIST, ISO; document residual risks.
· Secure migration tooling & cutover strategies, including validation, rollback, and penetration testing.
Required Experience:
· Proven experience in large-scale on-prem to AWS migrations (EC2, EKS/ECS, Oracle/Exadata).
· Deep expertise in AWS security services: IAM, KMS, WAF, GuardDuty, Security Hub, Config, etc.
· Strong knowledge of DevSecOps, container security, and CI/CD security automation.
· Experience with network architecture, zero-trust design, and multi-account AWS environments.
· Solid understanding of OWASP Top 10, secure coding (Java/.NET), and compliance frameworks.
· Hands-on with database security (Oracle 19c/Exadata) and integration security (TIBCO ESB).
Thanks & regards,
Balu Garibe
ASCII Group, LLC
Mobile: /
Never miss an opportunity! Create an alert based on the job you applied for.
