AWS Security

Overview

On Site
Depends on Experience
Contract - W2

Skills

AWS Identity and Access Management (IAM)
GuardDuty
Security Groups
Network ACLs
CloudTrail
Config
Shield
WAF
DevSecOps
FedRAMP
SOC 2
AWS KMS

Job Details

Key Responsibilities
    • Design, implement, and maintain AWS security architectures, ensuring compliance with organizational and regulatory requirements (NIST, CIS, ISO 27001).
    • Configure and manage AWS Identity and Access Management (IAM) roles, policies, and federated access.
    • Implement and monitor AWS security services such as GuardDuty, Security Hub, Macie, Inspector, CloudTrail, Config, Shield, and WAF.
    • Define and enforce network security controls including VPCs, Security Groups, Network ACLs, and Transit Gateways.
    • Conduct vulnerability assessments and coordinate remediation of findings with DevOps and Infrastructure teams.
    • Develop and automate incident response playbooks for AWS workloads.
    • Monitor, analyze, and respond to security events from SIEM tools such as Splunk, Sentinel, or CloudWatch Logs.
    • Work closely with DevSecOps teams to integrate security into CI/CD pipelines using AWS CodePipeline, Terraform, or CloudFormation.
    • Manage encryption and key management using AWS KMS and Secrets Manager.
    • Support third-party security audits, SOC 2, and FedRAMP compliance activities.
    • Drive continuous improvement of cloud security posture and recommend architectural enhancements.
Required Qualifications
    • Bachelor s degree in Computer Science, Information Security, or related field.
    • 5+ years of experience in cybersecurity, with 3+ years focused on AWS cloud security.
    • Expertise in AWS Identity & Access Management (IAM) and multi-account security design (AWS Organizations, Control Tower).
    • Strong knowledge of network security, firewall rules, and secure connectivity (VPN, Direct Connect, PrivateLink).
    • Hands-on experience with Terraform or CloudFormation for secure infrastructure deployment.
    • Experience implementing SIEM and log management for AWS environments.
    • Understanding of compliance frameworks (NIST 800-53, ISO 27001, CIS, PCI-DSS, HIPAA).
    • Strong scripting or automation skills (Python, PowerShell, or Bash).
Preferred Qualifications
    • AWS Certified Security Specialty (strongly preferred)
    • CISSP, CISM, or CEH certification is a plus.
    • Experience with container security (EKS, ECS, Docker).
    • Familiarity with Zero Trust and cloud-native security automation practices.
    • Exposure to incident response, threat modeling, and forensics in cloud environments.
Soft Skills
    • Excellent communication and documentation abilities.
    • Strong problem-solving and analytical skills.
    • Ability to collaborate with cross-functional and global teams.
    • Self-motivated and detail-oriented with a proactive mindset.
Compensation & Benefits
    • Competitive base salary or hourly rate (based on experience).
    • Comprehensive health, dental, and vision insurance.
    • 401(k) with employer match.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.