AWS Cloud Security Engineer

Client: EdTech

Title: AWS Cloud Security Engineer

Duration: 6 Months (Contact to hire)

Location: 100% Remote

About the Team 

·        The Client’s Cloud & Product Security Engineering team builds and operates cloud-native security solutions that protect our enterprise and mission-critical digital products.

·        We focus primarily on AWS and are responsible for engineering automated, scalable controls that secure high-stakes assessment platforms used by millions of students each year.

·        We partner closely across the Information Security organization to translate risk priorities, detection gaps, and product security requirements into engineered solutions that strengthen the enterprise.

·        Our team turns security requirements into working security solutions.

·        We design and deploy capabilities that enhance security visibility, strengthen protection controls, and enable automated detection and remediation across our customer-facing cloud environments.

·        These are real-world, production security systems operating at scale.

About the Opportunity  

·        As a Senior Cloud Security Engineer, you will lead the design and delivery of cloud-focused security capabilities that directly reduce enterprise risk.

·        You will be responsible for turning priorities across the security organization into resilient, automated solutions running in production.

·        This is a hands-on engineering role where writing code, building infrastructure as code, and operationalizing security tooling are core expectations.

·        You will collaborate closely with security and engineering partners across product suites, research and prototype solutions, and carry them through architecture, documentation, and full production implementation.

·        You will contribute to forward-thinking security design within AWS, helping contribute to patterns that make secure implementation the default for engineering teams.

·        Success in this role means delivering secure, observable, and highly available systems that stand up to real-world operational pressure while enabling product teams and security partners to move faster with confidence. 

In this role, you will:

Build and scale cloud security capabilities, 50%

·        Design and deliver cloud-native security solutions that enhance visibility, strengthen protection controls, and enable automated detection and remediation across AWS and SaaS environments

·        Develop code and infrastructure as code to operationalize security controls using modern tooling and automation frameworks

·        Design, deploy, and manage highly available, secure, and scalable cloud security services running in production

·        Integrate security capabilities into CI/CD pipelines and engineering workflows to make secure implementation the default

Translate security priorities into production systems, 30%

·        Partner across and beyond the Information Security organization to turn risk priorities and detection gaps into engineered solutions

·        Research, prototype, and validate new approaches, then carry them through architecture, documentation, and full production implementation

·        Provide risk assessments and data-driven recommendations that influence engineering and security decisions

·        Identify systemic security weaknesses and implement durable, automated fixes that reduce recurring risk

Improve and evolve security engineering patterns, 20%

·        Strengthen reusable cloud security patterns, reference architectures, and automation frameworks to increase consistency and speed

·        Operate and continuously improve security tooling and services, including tuning, upgrades, and integrations

·        Contribute to forward-looking design within AWS to enhance resilience, observability, and operational maturity

·        Evaluate and promote new security standards, tools, and automation approaches that increase scale and effectiveness

About you, you have:

·        3 to 5 years of hands-on experience in cyber defense, including threat hunting, detection engineering, or incident response within a cloud or enterprise environment.

·        Practical experience working in AWS environments, including investigating activity using telemetry such as CloudTrail, IAM logs, VPC Flow Logs, and CloudWatch.

·        Experience writing and tuning SIEM queries and detections, with a strong understanding of how to improve signal-to-noise and reduce false positives. Experience with Sumo Logic is a plus.

·        Experience executing structured threat hunts, including forming hypotheses, analyzing data, documenting findings, and recommending actionable improvements.

·        Experience supporting incident response activities, including log analysis, impact scoping, and clear documentation of findings and remediation steps.

·        Familiarity with attacker behaviors and frameworks such as MITRE ATT&CK, and the ability to apply them in practical detection and investigation scenarios.

·        Working knowledge of scripting or automation using tools such as Python, PowerShell, or Bash to improve efficiency in investigations and reporting.

Nice to have:

·        Experience participating in purple team exercises or detection validation activities.

·        Relevant certifications such as Security+, GCIA, GCIH, or AWS Security Specialty.

·        Exposure to modern cloud-native architectures such as containers, serverless, or CI/CD pipelines.