AWS Cloud Security Engineer

Amazon Web Services, Cloud, Cloud security, Authentication, Bash, Cloud firewall, Information security, Encryption, PKI, Penetration testing, NIST, Monitoring, Scripting, Security controls, Troubleshooting, SIEM, Automation, CloudTrail, CloudWatch, AWS Security Hub, Ansible, two-factor authentication, WAF, Perimeter, intrusion protection, IaaS, Active Directory, Malware analysis, PCI, Security, Perl, Java
Full Time
$130,000 - $140,000
Travel not required

Job Description

We are seeking a Cloud Security Engineer who can define, implements, and maintains information security practices, measures, and technologies (consistent with industry best practices) to ensure appropriate protection of the company's Cloud Services. The Cloud Security Engineer utilizes strong policy and process knowledge as well as skills and expertise with a variety of technologies to protect the integrity, confidentiality, and availability of the company's data, systems, and services in Cloud environments. This position provides leadership and focuses for the architecture, integration, development, and support of cloud security technologies and services to mitigate/reduce security risks for the company.

Key Responsibilities

  • Acts as the SME for Cloud Security providing guidance, direction, and technical information to other technical teams.
  • Designs develop and implement cloud security policies, processes, and standards.
  • Provides expert consultation to project teams with regard to the application and implementation of the company's security policies, procedures, standards, and agreed architectures for cloud services.
  • Designs, develops, reviews, and builds security architectures for the public, private, and hybrid Cloud-based systems within Amazon Web Services (AWS), Microsoft Azure, or other cloud providers.
  • Coordinates and performs security audits on the company's Cloud Services to maintain compliance with established security architectures, policies, and practices taking into consideration legal and regulatory requirements.
  • Proactively identifies vulnerabilities and assesses security risks throughout the company's Cloud Services to define and implement security controls and measures to protect company data.
  • Recommends, Implements maintains and supports security technologies and services used to monitor and protect the company's clouds systems and services.
  • Recommends and implements cloud security solutions to mitigate, prevent or reduce security exposures and potential security risks.
  • Identifies, designs, and deploys solutions to secure cloud usage, whether cloud-native or Commercial-Off-The-Shelf (COTS) solutions.
  • Assists with the investigation of security incidents, recommends, and implements solutions to remediate or mitigate them.
  • Maintains current knowledge of relevant security and privacy trends.
  • Managing cryptography and encryption of data in the cloud.
  • Designs develop or recommend integrated security solutions that will ensure that proprietary and confidential data, systems, and services are protected


  • Bachelor's degree or equivalent experience Bachelor of Science degree in Cybersecurity, Information Security, Computer Science, or related field Req

Work Experience

  • 7-10 years 7+ years of progressive experience with Cloud Infrastructure (Iaas, Paas, Saas, cloud technology security and with information security in a hybrid-cloud environment supporting and maintaining security to protect data and reduce risk. Req And
  • 7-10 years 7+ years of experience maintaining and supporting security tools, performing vulnerability and risk assessments including tracking and mitigating findings Req And
  • 7-10 years 7+ years of experience implementing and enforcing security policies, standards, guidelines, and procedures in a complex hybrid cloud environment. Pref And

Licenses and Certifications

  • Requires an Information Security Professional certification such as, but not limited to, CCAK, CCSP, Cloud+, AWS Certified Security Specialty Req Or
  • Other professional certifications such as, but not limited to, CISSP, CySA+, PenTest+, CISA, GCLD, GWEB, GCSA, and GPCS are a plus. Req

Skills and Requirements

  • Knowledge and understanding of cloud security concepts, technologies, and best practices, including but not limited to, automation and secure containerization frameworks (e.g., Ansible, Terraform, Chef, Salt, Puppet, and Cloud Formation Templates), directory services (e.g., Active Directory, LDAP), SSO, One-Time Passwords (OTP), encryption technologies and forensics in a cloud environment.
  • Knowledge of and implementation experience with cloud security technologies, architecture, and best practices that includes hands-on experience hardening and secure cloud environments.
  • Knowledge of and implementation experience with security technologies, including but not limited to, firewalls (WAF or Perimeter) configuration, two-factor authentication, PKI, malware, and intrusion protection and detection tools.
  • Demonstrated knowledge and understanding of information security industry trends and emerging technologies, and an ability to relate them to the company and its objectives.
  • Demonstrated experience with vulnerability and risk management, including performing security scans and risk assessments to identify potential vulnerabilities, track the remediation of findings to reduce risks.
  • Experience with cloud security, monitoring, and auditing tools such as CASB, SIEM, AWS Security Hub, CloudTrail, CloudWatch, GuardDuty, Azure Security & Compliance Center, MS 365 Security & Compliance Center, OCI Cloud Security Monitoring, and Google Cloud Platform Security Command Center.
  • Demonstrated experience and understanding of cybersecurity incident management and response procedures — must demonstrate the ability to perform and respond well in crisis situations.
  • Demonstrated knowledge and understanding of information security standards, guidelines and frameworks such as NIST, COBIT or PCI.
  • Experience with maintaining compliance regulatory and legal requirements such as GDPR, PCI.
  • Familiarity with application development life cycle models and issues, especially pertaining to security components and impact to cloud services.
  • Fluent in one or more programming or scripting languages such as Bash, Powershell, Python, TCL, Java, PHP, Perl, C++, and Visual Basic.
  • Good verbal and written communication skills — Able to communicate, security and risk implications to technical and non-technical audiences.
  • Ability to work independently managing multiple deadlines and deliverables
  • Self-motivated and driven, capable of handling problems until resolved within accepted time tolerances — anticipate problems and identifies long-term implications of decisions and actions.
Dice Id : 10171186
Position Id : 7137711
Originally Posted : 4 weeks ago
Have a Job? Post it

Similar Positions

Cloud Security Analyst
  • XDuce
  • Piscataway, NJ, USA
Cloud Security Engineer (AWS)
  • Business Wire
  • San Francisco, CA, USA
Cloud Security Controls Analyst
  • Experis
  • McKinney, TX, USA
AWS Cloud Security Engineer
  • Judge Group, Inc.
  • Manassas, VA, USA
Senior Cloud Security / Bitcoin/ AWS / Remote/ 180k
  • Motion Recruitment
  • Los Angeles, CA, USA
Lead Cloud Security Engineer (AWS)
  • Motion Recruitment
  • Waltham, MA, USA
Senior Cloud Security Engineer
  • Gravity Infosolutions, Inc
  • Toronto, ON, Canada
Cloud Security Engineer/Architect
  • J.E. Ranta Associates
  • Marlborough, MA, USA
AWS Cloud Security Architect (100% remote)
  • The Denzel Group
  • Philadelphia, PA, USA