AWS Cloud Engineer - Security Specialist

We are seeking an experienced Cloud Engineer to join our team with an emphasis on Security in the Cloud. This role involves designing, implementing, and managing the security infrastructure within AWS to ensure the integrity, confidentiality, and availability of our financial services. The ideal candidate will have a strong background in cloud engineering, network security, and financial industry regulations.

Key Responsibilities

• Works with management to implement cloud security policies, procedures, and controls to protect the company’s data and infrastructure in AWS.
• Implement and manage AWS Security tools like Security Hub, GuardDuty, Inspector, Service Control Policies, and Control Tower
• Implement and manage Zero-Trust networks in AWS using tools like Security Groups, NACLs, AWS Network Firewalls and DNS Firewalls
• Implement and maintain Infrastructure as Code (IaC) environments for propagating common security controls and policies
• Works with development teams to provide rotatable secrets using AWS Secrets Manager and IAM
• Monitors and responds to security incidents and threats.
• Stay up-to-date with the latest security trends, threats, and technologies in cloud engineering and financial services.

• Strong experience in managing large AWS Organizations with emphasis on Cloud Security and Governance.
• Strong understanding of network protocols, architecture, and security considerations.
• Experience with financial services regulations and compliance requirements (PCI DSS, SOC2, NIST 800-53, FedRAMP, etc..)
• Proficient in using AWS security services and tools like IAM, AWS Athena, AWS WAF, Network Firewall and CloudFormation
• Excellent analytical, problem-solving, and communication skills.

Preferred Qualifications

• AWS Certified Security - Specialty certification
• AWS Solutions Architect – Associate or Professional
• Palo Alto PCNSA or PCNSE
• Experience with other cloud platforms like Azure or Google Cloud Platform.
• Knowledge of programming or scripting languages such as Python, Bash, or PowerShell.