Cloud Security Engineer (Junior/Mid)

Your responsibilities will include:

• Conduct penetration testing and vulnerability assessments on AWS-based systems, applications, and networks to identify security weaknesses and potential risks.
• Develop and execute comprehensive penetration testing plans, including scoping, reconnaissance, exploitation, and reporting.
• Collaborate with development and operations teams to address security vulnerabilities and recommend appropriate mitigation strategies.
• Design, implement, and maintain security controls for AWS services, including Identity and Access Management (IAM), Virtual Private Cloud (VPC), Security Groups, and Network Access Control Lists (NACLs).
• Monitor and analyze security logs and alerts from AWS services, such as CloudTrail, GuardDuty, and Config, and take appropriate actions to mitigate potential threats.
• Stay up-to-date with the latest AWS security threats, vulnerabilities, and best practices, and proactively implement necessary countermeasures.
• Conduct security reviews of AWS architecture designs, deployments, and configurations to ensure compliance with industry standards and regulatory requirements.
• Collaborate with cross-functional teams to establish incident response plans and participate in security incident investigations and resolution.
• Provide guidance and support to other teams regarding secure AWS development practices, security guidelines, and threat mitigation techniques.
• Document security processes, procedures, and guidelines, and contribute to the development of security policies and standards specific to AWS.

What we are looking for

• Proven experience as an AWS Security Engineer or related role with a focus on penetration testing in an AWS environment.
• In-depth knowledge of AWS services, architecture, and security best practices, including IAM, VPC, AWS Config, AWS CloudTrail, AWS WAF, etc.
• Hands-on experience with penetration testing tools and frameworks, such as Kali Linux, Burp Suite, Metasploit, and Nessus, specifically applied to AWS environments.
• Strong understanding of common web application vulnerabilities (e.g., OWASP Top 10), network protocols, and security technologies.
• Familiarity with security frameworks and standards, such as NIST Cybersecurity Framework, ISO 27001, and PCI DSS, as applied to AWS environments.
• Experience with scripting and automation using languages like Python, PowerShell, or Bash, with a focus on AWS CLI and SDKs.
• Strong analytical and problem-solving skills, with the ability to assess risks and recommend appropriate security controls.
• Excellent communication and collaboration skills, with the ability to work effectively across cross-functional teams and present complex security concepts to non-technical stakeholders.
• AWS Certified Solutions Architect - Associate or higher certification is a plus.

Bonus points

• Experience in working within a high-growth environment.
• Security professional certifications encouraged (AWS Advanced Sec Specialist, CISSP etc.) 
• Experience in other cloud platforms (Azure, Google)
• Experience in payments
• Experience with PCI compliant environments (PCI-DSS, etc)