AWS Cloud Security Engineer

About this role

1. About Our Client:

This organization operates within the cloud infrastructure and security space, addressing the need for robust protection of AWS environments. It focuses on securing cloud operations by implementing comprehensive security controls, ensuring compliance, and managing cloud security tools to safeguard data and services. The company supports complex cloud architectures and compliance requirements, impacting secure cloud adoption at scale.

2. About the Opportunity:

The AWS Cloud Security Engineer role is central to strengthening the security posture of the organization’s AWS infrastructure. This position is responsible for designing and implementing security controls, managing security monitoring and response, supporting compliance audits, and collaborating with multiple teams to embed security into cloud operations. The role ensures the safe and compliant operation of cloud services, contributing directly to the protection of critical infrastructure and data.

3. Responsibilities:

• Design, implement, and maintain security controls across AWS services including EC2, S3, RDS, EKS, ECS, Lambda, and API Gateway

• Configure and optimize AWS security tools such as GuardDuty, CloudTrail, CloudWatch, Security Hub, and AWS Config

• Implement VPC security architecture, network segmentation, security groups, and NACLs

• Manage CloudFront and ALB security configurations including WAF rules

• Secure containerized workloads and serverless architectures

• Design and implement least-privilege IAM policies, roles, and permission boundaries

• Manage AWS Identity Center (SSO) and its integration with Okta

• Conduct access reviews and support secure user provisioning

• Implement secure service-to-service authentication

• Monitor and respond to security alerts from AWS security services

• Investigate and remediate security findings from Wiz cloud security platform

• Perform threat analysis and security incident investigations

• Develop securi...