Overview:
We are seeking a 15+ years’ experience and highly skilled AWS DevSecOps Architect to join our innovative team. The ideal candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure solutions on Amazon Web Services (AWS) while integrating security into the DevOps pipeline. This role requires deep expertise in DevSecOps practices, AWS security services, and automation tools to ensure the confidentiality, integrity, and availability of applications and data in the cloud.
Key Responsibilities:
· Design, architect, and deploy secure, scalable, and resilient AWS infrastructure solutions that meet security best practices and compliance requirements.
· Lead the integration of security practices into CI/CD pipelines to ensure secure, automated, and efficient deployment of applications and infrastructure.
· Implement and manage security controls in the cloud environment, including identity and access management (IAM), encryption, and threat detection.
· Collaborate with development and operations teams to ensure secure application development and deployment processes.
· Implement infrastructure as code (IaC) using tools like Terraform, AWS CloudFormation, or Ansible, ensuring security practices are embedded into code deployments.
· Automate security testing and vulnerability scanning into the CI/CD pipeline, using tools like Snyk, Aqua, or Checkmarx.
· Ensure compliance with security frameworks, including ISO, SOC 2, NIST, and GDPR, and conduct regular security audits and assessments.
· Monitor and respond to security incidents and vulnerabilities within the cloud infrastructure and applications.
· Provide guidance on best practices for secure cloud-based application design and architecture.
· Mentor and train teams on cloud security practices, threat modeling, and security automation tools.
· Stay up to date on the latest security trends, tools, and techniques related to AWS and DevSecOps.
Required Skills & Qualifications:
· Proven experience as a DevOps Engineer, Cloud Architect, or Security Engineer, with at least 8 years of experience working with AWS services and security practices.
· Deep knowledge of AWS security services, such as IAM, AWS KMS, GuardDuty, AWS WAF, and Security Hub.
· Strong understanding of cloud security principles, including identity and access management, encryption, network security, and secure coding practices.
· Experience integrating security into the CI/CD pipeline and working with tools like Jenkins, GitLab CI, or AWS CodePipeline.
· Expertise in automation scripting languages such as Python, Shell, or Bash.
· Proficiency in infrastructure as code (IaC) tools like Terraform, AWS CloudFormation, or Ansible.
· Experience with containerization technologies such as Docker, Kubernetes, and AWS EKS, with a focus on securing containerized environments.
· Hands-on experience with security testing tools such as Aqua, Twistlock, Snyk, or Checkmarx.
· Strong understanding of security compliance standards, including GDPR, HIPAA, PCI-DSS, and SOC 2.
· Experience with logging, monitoring, and alerting tools like AWS CloudWatch, AWS GuardDuty, or ELK Stack.
· Excellent problem-solving skills, with the ability to identify and mitigate security vulnerabilities in real-time.
· Strong communication skills, both written and verbal, with the ability to communicate complex security concepts to non-technical stakeholders.
Preferred Qualifications:
· AWS Certified Solutions Architect - Professional, AWS Certified DevOps Engineer - Professional, or AWS Certified Security Specialty.
· Familiarity with DevSecOps best practices and tools such as DevSecOps pipeline integration, security automation, and vulnerability management.
· Experience with threat modeling and risk management frameworks.
· Familiarity with Agile methodologies and tools like Jira or Confluence.
