Role: AWS Devsecops engineer
Location: remote
Contract
Experience : 10+ Years
The role
- Implement and manage AWS security tools such as IAM, Security Hub, GuardDuty, KMS, and AWS WAF to secure cloud infrastructure and applications.
- Automate cloud infrastructure and security using Infrastructure as Code (IaC) tools like Terraform, AWS CloudFormation, or AWS CDK.
- Configure and manage AWS monitoring services like CloudWatch, CloudTrail, and Config Rules to ensure robust security monitoring and compliance.
- Ensure compliance with industry security frameworks such as NIST, CIS Benchmarks, and the AWS Well-Architected Framework.
- Integrate security controls into CI/CD pipelines, ensuring automated security testing and vulnerability management throughout the development lifecycle.
- Leverage configuration management tools like Ansible or Chef for automated security configuration and patch management.
- Develop and maintain security automation scripts using PowerShell, Python, or Bash to handle routine security tasks such as vulnerability remediation and incident response.
- Collaborate with development and operations teams to embed security throughout the software development lifecycle.
- Conduct security assessments and audits, identifying risks and implementing effective remediation plans.
- Stay up to date on the latest security trends, AWS innovations, and best practices to ensure the organization remains secure against evolving threats.
- Investigate and respond to security incidents, performing root cause analysis and implementing corrective actions.
- Provide guidance on security best practices to internal teams, ensuring security is prioritized throughout all stages of development and operations.
What you’ll bring
• Expertise in AWS security tools such as IAM, Security Hub, GuardDuty, KMS, and AWS WAF.
• Proficiency in using IaC tools like Terraform, AWS CloudFormation, or AWS CDK.
• Experience configuring AWS monitoring tools such as CloudWatch, CloudTrail, and Config Rules.
• Knowledge of compliance frameworks like NIST, CIS Benchmarks, and AWS Well-Architected Framework.
• Minimum of 3+ year experience in a security engineering role, with experience in network security, application security, and security frameworks.
• Bachelor's degree in related area and / or equivalent experience / training.
• Expertise in integrating security tools into CI/CD pipelines.
• Experience with configuration management tools such as Ansible or Chef.
• Understanding of security standards and frameworks such as CIS, NIST, or ISO 27001.
• Proficiency in scripting languages such as PowerShell, Python, or Bash for automation and security tasks.
• Strong problem-solving and analytical skills.
• Excellent communication and teamwork abilities.
• Detail-oriented with a focus on delivering high-quality outcomes.
• Excellent computer proficiency including JIRA
