Cloud Security Engineer (AWS) - 100% Remote (EST hours)
Optomi, in partnership with a Fortune 500 enterprise client is looking to add a Cloud Security Engineer to their team! The Cloud Security Engineer will help to drive Cloud security practices within a high-growth division. The Cloud Security Engineer will assist in driving the strategy and execution of tools and applications in a full cloud (AWS) environment. The right candidate will come with solid technical acumen to oversee and expand the Cloud security posture.
This position starts out as a 12 month, full time (40 hours per week) contract and will look to extend or convert from there. Medical, dental and 401K options are available during the contract duration.
Responsibilities:
- Work on the Cloud Security Insights team to help with automation and security within the environment
- Work closely with DevOps to ensure the Cloud is built securely using IaC and manage cloud security posture management
- Support secure lifecycle process activities including threat modeling, risk assessment, analysis of findings from penetration tests, and tools (e.g., SAST, SCA, Container vulnerability scans)
- Identify, design, and track risk-remediating security requirements by actively managing open security risks. Identify gaps in the environment and how to best integrate current tools/applications int the cloud
- Participate in planning, sprint planning, & daily standups with development teams to champion security in development backlog
- Conduct project status and process presentations for leadership and external customers. Interfaces with vendors and suppliers to ensure product and project compliance. Communicates any non-compliance and the results of any internal project audits to pertinent parties.
- Balance the product requirements and product security to ensure a stable product
- Be a coach to Security Champions to grow their cloud security skills
Required:
- AWS Cloud Engineering experience
- Cloud Security working knowledge
- Cybersecurity working knowledge
- Working knowledge of OWASP
- Understands cloud-based platform architecture and how it differs from on-prem solutions
- AWS Security platform/components
- Secure SLDC experience by means of CI/CD pipelines
- Agile methodology experience
- Python experience
- High attention to detail, especially in documenting work
- Self-motivated and dedicated to follow-through
Nice to have:
- AWS technology experience, to include Security Lake, Identity Center, Security Hub, Inspector
- Experience analyzing security logging and vulnerability incidents
- Applied knowledge in automation and orchestration
- Security compliance experience
- ServiceNow integration experience
- CMDB integration experience
