***We are unable to work with 3rd-party or corp-to-corp candidates for this position***
***Must be authorized to work in the US***
Overview:
Our client will be hiring a Senior SecOps Engineer to architect, build, and manage the security posture and infrastructure that powers their SaaS platform. This is a high-ownership role ideal for a hands-on engineer with deep AWS security knowledge, strong automation skills, and a security-first mindset. You'll lead security initiatives, automate secure deployments, improve system observability, and guide teams toward robust, secure, and scalable solutions. You will also bring expertise in security automation, CI/CD pipeline security, secure networking, and incident response. This role is ideal for someone who thrives in a high-ownership environment and enjoys cross-functional collaboration to solve complex security and infrastructure challenges.
This role will report to the IT Security & Infrastructure Manager. This role has no direct reports.
100% REMOTE expectation, Eastern or Central Time zone required.
Responsibilities:
- Design and maintain a highly secure and scalable AWS-based infrastructure using security services like AWS WAF, IAM, and Inspector alongside services such as EC2, ECS, S3, and VPC.
- Automate security provisioning, secure CI/CD pipelines, and system observability.
- Proactively manage and improve security Key Lifecycle Objectives (KLOs) such as vulnerability scanning and certificate management.
- Lead the development and implementation of security best practices, including threat modeling and incident response.
- Own and deliver mid-sized security projects (e.g., IAM role refactoring, multi-region security rollout, new environment security hardening).
- Document security standards, decisions, and automation workflows in a clear, shareable format.
- Participate in incident response, root cause analysis, and on-call rotation.
- Mentor teammates and support cross-functional security needs.
Qualifications:
- 5+ years in SecOps, DevOps, and/or security engineering roles with heavy AWS usage.
- Deep experience with AWS security services: IAM, WAF, Config, Inspector, Security Hub, and KMS, as well as general services like EC2, ECS/Fargate, DynamoDB, and VPC.
- Strong Infrastructure as Code skills, with a focus on security policies and controls.
- Expertise in CI/CD pipeline security, including static and dynamic analysis tools.
- Strong scripting (Bash, Python) and automation fluency.
BONUS EXPERIENCE (it'll be great if you had)
- Proficient in security monitoring and observability best practices (alerting, metrics, distributed tracing).
- Solid understanding of cloud networking, IAM policies, encryption (KMS), and secrets management.
- Familiar with incident response workflows, root cause analysis, and operational runbooks.
- Experience with log analysis and observability platforms (e.g., Datadog, SumoLogic, CloudWatch).
- Serverless security using Lambda, SQS, and SNS.
- Experience with enterprise WiFi authentication and captive portal management.
- SQL Server Always On Availability Group configuration and management.
- Experience with compliance efforts (SOC 2, PCI) via logging, identity boundaries, and change management.
- AWS Organizations and multi-account security governance.
- Hands-on experience maintaining SQL-based data stores, including monitoring health, ensuring compliance, managing performance and stability, and supporting backup/recovery and lifecycle policies.
- Certified Cloud Security Professional (CCSP)
- AWS Certified Security – Specialty
- AWS Certified DevOps Engineer - Professional
- AWS Certified Solutions Architect - Associate or Professional
