AWS Cloud Security Architect

Position Overview:
This role is focused on hands-on implementation of security solutions within AWS environments. It is ideal for individuals with strong practical experience in cloud security, networking, and application security.Core Responsibilities:AWS Security Services Implementation:Deploy and manage core AWS security services like IAM, KMS, CloudHSM, AWS Organizations, Web Application Firewall (WAF), AWS Network Firewall, and Gateway Load Balancer (GWLB) based Security Appliances.Configure and optimize security features to meet organizational security requirements.Network Security:Design and implement secure VPC architectures, including subnets, routing, and firewall configurations.Hands-on experience with firewalls, network segmentation, and security group management in AWS.Identity & Access Management (IAM):Strong expertise in IAM roles, policies, and AWS Service Control Policies (SCPs).Implement security best practices for role-based access control (RBAC) and least privilege principles.Application Security:Integrate with identity providers such as Active Directory and Okta.Secure application architectures, focusing on authentication, authorization, and data protection.Security Monitoring & Incident Response:Utilize AWS GuardDuty, CloudTrail, and other monitoring tools for threat detection and incident response.Implement security logging and audit trails to maintain compliance with internal policies.Key Requirements:Hands-on AWS Security Expertise: Proven experience in implementing and managing AWS security services.Network Security Knowledge: Strong understanding of subnetting, routing, firewalls, and secure network design in the cloud.Active Directory Experience: Essential for integrating with enterprise identity systems.IAM & SCP Expertise: Deep knowledge of AWS IAM, Service Control Policies, and security governance.Not an InfoSec or Audit Role: This is a technical, hands-on position focusing on practical security implementation, not compliance audits or theoretical security reviews.Preferred Skills:Cloud Security Certifications: AWS Certified Security Specialty, AWS Certified Solutions Architect, or similar.Application Security Knowledge: Experience with secure application frameworks and identity federation.Automation & Scripting: Familiarity with infrastructure as code (IaC) tools like Terraform or CloudFormation.