Cybersecurity - Architect

We are looking for a highly experienced and motivated Senior Cloud Security Engineer with deep expertise in Amazon Web Services AWS security This role is critical in assessing designing and implementing security best practices across our AWS environments The ideal candidate will evaluate our current cloud security posture identify gaps and execute remediation strategies aligned with industry standards and compliance requirementsKey ResponsibilitiesAssess the AWS security posture by reviewing cloud architecture configurations IAM policies networking and data protection mechanismsDesign and implement AWS security best practices including least privilege encryption monitoring logging and compliance controlsCollaborate with DevOps Cloud Engineering and Application teams to embed security in CI CD pipelines and infrastructure as codeConduct threat modeling risk assessments and vulnerability management for AWS hosted applications and servicesLead efforts to harden AWS accounts and services such as EC2 S3 Lambda RDS VPC IAMDefine and implement guardrails and automated policies using tools like AWS Config Security Hub Macie GuardDuty and Control TowerRespond to security incidents investigate root causes and implement corrective actions in AWS environmentsDocument and maintain security standards runbooks and reference architecturesStay current with evolving threats AWS services and industry regulations such as NIST ISO 27001 CIS Benchmarks

Required Qualifications

Minimum five years of experience in cloud security with a focus on AWSDeep knowledge of AWS security architecture services and toolsHands on experience with IAM KMS CloudTrail Config WAF Shield and VPC securityFamiliarity with AWS Well Architected Framework and CIS AWS Foundations BenchmarkStrong understanding of network security encryption logging and monitoring and incident response in cloud environmentsExperience with infrastructure as code such as Terraform or CloudFormation and integrating security controlsKnowledge of regulatory and compliance frameworks such as SOC two HIPAA GDPR FedRAMPStrong scripting or programming skills such as Python or Bash for automating security tasks

Preferred Qualifications

AWS Security Specialty Certification or equivalent AWS certificationsExperience working in multi account AWS organizations and governance setupsExposure to other cloud platforms such as Azure or GCPBackground in DevSecOps or experience integrating security into CI CD processes