Cybersecurity - Architect

Job Description

We are looking for a highly experienced and motivated Senior Cloud Security Engineer with deep expertise in Amazon Web Services AWS security This role is critical in assessing designing and implementing security best practices across our AWS environments The ideal candidate will evaluate our current cloud security posture identify gaps and execute remediation strategies aligned with industry standards and compliance requirements Key Responsibilities Assess the AWS security posture by reviewing cloud architecture configurations IAM policies networking and data protection mechanisms Design and implement AWS security best practices including least privilege encryption monitoring logging and compliance controls Collaborate with DevOps Cloud Engineering and Application teams to embed security in CI CD pipelines and infrastructure as code Conduct threat modeling risk assessments and vulnerability management for AWS hosted applications and services Lead efforts to harden AWS accounts and services such as EC2 S3 Lambda RDS VPC IAM Define and implement guardrails and automated policies using tools like AWS Config Security Hub Macie GuardDuty and Control Tower Respond to security incidents investigate root causes and implement corrective actions in AWS environments Document and maintain security standards runbooks and reference architectures Stay current with evolving threats AWS services and industry regulations such as NIST ISO 27001 CIS Benchmarks Required Qualifications Minimum five years of experience in cloud security with a focus on AWS Deep knowledge of AWS security architecture services and tools Hands on experience with IAM KMS CloudTrail Config WAF Shield and VPC security Familiarity with AWS Well Architected Framework and CIS AWS Foundations Benchmark Strong understanding of network security encryption logging and monitoring and incident response in cloud environments Experience with infrastructure as code such as Terraform or CloudFormation and integrating security controls Knowledge of regulatory and compliance frameworks such as SOC two HIPAA GDPR FedRAMP Strong scripting or programming skills such as Python or Bash for automating security tasks Preferred Qualifications AWS Security Specialty Certification or equivalent AWS certifications Experience working in multi account AWS organizations and governance setups Exposure to other cloud platforms such as Azure or GCP Background in DevSecOps or experience integrating security into CI CD processes