Technical Lead

AWS Security Architecture & Strategy:
Design and implement comprehensive security architectures for Redaptive's AWS cloud environmentsDevelop cloud security roadmaps aligned with business objectives and compliance requirementsEstablish security standards, policies, and procedures for AWS deploymentsEvaluate and recommend security enhancements to strengthen the cloud security postureLead security aspects of cloud migration initiatives and new AWS service adoptionsImplement zero-trust security principles in cloud architecture designsProvide expert guidance on AWS security best practices to stakeholders across the organizationEstablish metrics to measure the effectiveness of cloud security controlsSecurity Automation & CI/CD Integration:Develop and maintain security as code implementations for AWS environmentsIntegrate security controls and checks into CI/CD pipelinesAutomate security scanning, compliance verification, and remediation processesImplement infrastructure as code (IaC) security practices for AWS CloudFormation and TerraformCreate automated security testing frameworks for cloud resourcesDevelop custom security rules and policies for automated enforcementCollaborate with DevOps teams to ensure security requirements are met throughout the development lifecycleDesign and implement automated incident response playbooks for cloud security eventsCloud Security Monitoring & Operations:Configure and manage cloud security monitoring solutions including AWS Security Hub, GuardDuty, and CloudTrailImplement and tune cloud-native SIEM solutions for comprehensive security visibilityDevelop and maintain cloud security dashboards and reporting mechanismsPerform advanced cloud security investigations and threat huntingRespond to and remediate cloud security incidentsConduct cloud security posture assessments and vulnerability managementImplement and manage cloud security logging and audit mechanismsDevelop and maintain cloud security incident response proceduresIdentity & Access Management:Design and implement AWS IAM policies, roles, and permission boundaries following least privilege principlesDevelop automated solutions for identity lifecycle management in cloud environmentsImplement and manage privileged access management for AWS resourcesConfigure and maintain AWS Single Sign-On and federation with corporate identity providersDesign and implement secure service-to-service authentication mechanismsConduct regular access reviews and implement automated compliance checksDevelop and maintain IAM security frameworks and governance processesImplement automated detection and remediation of IAM policy violationsCompliance & Risk Management:Ensure AWS environments meet relevant regulatory requirements and industry standards (e.g., SOC 2, ISO 27001, NIST)Develop and implement cloud security compliance frameworks and controlsPerform cloud security risk assessments and develop risk treatment plans

Experience with multi-cloud security strategies and implementations
Knowledge of regulatory compliance requirements relevant to cloud environmentsExperience with container security (Docker, Kubernetes, ECS, EKS)Background in implementing Zero Trust architecture in AWS environmentsExperience with AWS automated incident response and remediationKnowledge of cloud-native security tools and platformsExperience with Hashicorp Vault or similar secrets management solutionsBackground in implementing security for data lakes and analytics platformsExperience with cloud workload protection platforms (CWPP)Knowledge of serverless security best practicesExperience with cloud security in the energy efficiency or sustainability industriesBackground in threat modeling for cloud architecturesExperience working with global teams and offshore development models

Bachelor's degree in Cybersecurity, Computer Science, or related field; Master's degree preferred
Minimum of 7+ years of experience in cybersecurity, with at least 5 years focused on cloud securityAdvanced expertise with AWS security services including GuardDuty, Security Hub, IAM, KMS, and CloudTrailStrong understanding of cloud security frameworks (AWS Well-Architected Framework, NIST CSF, CSA CCM)Hands-on experience implementing security controls in CI/CD pipelinesExpert knowledge of infrastructure as code (IaC) security for AWS CloudFormation and/or TerraformExperience with cloud security posture management (CSPM) tools and processesStrong understanding of identity and access management principles in cloud environmentsExperience with automated security testing and continuous security validationProficiency in scripting and programming (Python, Bash, etc.) for security automationExcellent understanding of network security, containerization security, and serverless securityIn-depth knowledge of DevSecOps principles and practicesExcellent written and verbal communication skillsRelevant security certifications (AWS Certified Security - Specialty, CCSP, CISSP, or equivalent)