TRIS Generalist Engineer (AWS)

As a TRIS Generalist Engineer specializing in AWS security, your role will involve designing, implementing, and enforcing security policies and controls within the AWS environment. You will play a crucial part in ensuring the security of infrastructure as code and policy enforcement. Your primary responsibilities will include: - Designing, implementing, and managing security policies and controls within AWS using tools like Terraform Sentinel and OPA Gatekeeper. - Developing and maintaining automated security checks and guardrails for AWS infrastructure and applications. - Integrating security tools and practices into the CI/CD pipeline, leveraging Github for version control and collaboration. - Collaborating with development, operations, and compliance teams to ensure adherence to security best practices and regulatory requirements. - Conducting security assessments and audits of AWS environments to identify and remediate vulnerabilities. - Specializing in and contributing to IAM, Cloud Security, Data Security, or Network Security domains. - Staying up-to-date with the latest AWS security features, threats, and mitigation techniques. - Providing technical guidance and support to engineering teams on security-related matters. - Troubleshooting and resolving security incidents and issues. Qualifications required for this role include: - Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. - 6+ years of experience in a cloud security or generalist engineering role with a strong focus on AWS. - Proven hands-on experience with Terraform Sentinel for policy-as-code. - In-depth knowledge of AWS Security services and best practices. - Experience with OPA Gatekeeper for policy enforcement, particularly in Kubernetes environments. - Proficiency with Git and Github for version control and collaborative development. - Strong understanding of security principles, threats, and vulnerabilities in cloud environments. - Ability to specialize and demonstrate expertise in at least one of the following domains: IAM, Cloud, Data Security, or Network Security. - Excellent problem-solving, analytical, and communication skills. - Ability to work effectively in a hybrid work environment. Preferred qualifications for this role include: - AWS Certified Security - Specialty certification. - Experience with other security tools and technologies. - Familiarity with compliance frameworks such as SOC 2, ISO 27001, NIST. - Scripting skills (e.g., Python, Bash) for automation. - Experience with other cloud providers like Azure, GCP is a plus.,