As a Cloud Security Engineer, you will:
 

• Manage best practice assessments and implementations within AWS
• Review existing AWS configurations and provide account and organization level hardening recommendations 
• Participate in vulnerability management 
• Improve network security within AWS: network ACLs, security groups, WAF, VPC flow monitoring, etc. 
• Security Change and Compliance Automation: Implement an IaC approach where possible. 
• Provide documentation of existing environments (topologies).

Requirements

• 6+ years of Cloud Security Engineer experience supporting production cloud environments in AWS 
• 6+ years of IT systems/application engineering/administration experience 
• Strong understanding of the following:
  • AWS and AWS constructs such as TGW, GWLB, etc. 
  • OSI model: all layers 
  • Layer-7 protection techniques relevant to network security 
• Ability to use infrastructure as code tools (Terraform preferred)
• Ability to use programming languages (python, golang preferred)

Nice to have:

• Experience using CI/CD to deploy infrastructure as code, along with the utilization of tools similar to Open Policy Agent to enforce policy before deployment