Cloud Security Engineer

About The Position

Requirements

• Experience with cloud-native architectures and AWS services, including VPCs, Security Groups, IAM, Docker, KMS, S3 and RDS encryption, HTTPS/SSL certificates, API Gateway, Lambda, CloudFormation, CloudFront, Cloudflare, egress proxies, data lake security, application security, domain segmentation, authentication, data protection, and process automation.
• Experience implementing AWS Infrastructure-as-Code (IaC) and working across Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS) environments.
• Hands-on experience with security and monitoring tools including Splunk, Nessus, Tenable Security Center, and firewall platforms such as Palo Alto, Imperva, and Fortinet.
• Bachelor's degree in Cybersecurity, Information Assurance, Information Systems, Information Technology, or related field.
• Five (5) years of experience supporting cybersecurity compliance, ISSO functions, information assurance, governance/risk/compliance (GRC), or related security activities.
• Public Trust Clearance.

Nice To Haves

• Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations.
• Candidate must communicate effectively with team members, team lead, management, and government customer.
• Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision.

Responsibilities

• Design, implement, and secure cloud-native AWS environments using technologies and services including VPC, IAM, Security Groups, Docker, Lambda, API Gateway, CloudFormation, CloudFront, CloudFlare, encryption technologies, and data protection controls.
• Use AWS Infrastructure-as-Code (IaC), IaaS, PaaS, and SaaS solutions to support CI/CD pipelines in Linux environments, while applying expertise in application security, authentication, domain segmentation, risk mitigation, compliance, and regulatory requirements.
• Utilize security monitoring and assessment tools such as Splunk, Nessus, Tenable Security Center, and enterprise firewall platforms including Palo Alto, Imperva, and Fortinet.
• Research, design, develop, test, and deploy AWS IaaS and PaaS solutions to support continuous integration and continuous delivery (CI/CD) in Linux environments.
• Develop and execute complex AWS security strategies and implementation plans.
• Support compliance and regulatory requirements within AWS environments.
• Operate in risk-based environments, including risk assessment, mitigation planning, and security implementation in AWS.
• Perform other duties as assigned.