IT Systems Engineer - Cloud Architecture and Security

About The Position

Requirements

• Strong knowledge of AWS network and security services: IAM, VPC, WAF, GuardDuty, Security Hub, Macie, KMS.
• Proficiency in IaC for secure deployments (Terraform, CDK, CloudFormation).
• Familiarity with SOC 2, PCI-DSS, NIST CSF, and cloud compliance best practices.
• Skills in secrets management.
• Understanding of SSO federation and identity providers (Okta, Auth0).
• Bachelor's degree in Cybersecurity, Information Technology or equivalent work experience.
• 3-5 years of infrastructure security/architecture experience in cloud-native environments.
• Understanding of NIST standards for Information Security strongly desired

Nice To Haves

• Experience with Azure and GCP a plus.
• Experience with implementing, monitoring and managing IoT device infrastructures is a strong plus.
• Certifications strongly preferred: AWS Certified Security - Specialty, AWS Solutions Architect Associate/Professional, CompTIA Security+.

Responsibilities

• Design secure, multi-account AWS organizations using AWS Organizations, Control Tower, and best practices in landing zone architecture. Experience with Azure and GCP a plus.
• Deploy and manage network security controls: Transit Gateway, VPC peering, WAF, Shield Advanced.
• Configure IAM federated identities, enforce least privilege, and manage service role boundaries.
• Implement comprehensive monitoring and logging using a multitude of tools, and SIEM integrations.
• Automate infrastructure builds using Terraform/CloudFormation with compliance tagging.
• Regularly run compliance scans, penetration testing, and vulnerability remediation.
• Support incident response initiatives by collecting/maintaining audit logs and root-cause evidence.
• Collaborate on company-wide Zero Trust, MFA enforcement, and endpoint hardening standards.

Benefits

• medical
• dental
• vision
• 401(k)
• supplemental insurance