Senior AWS Security Engineer

Key responsibilities:

• Assist with the design and development of a multi-account, multi-region, highly available, and highly automated AWS environment to support full software development life cycle and production of mission-critical applications (Control Tower and Landing Zone Knowledge) 
• Understand and contribute to the creation of system support documents, and operational procedures, and build scripts/Cloud Formation templates (JSON and YAML)
• Complete ongoing performance tuning and system optimization to better meet business needs; reactively troubleshoot outages, perform root cause analysis, and execute continual service improvements
• Proactively mitigate business service disruptions with designed redundancy, backups, and highly available solutions; maintain a highly available production infrastructure; and provide application support for product customers
• Provide systems administration functions on AWS infrastructure to include support of products such as EC2 Compute, S3 Storage, Relational Database Service (RDS), AWS Networking & Content delivery (VPC, CloudFront, Security Groups, Route 53, ELB, ALB, etc.), CloudWatch, Cloud Formation, Auto Scaling, Cost and Usage Reports, AWS Security: IAM, SSO, Guard Duty, Trusted Advisor, Detective, Cloud Trail, etc.)

Skills, Experience and Requirements

 

Education and Experience:

• Bachelor's Degree or equivalent experience
• Overall 8-12 years of experience in IT
• 5+ years experience in Information Security
• 3+ years working with AWS Security, and fluency with the AWS APIs/command line tools
• Experience implementing /maintaining security for cloud-based systems /applications in AWS
• Experience writing SOPs, system requirements, and other technical documents
• Experience centrally monitoring systems for alerts and incident management functions

Skills and Qualifications:

• Knowledge of security technologies such as SIEM, Firewall/NGFW, EDR / DLP, UEBA, and hybrid/Cloud Security environments (Logz.io, Palo Alto Prisma)
• Will have considerable AWS and Linux skills, as well we DevOps skills around CI/CD and experience with tools such as GitLab, Ansible, Jenkins, and Cloud Formation. (git) 
• Working knowledge and experience with project and portfolio management tools, preferably Service Now, Microsoft Project, and/or Jira
• Excellent verbal and writing skills and the ability to communicate effectively with all levels
• (Incident response on Cloud, investigation on security issues)
• Scripting language experience (Python, Javascript, etc.), Strong working knowledge of automation tools such as (GitLab, Jenkins, and Chef). Working knowledge of RDS databases such as PostgreSQL, Oracle, and MySQL
• Should possess one or more of the following certifications – CISSP, SANS GCIH, Vendor Certifications (Palo Alto, McAfee, IBM, etc.), AWS Certification(s)