Cloud Security Engineer

TEKsystems - Honolulu, HI

posted 5 months ago

Full-time - Mid Level
Honolulu, HI
10,001+ employees
Professional, Scientific, and Technical Services

About the position

Aloha! One of Hawaii's largest healthcare insurers is embarking on their cloud journey and is seeking a skilled professional to enhance their security posture and protect their cloud-based assets. This role involves designing, implementing, and managing security measures while providing technical expertise in AWS services and best practices. The successful candidate will take a proactive approach to identify and mitigate security risks, ensuring the integrity and confidentiality of sensitive data in the cloud environment. The position will focus on several key areas, including AWS Security, where the individual will assist in the design and implementation of secure AWS architectures, ensuring compliance with security best practices and regulatory requirements. Responsibilities will include developing and enforcing security policies, managing AWS identity and access management (IAM) roles, and configuring security groups and network ACLs to protect the cloud infrastructure. In addition to AWS Security, the role encompasses Security Monitoring and Incident Response, where the candidate will implement and manage AWS security monitoring tools, develop incident response plans, and conduct regular security assessments. Data Protection and Compliance will also be a critical aspect, ensuring data encryption and compliance with standards such as GDPR and HIPAA. The individual will also be responsible for Infrastructure Security, implementing security controls for various AWS services, and utilizing AWS CloudFormation for secure infrastructure deployment. Automation and DevSecOps practices will be integrated into the role, requiring the development of automated security solutions and collaboration with DevOps teams to embed security practices in the development lifecycle. Finally, the candidate will conduct security training and awareness programs for technical staff, staying current with the latest AWS security trends and providing guidance on best practices. This position is ideal for someone with a strong background in cloud security, particularly within AWS, and a passion for enhancing security measures in a rapidly evolving environment.

Responsibilities

  • Assist in the design and implementation of secure AWS architectures, ensuring adherence to security best practices and compliance requirements.
  • Develop and enforce security policies, standards, and guidelines for AWS infrastructure.
  • Architect and manage AWS identity and access management (IAM) roles, policies, and permissions.
  • Implement and manage AWS security monitoring tools and services (e.g., AWS CloudTrail, AWS Config, Amazon GuardDuty, AWS Security Hub).
  • Develop and maintain incident response plans and procedures for cloud security incidents.
  • Conduct regular security assessments and vulnerability scans of the AWS environment.
  • Ensure data encryption at rest and in transit using AWS Key Management Service (KMS) and other encryption tools.
  • Implement and manage AWS security services for data protection, such as Amazon Macie and AWS Secrets Manager.
  • Ensure compliance with relevant security standards and regulatory requirements (e.g., GDPR, HIPAA, ISO 27001).
  • Configure and manage AWS security groups, network ACLs, and firewall rules to protect cloud infrastructure.
  • Implement and maintain security controls for AWS services, including EC2, S3, RDS, Lambda, and VPC.
  • Ensure secure configuration and management of AWS containers and serverless architectures.
  • Utilize AWS CloudFormation for secure infrastructure deployment and management.
  • Develop and implement automated security solutions and scripts using AWS Lambda, CloudFormation, and other AWS automation tools.
  • Integrate security into the CI/CD pipeline, ensuring secure code deployment and continuous monitoring.
  • Collaborate with DevOps and engineering teams to embed security practices in the development lifecycle.
  • Configure and analyze AWS CloudWatch Logs, AWS CloudTrail logs, and VPC Flow Logs for security monitoring and incident response.
  • Implement centralized logging solutions to aggregate and analyze logs from various AWS services and containers.
  • Utilize native AWS logging tools to monitor security events and system performance.
  • Conduct security training and awareness programs for technical staff.
  • Stay current with the latest AWS security trends, threats, and technologies.
  • Provide guidance and support to teams on AWS security best practices.

Requirements

  • Minimum of 3 years of experience in cloud security, with a strong focus on AWS.
  • Deep technical knowledge of AWS security services and best practices.
  • Experience with AWS identity and access management (IAM), VPC, security groups, and network ACLs.
  • Proficiency in scripting languages such as Python, PowerShell, or Bash for automation.
  • Strong understanding of compliance frameworks and regulatory requirements (e.g., GDPR, HIPAA, ISO 27001).
  • Experience with security incident response and forensics in a cloud environment.
  • Relevant certifications such as AWS Certified Security - Specialty, AWS Certified Solutions Architect, CISSP, or CISM are highly desirable.
  • Excellent analytical, problem-solving, and communication skills.

Nice-to-haves

  • Experience with multi-cloud environments (e.g., Azure, GCP).
  • Knowledge of container security and management (e.g., Docker, Kubernetes, AWS EKS).
  • Familiarity with security information and event management (SIEM) tools.
  • Experience with Terraform or other infrastructure-as-code (IaC) tools.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service