Description

• Define and execute public cloud-centric security controls 
• Design secure patterns for computing, storage, networking, operational and security domains 
• Serve as a practical, solutions-focused thought leader and consensus builder, interacting with technical and non-technical audiences both within and outside the company  
• Deploy, consult and manage security controls leveraging solutions included but not limited to AWS multi-accounts structure, Organizational Units, Service Control Policies (SCP), IAM policies, Virtual Private Cloud (VPC), AWS Control Tower Guardrails and best practices 
• Partner with application teams to support the design and implementation of infrastructure-as-code stacks that meet the needs of a secure infrastructure 
• Advise on all aspects of secure cloud infrastructure offerings and solution design 
• Provide hands-on technical coaching and mentoring to accelerate cloud security learnings across the organization 
• Provide accurate and current information on AWS services and serve as a consultant to the Information Security organization 
• Collaborate with senior IT or business employees to ensure security compliance 
• Support the planning, coordination and implementation of the organization’s information security requirements 
• Evaluate security requirements and conduct feasibility studies to examine software requirements, administration costs, information flow and other metrics 

• Bachelor’s Degree in Information Systems, Computer Science or related field OR equivalent work experience 
• 3+ years of experience designing and implementing secure solutions and securing public cloud workloads 
• Experience identifying and handling security incidents 
• Ability to monitor and interpret logs, note suspicious or unusual activity and make recommendations for resolution  
• Demonstrated knowledge and experience with the following tools and process: 
• Auditing and SIEMs 
• Infrastructure-as-code (IaC) and deployment 
• Automation methodologies, processes improvement and development of CI/CD pipelines 
• At least 2 scripting languages, such as Python, PowerShell, AWS/Azure CLI, Ansible or Bash 
• Deployment and operation of computer instances (EC2), AWS Storage Services (EBS/S3/Glacier), AWS multi-accounts environment, IAM Policies, AWS Tower, AWS Config and Service Control policies (SCP) 
• Configuration management and pipeline automation with AWS DevOps, Jenkins, Git or similar offering 
• Container technologies, such as Docker, Kubernetes, AWS EKS and ECS 
• Common enterprise-grade security solutions 
• Other cloud security tools 
• Demonstrated knowledge of common security issues and best practices with the ability to train employees or customers and assist in the resolution of computer security problems 
• Ability to establish and maintain collaborative relationships with team members, other technical staff, service providers, partners and business units
• Strong communication skills with the ability to communicate findings to business units and follow up on resolution 
• A desire to continually learn, enhance skills and execute superior projects that improve security, reduce down time and maintain integrity
• Experience creating and maintaining accurate technical documents and records
• Possess the following certifications:  
• Certified Cloud Security Professional (CSSP) 
• Certificate of Cloud Security Knowledge (CCSK) 
• GIAC Cloud Security Automation (GCSA) 
• AWS Solutions Architect Associate 
• AWS Certified Security – Specialty 
• CompTIA Cloud+ 

• Medical: Fully paid healthcare, dental and vision premiums for employees and eligible dependents 
• Work-Life Balance: Competitive PTO, paid leave policies and eligibility for work from home opportunities after an introductory period 
• Financial: Generous company 401(k) contributions and employee stock ownership after one year 
• Wellness: Onsite gym, jogging trail, and discounted membership to nearby fitness center