Security Engineer

About This Role

The Security Engineer will ensure the security and compliance of the AWS cloud infrastructure by verifying correct configurations, validating compliance with STIGs and CIS benchmarks, and monitoring adherence to NIST 800-53 controls. This role involves proactive identification of security gaps and collaboration with stakeholders for remediation.

Responsibilities

• Ensure AWS environment is securely and correctly configured according to best practices
• Validate compliance with STIGs and CIS benchmarks
• Monitor and assess environment to ensure continuous alignment with NIST 800-53 security controls
• Create and manage tickets to address and remediate identified security gaps
• Schedule and conduct meetings with stakeholders to discuss findings, configurations, and vulnerabilities
• Collaborate with DevOps, IT, and Compliance teams to support secure cloud operations
• Automate security processes using cloud-native tools and scripting
• Maintain documentation of security policies, procedures, and technical configurations
• Stay up to date with AWS security best practices, compliance standards, and emerging threats

Requirements

• Strong experience with AWS security services and cloud architecture
• Hands-on experience with AWS security tools (IAM, KMS, CloudTrail, GuardDuty, Security Hub, WAF)
• Understanding of secure cloud architecture and best practices for AWS environments
• Proficiency in VPC design, security groups, NACLs, VPNs, and firewalls within AWS
• Expertise in compliance frameworks (STIGs, CIS benchmarks, and NIST 800-53)
• Proficiency in scripting and automation (e.g., Python, CloudFormation, Terraform)
• Excellent problem-solving, communication, and stakeholder engagement skills

Nice to Have

• Experience with Wiz, Tenable or similar tools
• Hands-on experience with SIEM tools (running queries and creating alerts)

Skills

* Required skills

Certifications