Amazon Web Services (AWS), Applications Security, Automation, Cloud Applications, Cloud Computing, Computer Security, Continuous Deployment/Delivery, Continuous Integration, DevOps, GitHub, Python Programming/Scripting Language, Reporting Dashboards, Risk, Scalable System Development, Scripting (Scripting Languages), Security Infrastructure, Software Engineering, Splunk, Tableau, Unix Shell Programming, Windows PowerShell
Cloud Engineer hybrid - malvern pa
Responsibilities We are seeking a cloud engineer with 5+ years of experience designing and implementing scalable solutions to identify ownership of and mitigate various security vulnerabilities in AWS resources used in cloud platforms, applications, and infrastructure.
Details:
Key Responsibilities:
- Identify ownership of AWS resources on a large scale.
- Leverage various enterprise pipeline and monitoring/observability, tools and AWS Services (e.g., CloudTrail, Config, tagging) to map untagged AWS resources in various AWS accounts to application owner / owning team.
- Assist with any existing ownership attribution models across AWS accounts and environments.
- Develop scalable solutions to detect and remediate various security vulnerabilities for AWS applications and platforms.
- Utilize various enterprise pipeline, monitoring/observability, and security scanning tools and dashboards to identify security vulnerabilities for AWS resources (e.g., cloud misconfigurations in CloudFormation and CVEs in hosted code).
- Develop scalable solutions and strategies to mitigate security vulnerabilities for multiple AWS resources across many AWS accounts and AWS regions using existing IaC pipeline and/or other existing automation.
- Partner with Governance, Risk, and Compliance (GRC), security, and platform teams.
- Support security vulnerability Service Level Objective (SLO) requirements via scalable mitigation strategies mentioned above.
Qualifications Qualifications:
- 5+ years of experience in DevOps and cloud engineering
- Proficient in AWS security and networking fundamentals and AWS services (e.g., IAM, KMS, CloudTrail, CloudWatch, ECS, Kubernetes, Lambda, EC2, VPC, S3, DynamoDB, SNS, SQS, etc.)
Robust knowledge of:
- Infrastructure as Code (IaC) (e.g., CloudFormation, Terraform)
- CI/CD pipeline tools (e.g., GitHub)
- Scripting (e.g., Python, Shell, PowerShell)
- Monitoring/observability tools (e.g., Splunk)
- Security cloud scanning tools and dashboards (e.g., Wiz, Tableau)
E
Expert In Recruitment Solutions