Job Summary
The AWS Cloud Security Engineer plays a critical role in securing clients cloud environments by designing implementing and governing cloud-native security controls across AWS services This position differs from a general Cloud Engineer by focusing primarily on risk mitigation threat detection security automation and compliance assurance in regulated environments such life sciences
Responsibilities
Design secure AWS cloud architectures that integrate native security services to protect applications data and identities while supporting business agility and scalability
Implement AWS security baselines and guardrails that align with enterprise risk policies and industry standards to reduce exposure to cyber threats
Configure and manage AWS identity and access management controls to enforce least privilege access and improve governance across cloud accounts
Monitor AWS environments using native security tools to detect suspicious activities investigate anomalies and coordinate timely remediation actions
Apply cloud security best practices to networking encryption key management and logging to strengthen overall security posture across workloads
Conduct security assessments of new and existing AWS deployments to identify misconfigurations vulnerabilities and compliance gaps and recommend corrective actions
Collaborate with application and infrastructure teams to embed security requirements into solution designs ensuring that security is considered from inception through deployment
Develop and maintain security documentation including standards runbooks and diagrams that clearly describe AWS security controls and operational procedures
Support incident response activities for AWS workloads by performing impact analysis containment and recovery tasks while contributing to root cause reviews
Automate repetitive security tasks using scripts and native tools to improve consistency reduce human error and increase efficiency in cloud security operations
Coordinate periodic reviews of AWS account configurations and access permissions to verify ongoing compliance with internal policies and external regulations
Provide clear guidance and mentoring to peers and project teams on AWS cloud native security patterns helping them build secure and resilient solutions
Partner with governance risk and compliance teams to align AWS security controls with regulatory requirements and internal audit expectations
Track emerging AWS security features and evolving threat trends to propose continuous improvements that keep the organization resilient and adaptive
Qualifications
possess a bachelors degree or equivalent practical experience in information security computer science or a closely related discipline with a strong focus on security fundamentals
demonstrate hands on experience managing security in AWS environments including use of native services for identity monitoring encryption and threat detection
bring proven expertise in implementing AWS cloud native security controls for workloads networks and data stores across multi account structures
show practical knowledge of cloud networking concepts such as segmentation routing and secure connectivity to design and maintain protected architectures
apply experience with infrastructure as code and automation tools to consistently deploy and validate security configurations in AWS
display a strong understanding of vulnerability management practices and remediation workflows for cloud based systems and services
exhibit familiarity with common security frameworks and regulatory requirements relevant to cloud operations and enterprise environments
communicate effectively with technical and nontechnical stakeholders to explain risks security decisions and remediation plans in a clear and concise manner
commit to continuous learning by staying current with cloud security advancements threat landscapes and AWS feature updates to enhance organizational security
