AWS Security Engineer (CrowdStrike/ CyberArk Experience)

Position Overview: 

We are seeking a highly skilled AWS Security Engineer with extensive experience in cloud security, particularly within the AWS ecosystem. The ideal candidate will have at least 5 years of AWS security experience and be proficient with security tools such as CrowdStrike or CyberArk. This role will be responsible for designing, implementing, and managing security measures that protect our AWS environment and ensure the integrity, confidentiality, and availability of our data and systems. This position offers two days remote per week after 90 days.

• AWS Security Architecture: Design and implement robust security architectures and controls within AWS environments, ensuring compliance with best practices and organizational policies.
• Security Monitoring & Incident Response: Deploy and manage security monitoring tools like CrowdStrike and CyberArk to detect, investigate, and respond to security incidents and vulnerabilities in real-time.
• Identity & Access Management (IAM): Develop and manage AWS IAM policies, roles, and access controls to enforce least privilege and secure access to AWS resources.
• Threat Detection & Vulnerability Management: Implement and maintain advanced threat detection and vulnerability management strategies within the AWS environment, utilizing tools such as CrowdStrike and CyberArk.
• Security Automation & Orchestration: Automate security processes and incident response workflows using AWS services (e.g., Lambda, CloudFormation) to enhance efficiency and reduce manual intervention.
• Compliance & Risk Management: Ensure AWS environments comply with relevant security standards and regulations (e.g., ISO 27001, NIST, GDPR) and manage risk assessments and audits.
• Collaboration: Work closely with DevOps, engineering, and IT teams to integrate security best practices into the software development lifecycle (SDLC) and operational workflows.
• Security Training & Awareness: Provide training and guidance to teams on AWS security best practices and emerging threats.