AWS Cloud Security Engineer – (Experience IAM and key management)
- Contract
Job Description
- experience in Information security, strong prior experience with implementation and operational support of end-to-end security services solutions
- Experience with industry leading practices on emergent cyber security risks and cloud security
- 5+ years of architectural, implementation. operational and integration experience with AWS cloud security and the ability to apply IAM / data security controls within cloud and containerized environments
- 5+ years of experience with implementing, integration, and operational experience with Thales Hardware Security Module (HSM), data encryption and key management solutions
- Architectural, conceptual and operational understanding of X.509-Public Key Infrastructure (PKI) based authentication schemes
- Integration and operational experience with cloud native secrets management solutions like Hashicorp Vault
- Conceptual and operational experience with cloud identities and authorization standards OAuth 2.0, OIDC and SAML
- Conceptual and operational experience with ForgeRock authentication and authorization models identity providers (IDP) and service providers (SP) in a consumer environment
- Integration and operational experience with Terra-form scripts (Preferred)
- DevSecOps experience including CI/CD security best practices
- Lead compliance and alignment efforts in all areas of organizational and regulatory compliance to policies, standards, strategy and governance
- Periodically conduct self-assessments of the cloud security infrastructure to identify opportunities for improvement and establish an service improvement plan with particular focus on resource optimization and operational efficiency and effectiveness;
- Good understanding of regulatory compliance requirements and their impact on data security / data residency
- Strong written and verbal communication skills • Preferred Certifications: CISSP, IAM Technology Certifications
Additional Information
All your information will be kept confidential according to EEO guidelines.