The AWS SecOps Engineer II will be working with the engineering team and focusing on AWS infrastructure and automation. A key part of the role is championing and leading efforts to plan and carry out security measures to monitor and protect networks and systems, Cloud Services/Accounts, and sensitive data from infiltration. The Engineer will work closely with the DevOps and Dev Teams as well as the VP of Operations and Security to build, manage and automate our SecOps policy and infrastructure.
Duties & Responsibilities:
- Design cloud infrastructure that is secure, scalable, and highly available on AWS
- Work collaboratively with software engineering and DevOps to define infrastructure and deployment requirements
- Provision, configure, and maintain AWS cloud infrastructure defined as code
- Ensure configuration and compliance with configuration management tools
- Evaluate and provide evidence based recommendations for new cybersecurity applications or tools, rules/signatures, access controls, and configurations of cybersecurity platforms
- Troubleshoot problems across a wide array of services and functional areas
- Contribute to maintenance and improvement of operational tools for deployment, monitoring, and analysis of AWS infrastructure and systems
- Analysis of threat intelligence in AWS, identification of threat vectors and remediation of out of compliance/incidents
- Continual maintenance of security policy (including new policies) to ensure compliance to regulatory security standards
Qualifications:
- At least 5 years of SecOps experience related to assets deployed to AWS
- Strong understanding of how to secure AWS environments and meet compliance requirements
- Experience with AWS Control Tower and understanding of Cloud Governance
- Expertise with AWS GuardDuty and Security Hub for continuous monitoring of systems, accounts and user behavior
- Experience or strong knowledge of PKI and trust relationships
- Solid foundation of networking and Linux administration
- Ability to learn/use a wide variety of open source technologies and tools
- Strong bias for action and ownership
Bonus
- Experience with Azure analogs for above mentioned AWS services
- Previous exposure to healthcare domain and security needs
- Hands-on experience deploying and managing infrastructure with Terraform and/or Ansible
- Previous startup experience would be a huge plus