As a Senior AWS Security Architect, you will be responsible for designing and implementing secure, scalable, and resilient AWS cloud infrastructures for our organization. You will work closely with engineering, operations, and DevOps teams to ensure the highest level of security throughout our AWS environments. Your expertise will drive best practices for cloud security, risk management, incident response, and security compliance in a complex and dynamic environment.
Key responsibilities -
Design, build, and maintain secure AWS cloud architectures, incorporating best practices for identity and access management, data encryption, network security, and secure software development lifecycle.
Lead the development and execution of security strategies to protect AWS environments. Provide thought leadership and guidance to technical teams on security-related matters.
Perform cloud security risk assessments and vulnerability assessments. Propose mitigation strategies and work closely with stakeholders to ensure the security of applications, data, and infrastructure.
Leverage AWS security tools (e.g., AWS Shield, AWS WAF, AWS GuardDuty, AWS Security Hub, AWS IAM) to enforce security policies and detect potential security incidents.
Design and implement incident response plans specific to AWS environments. Act as a lead in security incidents, conduct root cause analysis, and guide teams on post-incident remediation and recovery.
Ensure compliance with industry regulations and standards such as NIST, HIPPA, IRS and SSA in AWS cloud environments. Drive audit readiness and support security certifications.
Collaborate with DevOps teams to incorporate security into CI/CD pipelines, automate security testing, and ensure secure coding practices are followed throughout the software development lifecycle.
Provide mentorship and training to security engineers, developers, and other technical staff on AWS security best practices. Promote a security-first culture within the organization.
Stay up to date with emerging threats, vulnerabilities, and new AWS security features. Continuously improving security processes, tools, and practices to meet evolving security challenges.
Required / Desired Skills
Bachelor's or master's degree in computer science, Information Security, Engineering, or related field.
15+ years of experience in IT security, with at least 10 years of hands-on experience securing AWS cloud infrastructures.
Proven track record in designing and implementing secure AWS cloud architectures.
Expertise in security best practices for AWS, including encryption, access control, networking, monitoring, and auditing.
AWS Certified Security Specialty (Required)
CISSP, CISM, or other recognized security certifications (Required)
Expertise in AWS architecture, security services, and compliance tools.
Strong knowledge of network security, cloud infrastructure, IAM (Identity and Access Management), and encryption methodologies.
Hands-on experience with infrastructure as code (e.g., Terraform, AWS CloudFormation).
Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation and security tools.
Experience in threat hunting, penetration testing, or security vulnerability assessments in AWS environments.
Knowledge of containerization and serverless architectures in AWS (e.g., Docker, Kubernetes, AWS Lambda).
| Skill | Required / Desired | Amount | of Experience |
| Bachelor's or master's degree in computer science, Information Security, Engineering, or related field. | Required | | |
| Experience in IT security, with at least 10 years of hands-on experience securing AWS cloud infrastructures. | Required | 15 | Years |
| Proven track record in designing and implementing secure AWS cloud architectures. | Highly desired | | |
| Expertise in security best practices for AWS, including encryption, access control, networking, monitoring, and auditing. | Highly desired | | |
| AWS Certified Security. | Required | | |
| CISSP, CISM, or other recognized security certifications. | Required | | |
| Expertise in AWS architecture, security services, and compliance tools. | Highly desired | | |
| Strong knowledge of network security, cloud infrastructure, IAM (Identity and Access Management), and encryption methodologies. | Highly desired | | |
| Hands-on experience with infrastructure as code (e.g., Terraform, AWS CloudFormation). | Highly desired | | |
| Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation and security tools. | Highly desired | | |
| Experience in threat hunting, penetration testing, or security vulnerability assessments in AWS environments. | Highly desired | | |
| Knowledge of containerization and serverless architectures in AWS (e.g., Docker, Kubernetes, AWS Lambda). | Highly desired | | |