AWS DevSecOps Engineer Cloud Bridge Recruitment Services · ·

We are seeking an experienced AWS DevSecOps Engineer to join our engineering team. The ideal candidate will be responsible for integrating security into the DevOps pipeline, automating security processes, and ensuring compliance while leveraging AWS cloud technologies. This role requires a solid understanding of AWS services, CI/CD pipelines, and security best practices in a cloud-first environment.

Key Responsibilities:

1. Integrate security controls and monitoring within AWS, automating security at every stage of the DevOps lifecycle.
2. Design secure, automated infrastructure using Terraform, CloudFormation, and enforce AWS security best practices (IAM, access control, encryption).
3. Work with DevOps teams to integrate security testing tools (e.g., OWASP ZAP, Snyk) into CI/CD pipelines (Jenkins, GitLab).
4. Ensure compliance with regulations (GDPR, PCI-DSS, HIPAA) through logging, auditing, and monitoring.
5. Assist in security incidents, conduct root cause analysis, and implement preventative security measures.
6. Set up monitoring and alerts for security events, generating regular security posture reports.

Required Skills & Experience:

1. Hands-on experience securing AWS environments (EC2, S3, IAM, Lambda).
2. Knowledge of DevSecOps, secure coding, vulnerability management, and security testing.
3. Experience with Terraform, CloudFormation, and automating security processes.
4. Experience integrating security tools into CI/CD pipelines for continuous validation.
5. Familiarity with AWS security tools (GuardDuty, Inspector) and third-party vulnerability management tools.
6. Proficiency in scripting (Python, Bash, PowerShell) to automate security tasks.
7. Understanding of industry compliance (GDPR, PCI-DSS, HIPAA) and its implementation in AWS.
8. Strong analytical skills to identify and address vulnerabilities quickly.
9. Excellent communication skills to work effectively with cross-functional teams.

Preferred Qualifications:

1. AWS Certified Solutions Architect, DevOps Engineer, Security Specialty, or similar security certifications (CISSP, CISM).
2. Experience with Docker, Kubernetes, and EKS for securing cloud-native apps.
3. Familiarity with tools like Prisma Cloud or CloudHealth for cloud security posture management.
4. Experience in Agile environments, ensuring security requirements are met within sprints.

If you’re ready to advance your career in cloud technologies and enjoy a role that values your growth, this is the opportunity for you!