Cloud Security Engineer, AWS
EvoPoint Solutions
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
AWSCloudKubernetesTerraform
About the role
- Design and maintain secure AWS architectures aligned with Zero Trust principles and the Well-Architected Framework (Security Pillar)
- Implement and manage security controls: IAM, SCPs, Organizations, KMS, GuardDuty, Security Hub, Inspector, WAF, Shield, CloudTrail, Config, Secrets Manager, among others
- Monitor security posture and remediate critical findings related to misconfigurations, excessive permissions, vulnerabilities, or exposure risks
- Collaborate with DevOps on secure CI/CD, integrations with CodePipeline, ECR, Kubernetes/EKS, and container security controls
- Participate in architecture reviews, risk analyses, and compliance assessments (ISO 27001, CIS, NIST, etc.)
- Manage security incidents, perform initial forensic analysis, and coordinate mitigation actions
- Develop security guidelines, standards, and best practices for internal teams
Requirements
- Degree in Systems Engineering, Telematics, Computer Science, or a related field
- 3+ years of experience in Cloud Security, DevSecOps, or Architecture roles on AWS
- Demonstrable experience in AWS hardening and best practices
- Infrastructure as Code (Terraform preferred)
- Cloud networking (VPC, Transit Gateway, VPN, Direct Connect)
- Application and API security
- Containers and EKS (desirable)
- Incident management and technical analysis
- English: Required intermediate level (B1/B2) — technical reading, meetings, and written communication
Benefits
- Competitive salary
- Statutory benefits
- 100% coverage of supplementary health insurance
- Udemy for Business subscription
- Monthly team-building activities
- Access to most tech events in the country
- Support for certifications
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
AWSZero Trust principlesWell-Architected FrameworkIAMSCPsKMSGuardDutyTerraformCloud networkingIncident management
Soft skills
collaborationcommunicationforensic analysisrisk analysistechnical analysis
Certifications
ISO 27001CISNIST