Cloud Security Engineer

Summary

Join Swish Analytics, a sports analytics startup, as a remote AWS Security Engineer. This role requires 5-8 years of hands-on AWS security experience, encompassing IAM, various AWS security services, VPC security, and security and logging tools. You will implement and maintain CSPM tools, utilize IaC with Terraform, CloudFormation, or AWS CDK, and integrate security tools into CI/CD pipelines. Expertise in Kubernetes and container security, scripting languages (Python, Bash, PowerShell), and security incident response is crucial. Preferred certifications include AWS Certified Security – Specialty and others. The salary range is $110,000-$145,000.

Requirements

• 5-8 years of hands-on experience in AWS Security
• Strong knowledge of IAM (roles, policies, least privilege)
• Experience with AWS security services (e.g., GuardDuty, Security Hub, Inspector, Macie, KMS, CloudTrail, WAF, Shield)
• Familiarity with VPC security, subnet segmentation, NACLs, and security groups
• Familiarity with security and logging tools such as BurpSuite, OWASP ZAP, CrowdStrike, Datadog, etc
• Deep understanding of AWS Well-Architected Framework, especially the Security Pillar
• Experience implementing and maintaining cloud security posture management (CSPM) tools and frameworks
• Proficient in Infrastructure-as-Code (IaC) using tools such as Terraform, CloudFormation, or AWS CDK
• Experience managing infrastructure and security policies through Git repositories
• Integrating security tools into CI/CD pipelines (e.g., Snyk, Checkov, Trivy, SonarQube)
• Automating compliance and security checks
• Experience with Github
• Container security best practices (ECR, ECS, EKS, etc.)
• Experience securing Kubernetes clusters (EKS or self-managed)
• Knowledge of network policies, RBAC, Pod Security Standards, and runtime security
• Proficiency with scripting languages like Python, Bash, or PowerShell for automation and security tooling
• Experience with security incident response in AWS environments, including detection, analysis, and mitigation
• Strong problem-solving and analytical skills
• Ability to work cross-functionally with developers, cloud engineers, and security teams
• Clear communication skills with both technical and non-technical stakeholders
• Self-starter mindset with the ability to work in a fast-paced, agile environment

Preferred Qualifications

• AWS Certified Security – Specialty
• AWS Certified Solutions Architect – Associate or Professional
• Certified DevSecOps Professional (e.g., DevSecOps Foundation)
• GIAC Cloud Security Automation (GCSA) or similar
• Certified Kubernetes Security Specialist (CKS)

Benefits

$110,000 - $145,000