Cloud Security Engineer

Swish Analytics
Summary
Join Swish Analytics, a sports analytics startup, as a Remote AWS Security Engineer. This role requires 5-8 years of hands-on AWS security experience, encompassing IAM, various AWS security services, VPC security, and security and logging tools. You will implement and maintain CSPM tools, utilize IaC with Terraform, CloudFormation, or AWS CDK, and manage policies through Git. SecDevOps/DevSecOps experience, including integrating security tools into CI/CD pipelines and automating compliance checks, is crucial. Expertise in Kubernetes and container security is also needed. The position demands strong problem-solving, cross-functional collaboration, and clear communication skills. The salary range is $140,000-$182,000.
Requirements
- Possess 5-8 years of hands-on experience in AWS Security
- Demonstrate strong knowledge of IAM (roles, policies, least privilege)
- Have experience with AWS security services (e.g., GuardDuty, Security Hub, Inspector, Macie, KMS, CloudTrail, WAF, Shield)
- Show familiarity with VPC security, subnet segmentation, NACLs, and security groups
- Show familiarity with security and logging tools such as BurpSuite, OWASP ZAP, CrowdStrike, Datadog, etc
- Have a deep understanding of AWS Well-Architected Framework, especially the Security Pillar
- Have experience implementing and maintaining cloud security posture management (CSPM) tools and frameworks
- Be proficient in Infrastructure-as-Code (IaC) using tools such as Terraform, CloudFormation, or AWS CDK
- Have experience managing infrastructure and security policies through Git repositories
- Integrate security tools into CI/CD pipelines (e.g., Snyk, Checkov, Trivy, SonarQube)
- Automate compliance and security checks
- Have experience with Github
- Understand container security best practices (ECR, ECS, EKS, etc.)
- Have experience securing Kubernetes clusters (EKS or self-managed)
- Understand network policies, RBAC, Pod Security Standards, and runtime security
- Be proficient with scripting languages like Python, Bash, or PowerShell for automation and security tooling
- Have experience with security incident response in AWS environments, including detection, analysis, and mitigation
- Possess strong problem-solving and analytical skills
- Have the ability to work cross-functionally with developers, cloud engineers, and security teams
- Possess clear communication skills with both technical and non-technical stakeholders
- Have a self-starter mindset with the ability to work in a fast-paced, agile environment
Preferred Qualifications
- Hold AWS Certified Security β Specialty
- Hold AWS Certified Solutions Architect β Associate or Professional
- Hold Certified DevSecOps Professional (e.g., DevSecOps Foundation)
- Hold GIAC Cloud Security Automation (GCSA) or similar
- Hold Certified Kubernetes Security Specialist (CKS)
Benefits
Salary: Starting at $140,000 - $182,000 DOE