Must Haves:

• Extensive experience managing AWS Security Groups in large-scale, enterprise cloud environments.
• Proven expertise automating security guardrails and policy enforcement in CI/CD pipelines with DevOps teams.
• Strong hands-on experience with AWS networking, VPC, and security services.
• Familiarity with ModernizeIT lifecycle and AWS Professional Services engagements is highly desirable.
• Working knowledge of Infrastructure as Code tools (Terraform or Ansible Preferred, CloudFormation ok) to manage security group policies.
• Ability to design scalable and secure security group policies and controls aligned to business and regulatory requirements.
• Demonstrated collaboration skills working with multi-disciplinary teams including DevOps, application owners, and cloud security groups.
• Excellent written and verbal communication skills, with a focus on documentation and knowledge transfer.

Plusses:

• AWS certifications such as AWS Certified Security – Specialty or AWS Certified Solutions Architect.
• Experience in financial services or similarly regulated industries.
• Previous experience implementing security controls in complex cloud migration projects.
• Familiarity with governance frameworks and compliance standards relevant to cloud security.

Day to Day:

We are seeking an experienced AWS Security Group Engineer (DevSecOps Engineer) to support the security group implementation pipeline within our DevOps environment. This role will drive enforcement of security requirements, enhance pipeline guardrails, and enable greater self-service capabilities for application teams. The engineer will also collaborate with the AWS Professional Services Team using ModernizeIT tooling to build a robust security group policy framework aligned with the client’s enterprise security standards.

• Security Group Pipeline Ownership
  • Assume end-to-end responsibility for the AWS Security Group pipeline, ensuring security controls are embedded and consistently enforced.
  • Collaborate closely with DevOps teams to enhance and maintain pipeline guardrails, optimizing for security and agility.
  • Implement improvements that enable application teams to self-service security group configurations safely and in compliance with policies.
  • Drive automation best practices around security policy enforcement using CI/CD and infrastructure-as-code where applicable.
• Policy Development & Implementation
  • Work with the AWS Professional Services Team utilizing ModernizeIT methodologies to design and implement new security group policies that meet the Client’s rigorous security requirements.
  • Ensure that implemented security group policies support the evolving cloud architecture and application needs without compromising security posture.
• Cross-Functional Collaboration & Documentation
  • Partner with cloud architects, application teams, and security stakeholders to gather requirements and translate them into enforceable pipeline rules and policies.
  • Document pipeline workflows, security policies, and operational procedures to facilitate clarity and knowledge-sharing.
• Continuous Improvement & Compliance
  • Monitor pipeline performance and compliance, identifying gaps or risk areas, and implement mitigations proactively.
  • Stay current on AWS security best practices, regulatory requirements, and emerging threats related to network security and access controls.