AWS DevSecOps Engineer
This is an external hire for one of our clients.
We are seeking an experienced AWS DevSecOps Engineer to join our engineering team. The ideal candidate will be responsible for integrating security into the DevOps pipeline, automating security processes, and ensuring compliance while leveraging AWS cloud technologies. This role requires a solid understanding of AWS services, CI/CD pipelines, and security best practices in a cloud-first environment.
Key Responsibilities:
- Integrate security controls and monitoring within AWS, automating security at every stage of the DevOps lifecycle.
- Design secure, automated infrastructure using Terraform, CloudFormation, and enforce AWS security best practices (IAM, access control, encryption).
- Work with DevOps teams to integrate security testing tools (e.g., OWASP ZAP, Snyk) into CI/CD pipelines (Jenkins, GitLab).
- Ensure compliance with regulations (GDPR, PCI-DSS, HIPAA) through logging, auditing, and monitoring.
- Assist in security incidents, conduct root cause analysis, and implement preventative security measures.
- Set up monitoring and alerts for security events, generating regular security posture reports.
Required Skills & Experience:
- Hands-on experience securing AWS environments (EC2, S3, IAM, Lambda).
- Knowledge of DevSecOps, secure coding, vulnerability management, and security testing.
- Experience with Terraform, CloudFormation, and automating security processes.
- Experience integrating security tools into CI/CD pipelines for continuous validation.
- Familiarity with AWS security tools (GuardDuty, Inspector) and third-party vulnerability management tools.
- Proficiency in scripting (Python, Bash, PowerShell) to automate security tasks.
- Understanding of industry compliance (GDPR, PCI-DSS, HIPAA) and its implementation in AWS.
- Strong analytical skills to identify and address vulnerabilities quickly.
- Excellent communication skills to work effectively with cross-functional teams.
Preferred Qualifications:
- AWS Certified Solutions Architect, DevOps Engineer, Security Specialty, or similar security certifications (CISSP, CISM).
- Experience with Docker, Kubernetes, and EKS for securing cloud-native apps.
- Familiarity with tools like Prisma Cloud or CloudHealth for cloud security posture management.
- Experience in Agile environments, ensuring security requirements are met within sprints.
If you’re ready to advance your career in cloud technologies and enjoy a role that values your growth, this is the opportunity for you!
#CBTR
- Department
- External
- Locations
- Remote - UK
- Remote status
- Hybrid
About Cloud Bridge
Cloud Bridge are a fast-paced company specialising in the optimisation and delivery of professional services and managed services around all aspects of Public Cloud solutions with a specific focus on AWS.
We want to change the way people look at and use Public Cloud services as we believe any organisation from small start-ups to large multinationals can unleash the power of these services to improve their business efficiency.
AWS DevSecOps Engineer
This is an external hire for one of our clients.
Loading application form