JOB DESCRIPTION:

We are looking a Principal AWS Cloud Security and Compliance Engineer with extensive hands-on experience in securing cloud environments at scale. This role is ideal for a seasoned security expert who thrives on designing, implementing, and managing cloud security controls, ensuring compliance with industry standards, and mitigating security risks across AWS infrastructure. The ideal candidate will bring a deep understanding of AWS security services, regulatory compliance frameworks, and cloud-native security standard methodologies.

REQUIRED SKILLS

· AWS Certified Security – Specialty or AWS Certified Solutions Architect – Professional certification.
· Proficient in multi-cloud security (AWS, Azure, GCP) is a plus.
· Proficient in compliance frameworks (e.g., SOC 2, ISO 27001, NIST, FedRAMP, PCI-DSS, HIPAA).
· Familiarity with security risk management frameworks (e.g., MITRE ATT&CK, OWASP, CIS Benchmarks).
· Strong interpersonal and writing skills.
· Always eager to learn and improve.
· Knowledge of AI/ML security, API security, and data protection strategies.

· We are looking 10+ years of hands-on experience in cybersecurity, cloud security, and compliance, with at least 5 years in AWS security.
· Experience with AWS IAM, VPC security, AWS WAF, KMS, CloudTrail, Config, Security Hub, Macie, and GuardDuty.
· Proficiency in SIEM solutions, security automation, and cloud-native security tools.
· Strong background in DevSecOps, securing CI/CD pipelines, and integrating security into cloud-native development.
· Expertise in identity & access management (IAM), RBAC, MFA, and Zero Trust security models.
· Proficient in scripting and automation (Python, Bash, or PowerShell).