Overview

We are seeking a Senior Security Engineer — AWS Cloud to join our client-facing team, working independently and proactively to elevate cloud security standards. This fully hands-on role involves daily collaboration with senior leadership, prioritizing and resolving security issues, and continuously improving security processes and pipelines.

Responsibilities

  • Review and investigate Cloud security findings detected by CrowdStrike SOC and triage findings
  • Work with various teams to remediate vulnerabilities and misconfigurations
  • Address other security-related issues as they arise
  • Update weekly and monthly security statistics for leadership
  • Maintain and update Cloud Security processes including integrations, playbooks, custom alerts and documentation
  • Provide evidence and documentation for yearly audits
  • Triage Application Security vulnerabilities
  • Triage Kubernetes Security vulnerabilities

Requirements

  • Minimum 3 years of working experience in cloud security or related roles
  • Knowledge of AWS Cloud Security, its components and networking
  • Expertise in AWS architecture and services such as IAM, VPC, Security Group, EC2, Lambda, ECR, ECS, S3, CloudTrail, ACM, DynamoDB, Redshift and KMS
  • Skills in CI/CD pipelines for Security scans including creation, usage, architecture and maintenance
  • Proficiency in Terraform and GitHub for infrastructure management
  • Background in Kubernetes architecture, security and deployment using Terraform
  • Competency in CrowdStrike, Security Operation Center and Snyk
  • Familiarity with Codefresh, Argo CD and PerimeterX
  • Understanding of SUMO Logic and Okta
  • Capability to detect gaps in security coverage and provide solutions
  • Investigation of security events across platforms and preparation of detailed reports
  • Proven ability to work directly with clients and senior leadership without supervision
  • Excellent verbal and written communication skills
  • English proficiency at B2 level or higher for direct communication with US-based customer teams

Nice to have

  • Application security experience
  • Familiarity with DNS
  • Skills in Python
  • Background in Azure and GCP Cloud security for implementing security alerting and remediation
  • Experience with Red Team exercises

[GTS] Benefits (generic, except India)

  • International projects with top brands
  • Work with global teams of highly skilled, diverse peers
  • Healthcare benefits
  • Employee financial programs
  • Paid time off and sick leave
  • Upskilling, reskilling and certification courses
  • Unlimited access to the LinkedIn Learning library and 22,000+ courses
  • Global career opportunities
  • Volunteer and community involvement opportunities
  • EPAM Employee Groups
  • Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn