Cloud Security Engineer
Cloud Security Engineer (AWS)
Location: US or Canada Eastern Time Zone
Salary Range: $150K – 160K USD
About Centric Software:
Centric Software stands at the forefront of innovation, delivering cutting-edge PLM solutions tailored specifically for the retail, fashion, footwear, luxury, and consumer goods industries. Our enterprise software applications are designed to meet the unique challenges of the fast-moving consumer goods market, empowering businesses to manage, optimize, and execute their critical processes with ease.
From concept to production, our software solutions streamline the journey of bringing products to life. We support our customers in effectively managing materials, sourcing, quality, and pricing, ensuring every step leads to a successful final catalog. With Centric Software, businesses can navigate the complexities of product development with confidence and agility. www.centricsoftware.com
Job Summary:
We are seeking a highly skilled Cloud Security Engineer with deep expertise in Amazon Web Services (AWS) to act as a Subject Matter Expert (SME) in securing cloud-based infrastructure and services. The ideal candidate will have hands-on experience with AWS security features, a solid background in building and managing Enterprise Risk Systems (ERS), and a passion for ensuring the highest levels of cloud security.
You will be responsible for implementing, managing, and optimizing cloud security practices across our AWS environment, ensuring compliance with best practices, and protecting sensitive data. You will work closely with cross-functional teams to integrate security into the development lifecycle and act as a thought leader in cloud security.
Key Responsibilities:
- Cloud Security Architecture & Implementation: Design and implement secure cloud solutions in AWS, ensuring compliance with industry standards and best practices.
- Subject Matter Expertise (SME): Serve as the SME for AWS security, guiding teams and advising on security strategies, controls, and configurations.
- Enterprise Risk Systems (ERS): Lead the development and management of enterprise risk systems within AWS, ensuring they are effectively configured and maintained.
- Incident Response: Lead and support cloud security incident response efforts, including root cause analysis and remediation in AWS environments.
- Cloud Security Monitoring & Automation: Implement security monitoring, logging, and alerting across AWS resources to detect vulnerabilities and mitigate risks.
- Cloud Security Policy & Governance: Develop and enforce security policies and controls in alignment with regulatory requirements and industry standards
- Collaboration: Work closely with DevOps, IT, and Development teams to embed security into the DevSecOps pipeline and ensure secure cloud application development.
- Security Tools & Technologies: Leverage AWS-native and third-party tools to monitor, manage, and automate security tasks.
- Training & Mentorship: Provide training and mentorship to junior team members and other stakeholders on AWS security best practices.
- Compliance & Auditing: Ensure that the AWS environment is compliant with security audits and internal security assessments.
- Continuous Improvement: Stay up to date with the latest AWS security features, vulnerabilities, and industry trends, recommending improvements and innovations.
Skills & Qualifications:
- 10+ years of experience in cloud security, with at least 5 years focused on AWS.
- AWS Certified Security – Specialty (or equivalent AWS certifications), CISSP, CISM, or related security certifications.
- Strong hands-on experience with AWS services.
- Extensive experience in designing, building, and managing Enterprise Risk Systems (ERS) within AWS environments.
- Experience with tools like AWS Security Hub.
- Proficiency in scripting languages (Python, Bash, PowerShell) and experience with automation tools (Terraform, CloudFormation).
- Experience leading security incident response efforts in cloud environments.
- Ability to assess security risks and propose appropriate mitigation strategies.
- written and verbal communication skills, with the ability to clearly communicate complex security concepts to both technical and non-technical stakeholders.
- AWS Certified Solutions Architect – Professional, AWS Certified DevOps Engineer – Professional.
Centric Software provides equal employment opportunities to all qualified applicants without regard to race, sex, sexual orientation, gender identity, national origin, color, age, religion, protected veteran or disability status or genetic information.
Centric Software provides equal employment opportunities to all qualified applicants without regard to race, sex, sexual orientation, gender identity, national origin, color, age, religion, protected veteran or disability status or genetic information.