Job title: AWS Cloud Security Architect Consultant – DevSecOps – WFH C2C
Company: Data Management Group
Job description: AWS Cloud Security Architect Consultant – DevSecOps – WFH C2C
Looking for a AWS Cloud Security Architect Consultant to work within our development teams to provide DevSecOps pipeline security advisory and implementation services and solutions. This project is for a major financial services firm that helps make retirement possible for hundreds of thousands of small investors. Work from home (WFH), East Coast working hours.
1099/C2C preferred
The candidate responsibilities will include, but will not be limited to:
• Providing advisory for architecting AWS based application development and security solutions
• Reviewing and monitoring application development and deployment pipeline and security practices, and suggesting recommendations for improvement
• Implementing practices for code scanning and monitoring application in line with current enterprise standards, and advise on how to improve them. • Ensure projects meet all security objectives including alignment with the existing enterpise threat and vulnerability management (TVM) status and capabilities, suggesting improvements
• Reviewing the current DevSecOps approach, ensure use of it during project implementations, and suggest areas of improvement
Minimum
Qualifications:
• Must have 4 or more years of experience working within a highly regulated and security focused company
• MUST have Strong Verbal and Written English language skills
• Must have 4+ years of experience implementing AWS cloud security best practices and tools
• AWS Certified Security - Specialty *strongly preferred*
• Other certifications are also nice to have: Ethical Hacker, GIAC, CISSP
• Should have experience with automated application testing tools e.g.
Qualys web application scanning, Veracode, GitHub, open source
• Should be able to understand and prioritize security recommendations from external assessment tools like Qualys WAP
• Manual application testing / pen-testing
• Experience with Microsoft EASM *preferred*
• Should have experience with SDLC and controlling application versioning e.g. AWS code pipeline, Jenkins, GitHub
• Integrating GitHub with AWS
• Should have experience with WAF and OWASP recommendations
• Should have experience with reviewing and monitoring TVM for application infrastructure
• Experience with AWS TVM, audit and baseline assessments * Must have*
• Experience with Azure TVM, audit and baseline assessments e.g.
Experience with Microsoft Defender for Endpoint, Microsoft Defender for Cloud *preferred*
• Positive, can-do attitude, and desire to contribute in various means to team success. • Confident communication skills with management, internal team members, and customers. • Ability to work independently within a dynamic team environment
• Ability to quickly identify, research, and resolve issues as they arise. Expected salary:
Location: Charlotte, NC
Apply for the job now!
Apply Now
Apply Now