AWS Security Manager

Description:
The AWS Security Manager is responsible for ensuring the security, compliance and protection of our cloud-based infrastructure. The ideal candidate will have hands-on experience with AWS security services, cloud risk assessments, incident response and continuous security monitoring. This role partners with Cloud Engineering, DevOps and Application teams to maintain a secure and resilient cloud environment. The manager partners with Security, Cloud Engineering, DevOps, GRC, Audit and Application teams to embed security into all stages of the cloud lifecycle.

Location: Remote

Rate: $70-75hr

Eastern, Central and Mountain time zones.

ship is Required - Ability to pass enhanced background screen (criminal, financial, drug) for Public Trust clearance.

This is a contract-to-hire opportunity. Applicants must be willing and able to work on a W2 basis and convert to FTE following contract duration. For our W2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

Responsibilities:
Lead and mentor a team of security engineers focused on AWS hardening, Terraform automation, CI/CD security and cloud monitoring and incident response

• Establish enterprise-wide AWS security standards and policies
• Oversee Identify and Access Management (IAM) strategy
• Strong proficiency with Terraform, including writing reusable modules and automated deployments through CI/CD
• Experience with AWS Lambda development and serverless architecture, with the ability to guide engineers, review code, enforce best practices and ensure secure scalable deployments
• Manage deployment and configurations of AWS native security tools: AWS Security Hub, Guard Duty, Config and Config rules, KMS encryption keys, VPC Security (NACLs, subnets)
• Strong understanding of IAM Roles/Policies and Identity Federation, Encryption, KMS, secrets management
• Work with DevOps teams to implement security best practices into CI/CD pipelines and infrastructure as code
• Enforce controls for logging, encryption, network segmentation, patching, vulnerability management
• Drive security automation for drift detection, patching, vulnerability remediation and compliance reporting
• Oversee detection and response to security events in AWS
• Manage threat investigations, root cause analysis remediation plans
• Build and maintain runbooks, tabletop exercises and escalation paths
• Implement and improve AWS security controls, guardrails and baseline configurations
• Continuously evaluate AWS environments for cost-effective security improvements
• Conduct threat modeling, vulnerability analysis and remediation coordination
• Maintain AWS risk register, security assessments and internal controls
• Ensure readiness for audits, SA&A, NIST, FISMA and FedRAMP
• Manage evidence gathering, control testing and gap remediation. Work with external auditors and internal stakeholders during audit cycles
• Conduct regular configuration reviews, vulnerability scans and compliance checks
• Approve and reject new AWS architecture from a security standpoint
• Partner with DevOps, engineering, development teams. Train teams on secure cloud practices.
• Report risks, KPIs and metrics to senior leadership
• Participate in on-call rotations to support 24/7 production systems and respond to incidents as they arise

Experience Requirements:
Required Qualifications:

• 6 years of experience in cloud security or cybersecurity
• Strong experience managing or leading teams
• Python or Bash scripting for automation
• Understanding of AWS security controls, specific to identity, logging and encryption
• Expert knowledge of AWS IAM, AWS KMS & encryption, AWS security services, CloudTrail/CloudWatch
• Advanced hands-on experience writing and reviewing Terraform modules
• Experience writing and operating AWS Lambda functions
• Perform IAM policy and permissions audits to enforce least privilege
• Ability to read and interpret access logs, cloud account configurations and IAM policies
• Experience building and securing large multi-account AWS environments

Education Requirements:

• Must be able to obtain and maintain a Public Trust clearance
• Preferred Qualifications:
• Cloud certification (AWS Cloud Practitioner, Security Specialty)
• Security compliance or audit certification
• Experience with container security (EKS/ECS)

Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.
Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact

About Eliassen Group:

Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate.

Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

Don't miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.