Position assists client with their AWS Security posture.
Candidate must be knowledgeable with the AWS Security Hub/GuardDuty and associated functions.
Must be able to create scans within AWS, develop reporting matrixes, and then work with DevOps resources to remediate/mitigate any findings in the scans and document remediations.
Will assist in performing penetration testing and threat simulations to identify potential risks.
Must have experience creating System Security Plans (SSP) developed in accordance with FedRAMP guidelines, (including NIST 800, FISMA, etc.).
Must be able to apply compliance/mitigation plans on all controls included in the SSP.
Should have functional knowledge of applications like Tenable or Qualys, etc., so candidate can log issues for security risk management tracking.
Provide recommendations for security enhancements based upon reviews and best practices.
Experience with other cloud-based environments such as Microsoft's Azure is a desired bonus.
AWS Certified Cloud Practitioner
AWS Certified Sysops Administrator Associate or Certified Solutions Architect
AWS Certified Security Specialty
Required/Desired Skills
Skill | Required /Desired | Amount | Experience needed |
AWS Security Hub/GuardDuty and associated functions | Required | 3 | Years |
Create scans within AWS, develop reporting matrixes, and then work with DevOps resources to remediate/mitigate | Required | 3 | Years |
Creating System Security Plans (SSP) developed in accordance with FedRAMP guidelines, (NIST 800, FISMA, etc.) | Required | 5 | Years |
Tenable or Qualys, etc. (so candidate can log issues for security risk management tracking) | Required | 5 | Years |
Providing security enhancements based upon reviews and best practices | Required | 5 | Years |
Cloud-based environments such as Microsoft's Azure | Highly desired | | |
AWS Certified Cloud Practitioner | Required | | |
AWS Certified Sysops Administrator Associate or Certified Solutions Architect | Required | | |
AWS Certified Security Specialty | Required | | |