Application Security

• Design, implement, tune, and manage AWS WAF rules, policies, and protections for internet-facing applications.
• Support and enhance existing cloud security automation workflows using Terraform, Python, and GitHub Actions.
• Perform API security engineering, including integrations with API security tools and security monitoring platforms.
• Improve visibility, ownership, and accountability of security findings across application environments.
• Maintain and enhance Infrastructure as Code (IaC) and policy-as-code security configurations.
• Collaborate with cloud architecture, application security, and development teams to implement and optimize security controls.
• Support cloud-native environments including containers, Kubernetes, serverless functions (Lambda), and EC2 workloads from a security perspective.
• Troubleshoot and resolve WAF and API security-related production issues, including false positive reduction and rule tuning.
• Participate in incident-driven security changes and operational support activities.
• Recommend and implement improvements to cloud security automation, reporting, and governance processes.

Do you have experience in Terraform?, * 5 years of experience in Cloud Security Engineering, DevSecOps, or related security engineering roles.

• Strong hands-on experience with AWS security services and cloud-native security controls.
• Deep expertise with AWS WAF, including rule creation, tuning, troubleshooting, and production support.
• Experience securing APIs and working with API Gateway and API-focused security tools.
• Strong Infrastructure as Code experience using Terraform.
• Proficiency in Python scripting and automation.
• Experience with GitHub and GitHub Actions for CI/CD and security automation workflows.
• Experience securing cloud-native workloads including Docker, Kubernetes, Lambda, and EC2 environments.
• Strong troubleshooting, analytical, and communication skills.
• Ability to work cross-functionally with engineering, architecture, and security teams.
• AWS certifications such as:
• AWS Certified Security - Specialty
• AWS Certified Solutions Architect
• AWS Certified Developer or SysOps Administrator
• Security certifications such as CCSP or equivalent.
• Experience working in enterprise-scale cloud environments.
• Familiarity with policy-as-code and automated security enforcement frameworks.

Pulled from the full job description

• 401(k)
• Health insurance
• Vision insurance
• Dental insurance
• Paid sick time, Pay Range: $70 - $75/hour. Employee benefits include, but are not limited to, health insurance (medical, dental, vision), 401(k) plan, and paid sick leave (depending on work location).

Our client is a leading Insurance Industry, and we are currently interviewing to fill this and other similar contract positions. If you are interested in this position, please apply online for immediate consideration.