Security Engineer (AWS/Kubernetes)

Insight Global
Morrisville, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 135K

Job location

Morrisville, United States of America

Tech stack

Kubernetes Security
Amazon Web Services (AWS)
Cloud Computing
Cloud Computing Security
Computer Security
Computer Networks
DevOps
Issue Tracking Systems
Virtual Private Networks (VPN)
Information Systems Security Architecture Professional
Python
Key Management
Role-Based Access Control
Security Information and Event Management
Spring Cloud
Software Troubleshooting
Firewalls (Computer Science)
Cloudformation
Containerization
Kubernetes
Infrastructure Automation Frameworks
Azure
CIS Benchmarks
Terraform
Prisma Cloud Platform
Devsecops
Serverless Computing
Security Orchestration, Automation & Response

Job description

We are seeking a Security Engineer to help secure and maintain cloud-native environments across AWS and Kubernetes platforms. This individual will play a critical role in ensuring cloud infrastructure complies with industry security standards, identifying and remediating risks, and partnering with engineering and operations teams to maintain a strong security posture. The ideal candidate combines hands-on cloud security expertise with a deep understanding of compliance frameworks, automation, and container security. This role is well-suited for someone who enjoys solving complex security challenges, driving continuous improvement, and collaborating with cross-functional teams., Assess and maintain secure AWS cloud environments in accordance with industry best practices. Validate compliance with security frameworks, including STIGs, CIS Benchmarks, and NIST 800-53 controls. Perform ongoing security assessments and identify gaps, vulnerabilities, and configuration risks. Create, track, and manage remediation activities through ticketing systems and security workflows. Partner with engineering, DevOps, infrastructure, and compliance teams to implement security improvements. Conduct regular reviews with stakeholders to discuss findings, priorities, and remediation plans. Automate security processes and controls using cloud-native services and Infrastructure as Code. Develop and maintain security documentation, standards, procedures, and technical configurations. Monitor emerging threats, vulnerabilities, and evolving security best practices. Ensure Kubernetes environments are securely configured, including cluster hardening, RBAC, network policies, secrets management, and container security controls. Support continuous security monitoring and compliance initiatives across cloud and containerized workloads.

Requirements

5+ years of experience in cloud security, cybersecurity, or a related engineering role. Strong hands-on experience securing AWS environments and cloud-native applications. Expertise with AWS security services including, Knowledge of secure cloud architecture principles and best practices. Experience with AWS networking concepts, including:

VPCs Security Groups Network ACLs VPNs Firewalls

Experience implementing and assessing compliance against STIGs, CIS Benchmarks, and NIST 800-53. Proficiency with scripting and automation tools such as Python, Terraform, CloudFormation, or similar technologies. Hands-on experience securing Kubernetes platforms, including:

EKS or other managed Kubernetes services Cluster hardening RBAC Network policies Container security Secrets management

Strong troubleshooting, analytical, and problem-solving skills. Excellent written and verbal communication skills with the ability to work across technical and non-technical teams.

Nice to Have Skills & Experience

AWS Certified Security - Specialty CISSP (Certified Information Systems Security Professional) CKS (Certified Kubernetes Security Specialist) Experience with cloud security posture management (CSPM) tools such as Wiz, Tenable, Prisma Cloud, or similar platforms. Experience working with SIEM technologies and creating detections, alerts, and security monitoring use cases. Knowledge of CIS Kubernetes Benchmarks and Kubernetes security frameworks. Experience securing containerized workloads in enterprise-scale environments. Familiarity with DevSecOps practices and security automation pipelines.

Benefits & conditions

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.

Apply for this position