Security & Compliance Engineer I, AWS Security Assurance Services, LLC

About the role

The AWS Security Assurance Services team, within AWS Support, leverages the expertise and ingenuity of our builders to establish scalable security solutions for both internal and external customers that drive business outcomes. Our goal of securing the world's workloads requires reliable delivery of bar-raising security outcomes and investment in security mechanisms and automation on behalf of our customers. AWS Security Assurance Services LLC, a PCI-QSAC and HITRUST External Assessor Firm, is a team of industry-certified assessors and Compliance Engineers with DevOps and Cloud Infrastructure Architect backgrounds, helping our customers achieve, maintain, and automate compliance in the cloud by tying applicable audit standards to AWS service-specific features and functionality. The SAS team works with our largest enterprise customers to operationalize the shared responsibility model as they migrate to the cloud.

Requirements

• 2+ years of web protocols, common security attacks, and remediation (non-internship) experience
• Bachelor's degree in Engineering, Computer Science, or a related field
• Experience with web protocols, common security attacks, and remediation (non-internship)
• 1+ years of cloud architecture and solution implementation experience, or US government security clearance of top secret or above
• Experience working effectively on milestone-driven projects
• Experience in identifying incomplete or inaccurate data, identifying the root cause and creating/implementing an escalation plan, or experience communicating results to senior leadership
• Experience demonstrating software engineering skills in a previous intership, work experience, coding competitions, or publications, or experience that includes strong analytical skills, attention to detail, and effective communication abilities
• Knowledge of one or more of the following domains: access-control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security
• Experience communicating clearly and concisely with leadership, stakeholders, and cross-functional teams
• 1+ years of cloud based solution (AWS or equivalent), system, network and operating system experience, or AWS Professional level certification
• Knowledge of networking protocols such as HTTP, DNS and TCP/IP
• Experience with compliance & security standards including PCI DSS, ISO 27001, HIPAA, and NIST
• Experience with coding/scripting in one or more languages (e.g., Python, C, C++, Java, Ruby, or PowerShell)
• Hands-on experience with AWS security and governance services: Config, Security Hub, IAM, KMS, VPC, Lambda, C

Additional Information

AWS Security Assurance Services (SAS) is hiring an Associate Security & Compliance Engineer to help build and operate AWS security and compliance solutions for highly regulated customers. You will execute your team's security processes, contribute to runbooks and tooling, write and review code and Infrastructure-as-Code, and help ship secure-by-design implementations aligned to compliance frameworks (SOC2, HIPAA, PCI-DSS, CIS, NIST, FedRAMP). You'll work on well-defined security problems with regular checkpoints from your team, learn from peer review, and grow your skills in secure design, threat modeling, and AWS security engineering. You will be a reliable contributor on customer engagements and a strong security advocate within your team. Key job responsibilities - Implement custom security controls, enforcements, detections, and automated remediations - Contribute to Infrastructure-as-Code modules for Landing Zones, AWS Control Tower customizations, and security baselines using Terraform, AWS CDK, or CloudFormation. - Write Python and policy-as-code (cfn-guard, OPA Rego, Cedar) to extend preventive and detective controls. - Participate in code, IaC, and design reviews; provide constructive feedback - Contribute to POCs on emerging technologies; implement components, run experiments, and document findings so the team can build on the results. - Implement continuous compliance monitoring checks, evidence collection automations, and reporting dashboards. - Help identify, confirm and document risks and mitigations during design and implementation stages of customer engagements. - Apply common risk trade-offs (e.g., tactical compensating controls vs. addressing root causes) under guidance. - Contribute to runbooks, tools, and other security mechanisms used by the team and customers. - Participate in operational support; help ensure root causes of operational and security issues are identified and resolved. - Follow established procedures to diagnose problems, and escalate appropriately when blocked. - Communicate security risk for low-complexity problems clearly in writing and verbally to your team and direct leadership. - Solicit differing views and learn from peer feedback. - Travel to customer sites as needed.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at AWS Security Assurance Services LLC? Share your experience