AWS Security Engineer

Peraton is looking for an AWS Security Engineer to support secure development, modernization, and migration in support of a government multi-cloud environment with 50+ customer tenants and growing.  Aside from technical qualifications, applicant should have effective communication skills, both written and verbal.

The applicant must have engineering experience and extensive AWS and security knowledge and experience with integration, vulnerability remediation, system analysis or programming experience, including developing AWS systems requirements and design specification. The AWS Security Engineer will be responsible for resolving complex incidents, providing expert troubleshooting, and performing proactive monitoring of AWS Infrastructure and services. A passion for performance, strong desire for quality conformance, and attention to detail are prerequisites for this position.

LOCATION: Remote (but must reside and perform all work within the United States)

WORK HOURS: This position requires working online from 8:00 AM Eastern to 5:00 PM Eastern

Day to Day Roles and Responsibilities:

• Security
  • Harden AWS environments and remediate STIG findings in accordance with NIST SP 800-53 and DHS 4300A requirements.
  • Maintain and improve the golden image pipeline to ensure compliant baselines
• Incident Response and Troubleshooting
  • Serve as an escalation point from Tier 2 support for complex incidents and outages within the AWS GovCloud environment
  • Investigate and resolve issues across various AWS services EC2, RDS, S3, VPC, Lambda, and IAM
  • Perform root cause analysis to address underlying infrastructure issues and provide solutions to prevent recurrence.
  • Manage and resolve high-priority incidents, ensuring timely communication with stakeholders and affected tenants
• Monitoring and Optimization
  • Continuously monitor tenant environments using CloudWatch, CloudTrail, and other tools (Dynatrace, Splunk) to detect performance issues, security incidents, and infrastructure bottlenecks
  • Utilize Dynatrace, Splunk, or other proactive monitoring tools to mitigate potential issues before they escalate
  • Analyze system performance and recommend optimizations to improve stability, efficiency, and security
• AWS Infrastructure Management
  • Manage and maintain the AWS infrastructure, including EC2 instances, S3 buckets, VPC configurations, RDS databases, and other services
  • Ensure that all tenants’ s AWS resources are secure, FedRAMP compliant, and optimized for performance
  • Collaborate with the Architecture team to implement solutions that align with best practices for AWS cloud infrastructure
  • Adhere to Change Management procedures
• Collaboration and Knowledge Sharing
  • Collaborate with other team engineers to resolve development issues/incidents and implement improvements
  • Document solution designs, process procedures, and lessons learned to enhance team knowledge
  • Provide technical mentorship and knowledge sharing to more junior engineers less familiar with pipeline and infrastructure automation

Basic Qualifications:

• Bachelors degree and 12 years of experience or a Masters degree and 10 years of experience or a High School Diploma/Equivalent and 16 years of experience. 
• Must be a U.S. Citizen with the ability to obtain/maintain a DHS Public Trust (EOD).
• 5+ years of experience in cloud services and infrastructure.
• 3+ years of extensive hands-on experience with automation involving a wide range of AWS services including but not limited to EC2 instances, S3 buckets, VPC configurations, RDS databases, and other services
• Experience with incident management, root cause analysis, and resolving high-priority incidents in large, multi-tenant environments

Preferred Qualifications:

• Experience with incident management, root cause analysis, and resolving high-priority incidents in large, multi-tenant environments.
• Extensive knowledge and understanding of AWS GovCloud and deploying in Government environments.
• Exemplary communication, analytical skills, and technical knowledge across the client environment.
• Ability to produce concise and clear technical documentation.
• Preferred Certifications:
  • Experience with PowerShell, AWS CLI, or other automation scripts to troubleshoot and resolve issues
  • AWS Certified SysOps Developer Associate
  • AWS Certified Developer - Associate           
  • AWS Certified DevOps Engineer – Professional
  • Relevant Agile Certification
  • Red Hat Ansible
  • AWS Cloud Practitioner