Cloud Security Engineer
Current• Design and implement security architectures for cloud-native and third-party applications within AWS environments, utilizing AWS Config, CloudTrail, and AWS WAF to ensure robust security and seamless integration.• Administer SIEM solutions, including Splunk and ELK (Elasticsearch/Logstash/Kibana), optimizing security event logging, monitoring, and real-time analysis for enhanced incident detection, response, and proactive threat hunting.• Integrate DevSecOps principles using Jenkins, Docker, Kubernetes, and Infrastructure as Code (IaC) with Terraform and AWS CloudFormation for automation, conducting SAST and DAST to enhance application security pre- and post-deployment, focusing on secure data transmission and design reviews.• Conduct security reviews and partner with 3P for web application security testing, demonstrating a thorough understanding of secure application deployment and vulnerability remediation.• Install, configure, and deploy a variety of applications, adhering to security policies and best practices, leveraging AWS Inspector and Nessus for comprehensive security assessments.• Manage cloud data security measures, including data encryption with AWS KMS, access management through IAM, and secure data storage strategies to safeguard sensitive information throughout the data lifecycle.• Enhance platform and infrastructure security through continuous monitoring with CloudWatch and advanced intrusion detection systems, complemented by firewall management via AWS Shield.• Developed secure cloud applications by adhering to industry best practices, performing vulnerability assessments and remediation, and utilizing AWS GuardDuty, Nessus, and container security tools.• Formulate and enforce comprehensive cloud security policies and procedures, focusing on IAM, network security, and data protection, utilizing AWS WAF and AWS Inspector to reinforce security measures.