AWS Security Engineer

AWS Security Engineer

Extelligence is an intelligent partner that goes the extra mile. We provide customized information management solutions for major industries. Our team in Prague and Bucharest is working with international companies, transforming, and adding value to their business on a daily basis. We are growing quickly, and we are interested to bring more talented individuals into our team.

We are seeking an experienced Cloud Security Engineer for AWS environments to join the client’s Cloud project team. The ideal candidate will have a subject matter expert level knowledge of public cloud security and will support the organization and the team activities in achieving and maintaining cloud security posture.


Your key responsibilities include, but are not limited to:

  • Plan, create and implement continuous security control testing and improvements to the monitoring of AWS security events and alerts through optimization and automation.
  • Vulnerabilities assessment and remediation co-ordination with respective stakeholders. Assist team in creation of the security dashboard and reports.
  • Security Incident Management: incident response and SPOC for SOC and Coordination of various security review/testing activities including managing Amazon Requests
  • Responsible for monitoring governance, compliance, and security: evaluate resources and management of resources, configuration, tagging, change and security and responsible for AWS GuardDuty rules review, discuss within security operations team and get those remediated.
  • Ensure security components are managed and compliance is maintained throughout their lifecycle.
  • Audit, review, and monitor Security: encryption policies, VPC Flow logs, security groups,  routing tables, ACL’s, Elastic Ips
  • Cloud Security knowledge for AWS platform and services is required. Review and approve the security group changes required. Review and timely approval of exceptions. Review CSP Compliance certificates and Audit reports.
  • Responsible for monitoring governance, compliance, and security: evaluate resources and management of resources, configuration, tagging, change and security. Audit, review, and monitor Security: encryption policies, VPC Flow logs, security groups, routing tables, ACL’s, Elastic Ips.
  • Compliancy and Governance for example GxP / SOC

Essential Requirements

What you’ll bring to the role:

  • Bachelor’s degree in Information Technology, Computer Science, or Engineering.
  • 7+ years of experience in Cloud infrastructure, Platform Security
  • Experience of different types of encryption in transit and at rest.
  • Experience in data protection
  • In depth use of Splunk to resolve issues
  • AWS Organizations including SCP policies
  • Experience supporting AWS infrastructure and services in public and private cloud environments.
  • Experience of Palo Alto IDPS and AWS Security Hub / WAF / Firewall Manager / GuardDuty / Shield etc
  • Experience of CloudTrail / Systems Manager / Secrets Manager / Certificate Manager / KMS
  • Create IAM / S3 / SCP policies
  • Troubleshooting KMS issues and IAM policies.
  • Excellent communication skills, must be capable of working with cross functional technical and business teams and varying levels of management
  • Must be capable of writing detailed solution specifications, diagrams, best practices/standards documentation, operating procedures, test plans/test reports, etc.
  • Experience with virtualization technologies, familiarity with Security monitoring tools
  • Problem Solving: Ability to analyze and resolve complex infrastructure resource and application deployment issues.
  • Ability to take the initiative and ownership of tasks.
  • Knowledge of AWS / Azure AD single sign-on
  • Writing policies and will also review & approve policies created by other teams, such as DevOps and SysOps.


  • AWS Certified Security – Specialty certification would be a bonus
  • Familiarity with CI/CD tools and deployment processes
  • AquaSec for ECRs and runtime (sidecar) for both ECS and EKS on EC2 and Fargate for serverless
  • Knowledge of securing AWS Serverless resources.
  • Knowledge of AWS HSM
  • Knowledge of AWS Network Orchestration
  • Knowledge of Splunk

Working with Extelligence:

  • We take care of the important things that matter to contractors, for example, we guarantee on-time payment for your work. You will never have to chase us for payment.
  • We always seek to have long term relationships with our team and we always seek to offer opportunities to extend cooperation beyond the first contract or project.
  • Extelligence is a multicultural team, we have more than 15 different nationalities working with us.
  • We also organize events to bring our team together including team building activities and social events.
Job Type: Contract
Job Location: Remote in EU

Apply for this position

Allowed Type(s): .pdf, .docx