Job Description :
Position: Security Engineer or Network Security Engineer or Information Security Engineer with AWS Exp.
Location: West suburbs of Minneapolis, MN (10 min from Downtown)
Position type: 6 months+

Need USC/GC/GC EAD candidate Only
AWS Security Engineer
Bottom Line / “In a nutshell “
Not looking for AWS developers that know a thing or two about AWS security. Looking for security person that knows AWS and a thing or two about AWS development
Security Engineer with a high focus on AWS security config compliance, VPN, VPC IP addressing, encryption, logging, hardening standards, and cloud based security compliance tools. In addition there are on premise security tools that this consultant would be working with and supporting as well.
Jack of all trades (fw, vul mgmt., certificates/PKI, SIEM, etc…) in the security world + AWS security
NOTE: Other Skills listed below are desired but if you are a "security developer with some AWS experience" then the client is interested in you!!
Position Summary
The Information Security Engineer is expected to design and solution for the highest quality of information protection for our data security and customer information privacy. Primary responsibility for this position will be to participate on an outstanding team of engineers to collaboratively design, enhance, and maintain existing security tools and software. Our information security engineering department manages 25+ security tools. Engineers are exposed to, pick up, and utilize a vast security skill set. Security engineers are also security consultants that partner with other business and IT teams to guide all towards best practices. Additional experience and capabilities:
Primary Responsibilities:
AWS security
o Design of multiple environments Dev, QA, Prod
o Firewall controls between the environments
o Familiarity with Palo Alto NGFW and VPN
o Configure alerting on all security related activities
o Automate configuration compliance
o Recommend and implementation of security tools
o React to alerts and educate development community about security issues
Knowledge of AWS specific tools
Provide security consulting to project and development teams in the area of information security
Fluent in PCI/PII policies, standards, and procedures
Functional understanding of TCP/IP networks and firewalls
Secondary Responsibilities:
Strong willingness to accept new projects and learn new tools
Work in conjunction with the other security engineers on existing tools set as needed
Assist in remediation and responses to audits, vulnerability assessments, and penetration tests.
Demonstrate analytical and problem solving skills.
Proven experience managing numerous projects and activities simultaneously.
The ability to drive quality into every product, project and service the company provides.
Willingness to cross training architecture, design, and support of other information security tools.
Other tool familiarity is a plus: Rapid7, Palo Alto, Carbon Black, Bomgar, Symantec DLP, Linux
PKI internal and external CA’s and Venify management would be a plus.
Qualifications - External Education:
Bachelor’s Degree in Computer Science or related field; or equivalent work related experience.
Required Skills/Experience:
Five or more years of experience in information security.
Three or more years of AWS security configurations
Five or more years of experience in a system administration (e.g., Network, Windows, UNIX) role.
Experience in working with compliance and regulatory program requirements.
Experience analyzing network, event, and security logs on premise and cloud.
Proven project management and organizational skills, specifically managing multiple concurrent projects
Excellent analytical, problem solving and decision making skills, applied with a solution-focused attitude
Excellent written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy
Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism
Excellent teamwork skills
CISSP, CISA, or CISM certifications preferred