AWS Cloud Engineer (Cloud Custodian & Policy ...
Infinitive - Ashburn, VA
Apply NowJob Description
 Candidates must be local to the Washington D.C. metro area. About Infinitive:Infinitive is a data and AI consultancy that enables its clients to modernize, monetize and operationalize their data to create lasting and substantial value. We possess deep industry and technology expertise to drive and sustain adoption of new capabilities. We match our people and personalities to our clients' culture while bringing the right mix of talent and skills to enable high return on investment.Infinitive has been named "Best Small Firms to Work For" by Consulting Magazine 6 times most recently in 2023. Infinitive has also been named a Washington Post "Top Workplace", Washington Business Journal "Best Places to Work", and Virginia Business "Best Places to Work.About the Role:We are seeking a skilled AWS Cloud Engineer with hands-on experience in implementing cloud governance, compliance policies, and automation using AWS services and Cloud Custodian. In this role, you will be responsible for designing, deploying, and managing infrastructure on AWS while ensuring adherence to organizational policies through the configuration of AWS Identity and Access Management (IAM), Security, and Cloud Custodian policies. The ideal candidate is experienced in securing and optimizing cloud environments, automating compliance tasks, and managing AWS cloud infrastructure at scale.Key Responsibilities:Design, configure, and manage AWS infrastructure using best practices in security, reliability, and scalabilityImplement and automate compliance and security policies using Cloud Custodian, AWS Config, and other AWS servicesDevelop and enforce AWS IAM policies, permissions boundaries, and roles to manage access and ensure complianceAutomate the monitoring, reporting, and remediation of security and compliance violations in the AWS environmentCollaborate with security teams to ensure AWS environments adhere to regulatory and organizational standards (e.g., GDPR, HIPAA, SOC 2, PCI-DSS)Perform security audits and risk assessments using AWS services (e.g., AWS CloudTrail, AWS GuardDuty, AWS Security Hub)Troubleshoot and resolve issues related to AWS infrastructure, networking, and security configurationsDevelop and maintain documentation for operational processes, security configurations, and compliance policiesWork in an Agile environment and participate in sprint planning, reviews, and daily standupsRequired QualificationsBachelor's degree in Computer Science, Engineering, or a related field, or equivalent experience2+ years of experience in AWS Cloud engineering, architecture, or operationsStrong experience with AWS IAM, AWS Organizations, S3, VPC, EC2, CloudTrail, GuardDuty, and other core AWS servicesHands-on experience with Cloud Custodian for policy-as-code management, automation, and remediationExperience configuring and managing AWS security policies, such as resource tagging, encryption, and access controlProficiency in scripting and automation using Python, AWS Lambda, or AWS Systems ManagerFamiliarity with cloud governance and compliance frameworks such as CIS Benchmarks, NIST, or other security standardsExperience working with CI/CD tools (e.g., Jenkins, GitLab, AWS CodePipeline) to automate policy deployment and updatesExcellent problem-solving skills and ability to troubleshoot complex AWS infrastructure issuesPreferred Qualifications:AWS Certified Solutions Architect, AWS Certified Security Specialty, or other relevant AWS certificationsExperience with additional AWS governance tools such as AWS Config, AWS Service Control Policies (SCPs), and AWS Control TowerFamiliarity with monitoring and logging tools like CloudWatch, AWS CloudTrail, or third-party integrations (e.g., Datadog, Splunk)Understanding of Terraform, AWS CloudFormation, or other Infrastructure-as-Code (IaC) tools for automating cloud resource managementExperience with Docker, Kubernetes, or AWS ECS/EKS for containerized application management
Created: 2024-10-11