As AWS security engineer you will lead the remediation of cloud and application vulnerabilities across the AWS environment. You will work closely with Developers, Data Engineers, and the AWS Security Lead to validate findings, prioritise risk, implement fixes, and strengthen security controls. A strong understanding of software development, DevSecOps practices, and vulnerability management is essential.
Key Responsibilities
1. Own end-to-end remediation of AWS and workload vulnerabilities: confirm findings, assess impact, prioritise actions, and track through to closure.
2. Partner with Developers and Data Engineers to implement secure fixes in code, infrastructure, and delivery pipelines (IaC, containers, serverless, OS/packages).
3. Work with the AWS Security Lead to ensure remediation aligns with AWS security controls, internal risk policies, and compliance requirements.
4. Improve and automate vulnerability management processes (e.g., scanning coverage, SLAs, exception handling, evidence capture).
5. Embed security into CI/CD and the SDLC: shift-left reviews, secure coding guidance, dependency management, and pipeline guardrails.
6. Configure, tune, and operate AWS security services (e.g., GuardDuty, Security Hub, Inspector, Config, IAM Access Analyzer) to reduce exposure and prevent repeat issues.
7. Produce clear remediation guidance, runbooks, and r...