- Secure, manage, and scale the cloud environment using least-privilege IAM policies, VPCs, and robust secret management.
- Refine infrastructure provisioning using Infrastructure as Code (IaC) tools.
- Deploy observability, logging, and alerting frameworks for performance and security monitoring.
- Own and optimize continuous integration and deployment (CI/CD) pipelines.
- Integrate automated security testing (SAST, DAST, dependency and container scanning) into developer workflows.
- Partner with engineers on threat modeling, architectural reviews, and secure coding.
- Lead compliance efforts for SOC 2, PCI-DSS, and data privacy regulations.
- Ensure PII and sensitive financial data are encrypted at rest and in transit.
AWSDockerDevOps+1 more