Security Engineer (Internal)

5+ years building and implementing security infrastructure. Hands-on experience in cloud security, security tooling, and establishing security programs. Deep knowledge of AWS security services and best practices. Experience securing cloud infrastructure, implementing IAM policies, and leveraging AWS-native security tools. Strong experience with Terraform for managing security controls programmatically. Hands-on experience implementing and managing security monitoring, SIEM platforms, vulnerability scanning, and security automation tools. Proficiency in Python, Bash, or similar languages for security automation. Practical experience with security frameworks like SOC2, ISO27001. Ability to operate autonomously as a solo security engineer.

Design and implement security monitoring, logging, and alerting systems. Harden AWS infrastructure and implement infrastructure-as-code security controls with Terraform. Lead preparation for SOC2, ISO27001, and other compliance frameworks. Create pragmatic security policies and procedures. Build security automation and tooling using code and scripts. Conduct security assessments of third-party vendors. Develop incident response plans and runbooks. Work closely with engineering to embed security into development workflows.