Find your next role

Description

AWS Security Assurance Services (SAS) is hiring a Senior Security & Compliance Engineer to innovate on behalf of customers and lead prototyping and development of the security and compliance solutions. The right candidate will own security risk identification, mitigation, and engineering outcomes that span beyond a single team: designing controls, writing code, leading reviews, automating remediations, and translating compliance frameworks into secure-by-default implementations on AWS. They will lead design, deployment, and implementation of complex AWS security and compliance solutions that accomplish defined business and security outcomes, solving for new levels of scale, complexity, and performance.

Key job responsibilities
Engineer AI-enabled automations, lead threat modeling, security design reviews, architecture reviews & security assessments

Own design and architecture choices for security and compliance automation solutions for regulated customers and influence partner-org designs.

Build secure-by-default IaC modules for Landing Zones, Control Tower customizations, Zero-Trust architectures, and AI/ML workloads.

Lead the design, deployment, and implementation of AWS security controls, continuous compliance monitoring, technical control validation, visualization and reporting, automated evidence collection and remediation of insecure configurations at scale.

Architect custom preventive, detective, and proactive controls, e.g. service-Control- policies, Resource-Control Policies (SCPs and RCPs), policy-as-code (cfn-guard, OPA Rego, Cedar), and automated remediation workflows.

Set the bar for authentication and authorization, data handling, least privilege, encryption, micro-segmentation, tagging strategy, integrations via API and MCP, and secure AI agentic design.

Write and review architecture, code, scripts, IaC, including Python, Terraform, AWS CDK, CloudFormation, REGO).

Lead alignment, resolve escalations, troubleshooting, and root-cause analysis to closure with peers, senior managers, and principal engineers.

Lead the development of technical content: sample code, blog posts, workshops, reference architectures, whitepapers.

Communicate security risk and design decisions clearly verbally and in writing to technical, non-technical, and C-level audiences.

Identify and shape sales opportunities; provide input to AWS service-team roadmaps and SAS offering strategy.

Travel to customer sites as needed.

About the team
The Security Assurance Services team, a part of Amazon Web Services, leverages the expertise and ingenuity of our builders to establish scalable security solutions for both internal and external customers that drive business outcomes.

Our goal of securing the world's workloads and building a brighter future for humanity requires us to focus on reliable delivery of bar raising security outcomes and investment in security mechanisms and automation on behalf of our customers.

AWS Security Assurance Services LLC, a PCI-QSAC and HITRUST External Assessor Firm, is a team of industry certified assessors, Security & Compliance Engineers with DevOps and Cloud Infrastructure Architect backgrounds, helping our customers achieve, maintain, and automate security & compliance in the cloud.