AWS Cloud Security Architect Consultant – DevSecOps – WFH C2C in Charlotte, NC in Data Management Group

Job title: AWS Cloud Security Architect Consultant – DevSecOps – WFH C2C Company: Data Management Group Job description: AWS Cloud Security Architect Consultant – DevSecOps – WFH C2C Looking for a AWS Cloud Security Architect Consultant to work within our development teams to provide DevSecOps pipeline security advisory and implementation services and solutions. This project is for a major financial services firm that helps make retirement possible for hundreds of thousands of small investors. Work from home (WFH), East Coast working hours. 1099/C2C preferred The candidate responsibilities will include, but will not be limited to: • Providing advisory for architecting AWS based application development and security solutions • Reviewing and monitoring application development and deployment pipeline and security practices, and suggesting recommendations for improvement • Implementing practices for code scanning and monitoring application in line with current enterprise standards, and advise on how to improve them. • Ensure projects meet all security objectives including alignment with the existing enterpise threat and vulnerability management (TVM) status and capabilities, suggesting improvements • Reviewing the current DevSecOps approach, ensure use of it during project implementations, and suggest areas of improvement Minimum Qualifications: • Must have 4 or more years of experience working within a highly regulated and security focused company • MUST have Strong Verbal and Written English language skills • Must have 4+ years of experience implementing AWS cloud security best practices and tools • AWS Certified Security - Specialty *strongly preferred* • Other certifications are also nice to have: Ethical Hacker, GIAC, CISSP • Should have experience with automated application testing tools e.g. Qualys web application scanning, Veracode, GitHub, open source • Should be able to understand and prioritize security recommendations from external assessment tools like Qualys WAP • Manual application testing / pen-testing • Experience with Microsoft EASM *preferred* • Should have experience with SDLC and controlling application versioning e.g. AWS code pipeline, Jenkins, GitHub • Integrating GitHub with AWS • Should have experience with WAF and OWASP recommendations • Should have experience with reviewing and monitoring TVM for application infrastructure • Experience with AWS TVM, audit and baseline assessments *Must have* • Experience with Azure TVM, audit and baseline assessments e.g. Experience with Microsoft Defender for Endpoint, Microsoft Defender for Cloud *preferred* • Positive, can-do attitude, and desire to contribute in various means to team success. • Confident communication skills with management, internal team members, and customers. • Ability to work independently within a dynamic team environment • Ability to quickly identify, research, and resolve issues as they arise. Expected salary: Location: Charlotte, NC Apply for the job now! Apply tot his job