Track Lead - AWS Security, Cloud Security

Job Summary

Owns remediation of the SG CIAP platform on AWS. Operates within semi-automated patching workflows using Terraform and Nginx scripting, with the 24-hour SLA for exposed assets.

Key Responsibilities

• Maintain and extend Terraform modules and Nginx scripts that drive CIAP patching on AWS.
• Remediate vulnerabilities in AWS-native components: EC2 AMIs, EKS nodes, ALB / NLB configuration, security groups.
• Roll patched AMIs through the SG pipeline with proper validation.
• Coordinate with AWS shared-services teams on cross-account dependencies.
• Generate closed-loop evidence and feed automation backlog.

Skill Requirements

• Strong Terraform proficiency including module design and state management.
• Hands-on AWS — EC2, IAM, VPC, EKS, ALB/NLB, Systems Manager.
• Nginx configuration and patching at scale.
• Familiarity with infrastructure-as-code review and approval workflows

Other Requirements

• AWS Certified Solutions Architect — Associate or Professional.
• Experience with Hashi Corp Vault or AWS Secrets Manager.
• Container security (image scanning, hardening) exposure.