Skills and Experience Required:
Required
Strong hands-on experience with AWS cloud platform
Strong hands-on experience with Terraform for IaC.
Strong hands-on experience with GitHub Actions for CI/CD automation
Demonstrated understanding of key security domains: SCA, SAST, CSPM, SSPM, Secret Scanning
Ability to clearly articulate the purpose and use cases for these security tools to both technical teams and client stakeholders.
Remediate cloud misconfigurations by collaborating with service owners and modifying IaC definitions.
Evaluate and integrate security tools (SCA, SAST, secrets scanning, SSPM) through PoCs and hands-on testing.
Develop GitHub Actions and workflow templates to automate security scans for projects written in multiple programming languages.
Identify accountable teams for legacy or orphaned cloud resources and ensure remediation paths are clearly owned.
