AWS Cloud Security Engineer

Posted on May 26, 2025

Apply Now

Job Description

  • AWS Cloud Security Engineer
  • As an AWS Cloud Security Engineer you will be responsible for design, implementation, and
  • management of security measures within NCB AWS environments to protect sensitive data and
  • systems. You will work with engineering team to identify and remediate security vulnerabilities,
  • ensuring compliance with industry standards and regulations.
  • Key Responsibilities
  • Security Design and Implementation:
  • * Design, implement, and maintain security controls and policies within the NCB AWS
  • environment, including identity and access management, encryption, and networking.
  • * Build least-privilege IAM roles and permission boundaries
  • * Deploy edge protections�CloudFront + WAF custom rules, AWS Shield Advanced, Firewall
  • Manager.
  • Vulnerability Assessment and Remediation:
  • * Identify and address vulnerabilities in AWS infrastructure and applications, using tools like
  • penetration testing and threat simulations.
  • * Run SAST/DAST, container CVE scans, dependency-check reports; track remediation to
  • closure.
  • * Coordinate with Dev team to certify fixes.
  • * Develop run-books for DDoS, credential compromise, and data-breach scenarios
  • Centralised Logging, Monitoring & Alerting:
  • * Ensure CloudTrail Lake, VPC Flow Logs, EKS audit logs, and Lambda/X-Ray traces feed a
  • unified SIEM
  • * Define actionable metrics/alarms for auth failures, anomalous API calls, WAF blocks,
  • GuardDuty findings.
  • Compliance and Governance:
  • * Ensure compliance with industry standards like NIST as well as internal security policies.
  • Incident Response:
  • * Respond to and resolve security incidents, following documented procedures and playbooks
  • that you will be responsible for designing.
  • Collaboration and Communication:
  • * Collaborate with other teams, including engineering, operations, and NCB InfoSec security
  • team, to ensure a strong security posture.
  • * Partner with Infrastructure and Load-Test engineers on secure topology, scaling, and DR
  • drills.

Required Skills

aws cloud security engineer