Introduction
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
Want more jobs like this?
Get jobs delivered to your inbox every week.
Your Role and Responsibilities
• Implement and maintain AWS security controls to ensure compliance with FedRAMP and NIST 800-53 security requirements.
• Perform security architecture reviews of AWS services, applications, and infrastructure to identify risks and ensure the security posture aligns with FedRAMP controls.
• Implement and manage cloud security features such as IAM roles, security groups, firewalls, encryption, and logging (e.g., CloudTrail, GuardDuty, Config).
• Monitor and respond to security alerts and incidents within the AWS environment, ensuring prompt investigation, mitigation, and resolution.
• Conduct regular vulnerability scans and security assessments of AWS infrastructure, identifying and remediating security risks.
Required Technical and Professional Expertise
- Proven experience as an AWS Security Engineer or in a similar role focused on cloud security within a FedRAMP or government compliance environment.
- Deep knowledge of AWS security tools, services, and best practices, including VPC, IAM, CloudTrail, GuardDuty, Security Hub, and encryption methods (KMS).
- Strong understanding of FedRAMP compliance, NIST 800-53 controls, and security frameworks (CIS ).
- Experience with security automation and infrastructure-as-code (e.g., CloudFormation) for secure AWS deployments.
- Excellent problem-solving skills, with the ability to troubleshoot and resolve security issues in a complex cloud
- Ability to obtain and maintain a security clearance from the US federal government.
Preferred Technical and Professional Expertise
• Extensive experience with AWS security tools and services, including security groups, IAM, GuardDuty, and KMS.
• Familiarity with cloud-native security automation tools (e.g., AWS Lambda, CloudFormation).
• Experience with security auditing, monitoring, and incident response in a cloud environment.
• Knowledge of DevSecOps practices and integration of security into CI/CD pipelines.
• Strong understanding of network security principles, including firewall configurations, VPC architecture, and traffic monitoring in AWS.
• Ability to manage security in multi-account AWS environments using AWS Organizations, Control Tower, and Service Control Policies (SCPs).