Role: Senior AWS Cloud Security & Automation (multiple openings)
Location: Philadelphia suburbs (PA) and Charlotte, NC — Hybrid, 3 days onsite (Tues–Thurs)
Duration: 6+ months, potential extension
Start: ~2 weeks post-offer (background check required)
The role is platform-level AWS security engineering — not application security, not advisory. Candidates must have real infrastructure ownership experience in large-scale, multi-account AWS environments.
Core must-haves:
- Hands-on AWS: IAM, KMS, Secrets Manager, SCPs — multi-account environments
- CloudFormation (primary IaC — required)
- Python at senior/production level
- Wiz or equivalent CSPM tool (Orca, Prisma, Lacework)
- Snyk / SAST vulnerability scanning — active remediation ownership, not just review
- Experience making high-impact security changes in production enterprise environments
