Amazon DevOps Consultant CSA-Compliance Automation Global Services Security 

United States, Texas, Arlington 

322945275

Key job responsibilities
- Analyze, design, and align to compliance requirements security controls, and validate that our services, applications, data stores, and emerging technologies are designed and implemented to the highest security standards.
- Automate mapping, validation, and integration of the Security Controls via code and API.
- Responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and decisively taking action to mitigate emerging threats throughout the full secure development life-cycle (SDLC).- Take ownership and deliver on multiple complex objectives which may include some security projects and software development work
- Apply AWS best practices in troubleshooting, code reviews, and security reviews for features, products, technologies, and services.
- Create documentation, build demos, prototypes, and playbooks
A day in the life
Diverse Experiences
Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why AWS
Work/Life BalanceMentorship and Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

- Bachelor Degree or 5+ years of professional or military experience.
- 5+ years of experience as a technical specialist.
- Hands-on experience deploying applications, and provisioning infrastructure with Python and Infrastructure as Code (IaC), using Terraform and CloudFormation.
- 2+ years of hands-on experience of programming languages such as REGO, Go, Java, .Net, C++ or similar object-oriented language.
- Experience developing cloud native CI/CD workflows and tools, such as GitLab, Jenkins, Bamboo, TeamCity, AWS Code Deploy and AWS AFT/CfCT.

- Experience in developing API and orchestrating API integration while prioritizing security best practices
- Experience in developing policy-as-code (OPA with REGO and/or cfn-guard)
- Experience in AppSec, and in implementing secure coding best practices in IaC and applications
- Knowledge of IP networking, segmentation, IAM, encryption, DNS, load balancing
- Experience implementing and designing cloud native security concepts, DevSecOps, or MLOps.