AWS Security Sr. Engineer (Threat Modeling) - Bangalore, India - JPMC

Overview:

We are seeking an experienced and highly skilled Senior AWS Security Engineer with a strong focus on Threat Modeling to join our Cloud Security team. In this role, you will be responsible for assessing, identifying, and mitigating potential security risks across our AWS cloud infrastructure and applications. You will collaborate with product engineering teams to identify security vulnerabilities early in the design and development stages, while promoting security best practices across all cloud-based systems.

As part of a rapidly evolving security landscape, you will work with cross-functional teams to build, enhance, and implement threat models that help safeguard our infrastructure, applications, and data in the AWS environment.

Key Responsibilities:

Threat Modeling: Lead and perform threat modeling exercises for AWS cloud-based applications and services, identifying security threats, vulnerabilities, and attack vectors early in the development lifecycle.

Cloud Security Design: Work closely with development teams to integrate security into the design and architecture of AWS-based systems and applications. Provide guidance on secure AWS configurations and secure design principles.

Risk Assessment & Mitigation: Assess the security risks of existing systems, architectures, and processes. Recommend mitigation strategies for identified risks, ensuring they align with AWS security best practices.

Security Requirements & Compliance: Define security requirements for AWS cloud environments, ensuring that security controls and compliance requirements (e.g., SOC 2, GDPR, HIPAA, etc.) are met across all applications and infrastructure.

Automation & Tooling: Develop and implement automated security testing, monitoring, and reporting tools for threat detection and vulnerability management within the AWS ecosystem.

Incident Response & Vulnerability Management: Collaborate with incident response and security operations teams to identify, assess, and resolve security incidents. Lead post-incident analysis and root cause investigations.

Training & Awareness: Provide training, guidance, and mentorship to development and operations teams on threat modeling, secure coding practices, and AWS-specific security best practices.

Documentation & Reporting: Create comprehensive documentation on threat models, risk assessments, mitigation plans, and security controls. Provide regular reports to senior leadership on security posture and progress on remediation efforts.

Required Skills and Qualifications:

Experience: 5+ years of experience in cloud security, with a focus on AWS.

• Proven experience with Wiz, Turbot, Custom Rego Policies, Custom Org Constraints, and AWS GraphQL.
• Solid understanding of threat modeling methodologies and tools, specifically for AWS environments.
• Deep knowledge of AWS security best practices, including but not limited to IAM, VPC security, S3, KMS, CloudTrail, GuardDuty, and Security Hub.

Expertise in Threat Modeling: Strong experience using industry-standard threat modeling methodologies (e.g., STRIDE, PASTA, etc.) to identify and mitigate potential threats in cloud environments, especially AWS.

AWS Knowledge: Deep understanding of AWS security services and best practices, including IAM, VPC, Security Groups, KMS, CloudTrail, GuardDuty, Inspector, Macie, etc. Experience securing infrastructure and applications in AWS environments.

Security Frameworks & Standards: Strong knowledge of security frameworks, regulations, and standards (e.g., NIST, OWASP, CIS, PCI-DSS, SOC 2, etc.) and experience ensuring compliance within AWS environments.

Programming & Scripting: Proficiency in at least one programming or scripting language (e.g., Python, Go, Bash) for automation and security tooling.

Penetration Testing & Vulnerability Management: Familiarity with common penetration testing and vulnerability scanning tools, and ability to assess and mitigate risks in cloud environments.

Communication & Collaboration: Excellent communication skills with the ability to convey complex security concepts to both technical and non-technical stakeholders. Strong collaboration skills to work effectively across engineering and security teams.

Preferred Qualifications:

• AWS Certified Security Specialty or other relevant AWS certifications.
• Experience with container security (e.g., Docker, Kubernetes) in AWS.
• Experience working with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, etc., and understanding of security challenges related to IaC.
• Experience with security tools for continuous integration/continuous delivery (CI/CD) pipelines, code scanning, and container security.
• Knowledge of advanced attack techniques such as lateral movement, privilege escalation, and cloud-native vulnerabilities.