AWS Security Platform Engineer

AWS Security Platform Engineer urgently required to help shape and secure our clients enterprise AWS environment. This is a key strategic and hands engineering role focused on designing, implementing, and improving AWS-native security controls, guardrails, and cloud security services across a multi-account AWS estate. You’ll work closely with Platform, Cloud, DevOps, and Engineering teams to ensure environments are secure-by-default while still enabling teams to move quickly and efficiently.

What you’ll be doing: Designing and operating AWS security services including GuardDuty, Security Hub, IAM, KMS, CloudTrail and WAF Building and maintaining AWS Landing Zone guardrails and security controls Implementing IAM best practices including least privilege and cross-account access Automating security controls using Terraform, CloudFormation, Lambda and CI/CD pipelines Monitoring AWS environments for threats, vulnerabilities and misconfigurations Embedding security into cloud engineering and deployment pipelines Supporting incident response and remediation across AWS workloads Producing security standards, patterns and documentation Collaborating with Cloud, Platform and DevOps teams to improve security posture What we’re looking for: Strong hands-on AWS security engineering experience Experience implementing AWS-native security tooling and controls Strong knowledge of IAM, SCPs, permission boundaries and AWS identity patterns Experience with AWS Landing Zones and multi-account AWS environments Strong Infrastructure as Code experience with Terraform and/or CloudFormation Experience embedding security into CI/CD and DevOps workflows Ability to automate security processes and controls Strong understanding of cloud security best practices and risk mitigation Excellent stakeholder communication and collaboration skills Nice to have: AWS Security Specialty or AWS Solutions Architect certifications Security certifications such as CISSP, CCSP, GIAC or Security+ Experience within enterprise-scale cloud environments If you’re passionate about AWS security, automation, and building secure-by-default cloud platforms at scale, we’d love to hear from you.