We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
Back to search results / More jobs like this
Back to search results
Boston Medical Center jobs

AWS Cloud Security Engineer

Boston Medical Center
United States, Massachusetts, Quincy
Mar 21, 2025

POSITION SUMMARY:

The AWS Cloud Security Engineer role at Boston Medical Center Health System (BMCHS) is responsible for the development, management, and ongoing support of our public cloud information security strategy. This role will collaborate closely with infrastructure, application, and other internal and partner teams to achieve organizational goals in the public cloud, while promoting and maintaining strong adherence to and enforcement of security policies and best practices.TheAWS Cloud Security Engineer IIwill provide value and be a primary source of knowledge in building secure, compliant, and cost-effective AWS solutions. Team members in this role will administer, maintain, and ensurethat AWS and 3rdparty securitytechnologies arehighlyavailable, actionable,and can support the critical needs of the business. Strong communication skills and the ability to build/maintain/grow new relationships will ensure you can execute effectively in this role.

Position: AWS Cloud Security Engineer

Department: Information Technology

Schedule: Full Time

ESSENTIAL RESPONSIBILITIES / DUTIES:


  • Design, manage, support, and implement cloud security policies, services, and projects.
  • Provide architectural security guidance in compliance with industry standards (HIPAA, NIST, CIS) for public cloud environments.
  • Review and provide security-significant feedback on designs and proposed changes submitted by others within the organization.
  • Frequently communicate and present technical data to audiences with varying levels of technical knowledge.
  • Frequently communicate with and present to upper management.
  • Manage cloud firewall, DLP, and vulnerability scanning technology.
  • Support L1 in resolving cloud-security related issues and follow/improve documented Incident Response playbooks
  • Research new technology and assist in proof-of-concept testing.
  • Document security standards and processes.
  • Work with other internal BMC Security / infrastructure teams to remediate vulnerabilities and other security issues.
  • Contribute to design decisions for new technology or existing technology being used in a new way.
  • Coordinate findings remediation of known vulnerabilities within the organization's cloud presence.
  • Assist in the education of the workforce on security topics through training and awareness opportunities.
  • Provide less experienced security engineers with feedback and guidance on projects and skills development.

(The above statements in this job description are intended to depict the general nature and level of work assigned to the employee(s) in this job. The above is not intended to represent an exhaustive list of accountable duties and responsibilities required).

JOB REQUIREMENTS

EDUCATION:

Bachelor's degree in Computer Science, Engineering, or related discipline; equivalent experience acceptable.

CERTIFICATES, LICENSES, REGISTRATIONS REQUIRED:

  • CCSP, CISSP, CEH, Security+, or other security related certifications preferred

EXPERIENCE:


  • 3+ years of experience managing information security in a public cloud environment (AWS, Azure, GCP). Strong, demonstrated AWS expertise required
  • 4+ years of experiences in information security
  • 7+ years of experience in IT (information technology), preferentially with development, network, or systems administration experience
  • Healthcare domain knowledge and working in regulated environments is a plus (HIPAA, HITRUST, SOC2, PCI-DSS)
  • AWS Certifications,ArchitectAssociate or Professionalrequired. Security or Advanced Networking level specialty certs are a plus

KNOWLEDGE AND SKILLS:


  • Expert-level knowledge of AWS GuardDuty, Security Hub, Macie, Inspector, Trusted Advisor
  • Knowledge of Edge protection technologies such as AWS Shield, WAF, CloudFront
  • Strong working understanding of Identity and Access Management (IAM) and SSO Integration via Active Directory (Azure AD / ADFS)
  • Experience working in organizations with top level Control Tower or Landing Zone Accelerator (SCP's, Guardrails, Config Rules, etc.)
  • Experience with monitoring systems such as CloudWatch/ VPC Flow Logsand other industry standard visibility platforms (Splunk,DataDog, Dynatrace, New Relic, etc.)
  • Experience with Logging and log monitoring (CloudWatch and CloudTrail) both for security and compliance efforts
  • Proficiency with one or more scripting languages (python, json, yaml, bash, etc.)
  • Proficiency with Infrastructure as Code (IaC), including CloudFormation and/or Terraform
  • Understanding of CI/CD on AWS platform
  • Expert knowledge of AWS network and security features (VPC, Security Groups, NACLs, ALB/NLB, Transit Gateway, etc.)
  • Experiencesupportingapplications with native services and serverless architecture (Lambda) on AWS platform
  • Strong understanding of high availability solutioning (multi-AZ / regions, Backup) and how security fits into this model
  • Demonstrated history of moving mission-critical applications from the datacenter to AWS
  • Ability to effectively adapt to rapidly changing technology and apply it to business needs

Equal Opportunity Employer/Disabled/Veterans

Applied = 0
MORE JOBS LIKE THIS
#alert

(web-56554b8dcd-pmmtk)