Responsibilities
- Monitor production systems with a focus on security, availability, and threat detection.
- Create and manage secure Infrastructure as Code to ensure scalable and consistent platform environments.
- Support successful security audits by automating compliance checks and gathering required evidence.
- Collaborate across development, security, and operations teams to strengthen DevSecOps practices.
- Administer key AWS services including EKS, RDS, S3, and Lambda with attention to encryption, access controls, and reliability.
- Design and improve monitoring strategies for system performance and security using OpenSearch, Prometheus, and Grafana.
- Ensure all cloud environments adhere to established security benchmarks and requirements.
- Enforce security policies through code using Terraform to maintain continuous audit readiness.
- Maintain configurations for automation pipelines, secure deployment processes, and vulnerability scanning tools.
- Use standardized software development lifecycle tools to support consistent and secure production releases.
- Partner with engineering teams to verify correct, secure, and compliant application deployments.
- Guide software engineers in secure infrastructure design and implementation practices.
- Participate in on-call rotations to address critical operational incidents as needed.
Other
- This role includes on-call duties involving response to operational incidents.
- The organization prioritizes minimizing alerts by designing resilient systems that lower operational burden.
