AWS DevSecOps Lead (Terraform Development & Mapping)

Role Overview: We are seeking an AWS DevSecOps Lead with a strong background in Terraform development, AWS cloud infrastructure, and security best practices. This individual will play a pivotal role in driving automation, infrastructure-as-code (IaC), and security-as-code within our cloud environments. The ideal candidate will have hands-on experience implementing and maintaining secure cloud infrastructures using Terraform, AWS services, and DevSecOps practices.

Key Responsibilities:

Leadership & Strategy:

1. Lead the DevSecOps team to design, implement, and optimize automated, secure cloud infrastructure and application delivery pipelines.
2. Develop and enforce security standards, best practices, and policies across all cloud and infrastructure activities.
3. Collaborate with development, operations, and security teams to ensure the alignment of security practices with business goals.

Terraform Development:

1. Design, implement, and manage Terraform modules for AWS infrastructure provisioning and configuration.
2. Ensure reusable, scalable, and secure Terraform code to automate the creation, scaling, and management of AWS resources.
3. Perform version control, testing, and modularization of Terraform code to maintain consistency and reduce technical debt.

Cloud Security:

1. Integrate security practices directly into the CI/CD pipeline, ensuring secure software delivery through automated security testing and vulnerability scanning.
2. Implement and enforce security best practices for identity management, access control, and network security within AWS environments.
3. Use AWS services like IAM, GuardDuty, Inspector, KMS, etc., to manage and improve the security posture of the infrastructure.

CI/CD Pipeline Development & Maintenance:

1. Build and manage CI/CD pipelines using AWS tools (e.g., CodePipeline, CodeBuild, CodeDeploy) and Terraform.
2. Ensure pipeline automation for faster and more reliable releases while maintaining a high-security standard.

Collaboration & Mentorship:

1. Work closely with cross-functional teams to build secure and efficient cloud solutions.
2. Provide technical leadership and mentorship to junior engineers and developers.
3. Stay up-to-date with industry trends and evolving AWS and security technologies.

Monitoring & Compliance:

1. Implement infrastructure monitoring, logging, and alerting systems to ensure the security, performance, and health of the infrastructure.
2. Ensure compliance with relevant industry standards and regulations (e.g., GDPR, HIPAA, SOC2) in the cloud infrastructure.

Incident Response & Risk Management:

1. Lead incident response activities related to cloud infrastructure and security breaches.
2. Conduct security risk assessments and vulnerability assessments to identify and mitigate risks to the cloud environment.

Required Skills & Qualifications:

Experience:

1. Minimum of 5-7 years of experience in DevSecOps, with a strong focus on AWS cloud environments.
2. At least 3 years of experience in Terraform development and infrastructure automation.
3. Strong experience with AWS services such as EC2, S3, IAM, Lambda, VPC, RDS, SQS, and CloudWatch.
4. Expertise in cloud security practices, including IAM, encryption, vulnerability scanning, and threat detection.
5. Experience with containerization and orchestration technologies (Docker, Kubernetes, ECS, EKS) is a plus.

Skills:

1. Strong proficiency in Infrastructure as Code (IaC) using Terraform, CloudFormation (optional).
2. Proficiency in DevSecOps tools like Jenkins, GitLab CI, or similar.
3. Familiarity with AWS security tools (GuardDuty, Inspector, KMS, etc.) and general security concepts.
4. Knowledge of CI/CD pipeline automation, security testing, and deployment tools.
5. Experience with version control systems (Git, Bitbucket, GitHub).
6. Experience with monitoring and logging tools (e.g., Datadog, CloudWatch, Splunk).
7. Strong scripting skills (Bash, Python, Shell, etc.) for automation.

Certifications:

1. AWS Certified Solutions Architect - Professional (preferred).
2. AWS Certified DevOps Engineer - Professional (preferred).
3. Certified Information Systems Security Professional (CISSP) or other security certifications are a plus.
4. HashiCorp Certified: Terraform Associate (preferred).

Soft Skills:

1. Strong communication skills with the ability to explain complex technical concepts to both technical and non-technical stakeholders.
2. Strong problem-solving and analytical skills.
3. Ability to work independently and lead teams effectively in a fast-paced environment.