Principal Security Consultant
Description:
We are hiring!
Please find the job description below.
If you're interested, I would appreciate it if you could share your updated resume with me.
Role: Security & Policy Engineer Location: Scottsdale, AZ Type: Contract Job Description: Join our security engineering team to design and enforce policy-driven cloud security frameworks.
This role ensures FinTech-grade controls, Zero Trust, and compliance automation across our AWS environments.
Key Responsibilities:Define and manage IAM roles/policies, Security Groups, and NACLsImplement OPA (Open Policy Agent) and Policy-as-Code for multi-cloud/Kubernetes governanceAutomate compliance enforcement for PCI-DSS, SOC 2, ISO 27001, and internal auditsContribute to Zero Trust Architecture, micro-segmentation, and privileged access governanceCollaborate with DevOps and Platform teams to embed security in pipelines (DevSecOps)Monitor and respond to alerts from GuardDuty, Config, CloudTrail, and external SIEMs Required Skills:Strong expertise in AWS IAM, cross-account access, Secrets Manager, and Identity FederationHands-on experience with OPA, Rego, and tools like Gatekeeper/KyvernoKnowledge of encryption mechanisms (KMS, CMK), secure key rotation, and access auditsExperience in continuous compliance checks, audit readiness, and GRC platformsBackground in incident response, threat modeling, and cloud-native security toolsExperience protecting PII, financial transaction data, and meeting security SLAsUnderstanding of token-based access, SSO integration, and access boundary controlsAdvanced degrees and certifications such as CISSP, AWS Certified Security – Specialty, or similar are a plus