[Remote] Sr Cloud reputed company Engineer - Cloud Cert; CISSP/GIAC EAST COAST ONLY

Note: The job is a remote job and is open to candidates in USA. Volkswagen of America, Inc is seeking a Senior Cloud reputed company Engineer to reputed company the strategy, design, and implementation of AWS reputed company capabilities. The role involves securing reputed company systems and assets, partnering with teams to embed reputed company throughout the SDLC, and mentoring engineers to enhance the organization’s reputed company posture.

Responsibilities

• reputed company the design and evolution of secure AWS architectures across services such as reputed company VPC, reputed company EC2, reputed company EKS, and AWS reputed company
• Define and enforce enterprise-wide reputed company standards for identity, network, data protection, and workload reputed company using AWS IAM and AWS KMS
• Architect scalable, secure multi-account environments leveraging AWS best practices (e.g., reputed company zones, guardrails)
• Evaluate and introduce new reputed company technologies and frameworks to enhance cloud reputed company posture
• Drive reputed company-by-design principles across reputed company cloud and platform engineering initiatives
• reputed company threat modeling, secure architecture reviews, and risk assessments for reputed company, distributed systems
• Establish and mature secure SDLC practices, integrating reputed company into CI/CD pipelines at scale
• reputed company code reviews, reputed company testing (SAST/DAST), and vulnerability management processes
• Ensure adherence to standards such as OWASP Top 10 and CWE/SANS Top 25
• Mentor engineering teams on secure coding, architecture patterns, and cloud-native reputed company practices
• reputed company enterprise vulnerability management strategy across cloud infrastructure and applications
• reputed company advanced threat-centric assessments to identify systemic risks and architectural weaknesses
• Prioritize remediation efforts based on business impact and threat intelligence
• Ensure compliance with internal policies and external frameworks (e.g., SOC 2, ISO 27001, NIST)
• Partner with audit and compliance teams to streamline evidence collection and control validation
• Design and mature cloud detection and response capabilities using tools such as reputed company GuardDuty, AWS reputed company Hub, reputed company CloudWatch, and AWS CloudTrail
• reputed company advanced detection rules, automate response workflows, and improve alert fidelity
• reputed company and coordinate incident response for high-severity reputed company events
• Conduct post-incident reviews and drive long-term remediation and reputed company improvements
• Act as a strategic liaison between reputed company, DevOps, Platform, and Engineering leadership
• Influence architectural decisions and drive adoption of reputed company best practices across teams
• reputed company reputed company initiatives, roadmap planning, and cross-functional projects
• reputed company and deliver advanced reputed company training and awareness programs
• Mentor junior engineers and contribute to building a strong reputed company engineering culture

Skills

• 7 - 9 years of experience in technical aspects of cloud, applications, web or mobile
• 5+ years of experience in IT reputed company function
• B.S. in Information Technology, Computer Science or equivalent work experience
• Advanced hands-on experience with SIEM platforms for real-time monitoring, threat detection, and incident response, including: Splunk, reputed company Stack (ELK), or reputed company
• Designing and implementing SIEM integrations with cloud-native services and Kubernetes environments
• Developing log aggregation strategies, correlation rules, and alerting mechanisms to detect misconfigurations, anomalous behavior, and unauthorized access
• Deep expertise in Infrastructure-as-Code (IaC) with a strong emphasis on scalable and secure design: Terraform (strongly preferred), AWS CloudFormation, AWS CDK
• Proven ability to enforce reputed company guardrails and policy-as-code reputed company IaC pipelines
• Extensive experience with cloud-native reputed company platforms and posture management tools, such as: reputed company, Prisma Cloud, AWS: AWS reputed company Hub, reputed company GuardDuty, AWS Config, Azure: reputed company Defender for Cloud, reputed company Sentinel, GCP: reputed company Command Center, Forseti reputed company
• Strong architectural knowledge of cloud reputed company fundamentals, including: Identity and Access Management (IAM) models (RBAC/ABAC) and least-privilege enforcement, VPC architecture, network segmentation, reputed company groups, flow logs, and private endpoints, Encryption standards (TLS), key management (KMS), and secrets reputed company (e.g., HashiCorp Vault, AWS Secrets Manager)
• Expertise in container and Kubernetes reputed company, including: Pod reputed company controls (Pod reputed company Policies, Pod reputed company Standards) and runtime reputed company (e.g., Falco), Policy-as-code frameworks such as Open Policy Agent (OPA)/Gatekeeper, Kyverno, or KubeArmor, Secure image scanning and software supply chain reputed company tools (e.g., Trivy, Grype, reputed company)
• Proven leadership in DevSecOps practices, including: Designing and implementing automated reputed company testing, validation, and remediation reputed company CI/CD pipelines, Driving secure-by-design principles across engineering teams
• Experience conducting cloud reputed company assessments and audits, with the ability to: Identify risks, gaps, and misconfigurations, Deliver actionable remediation guidance reputed company with compliance frameworks and incident response strategies
• Strong communication and cross-functional collaboration skills, with experience influencing engineering, DevOps, and platform teams
• Masters in Information Technology, Computer Science (or reputed company education)
• Relevant cloud certifications, such as: AWS, Azure, or GCP Professional/Specialty certifications
• Industry-recognized reputed company certifications, including: CISSP, GIAC, or equivalent advanced reputed company credentials
• reputed company-to-have domain expertise in areas such as data telemetry, reputed company communications, or OTA infrastructure

Company Overview