▨ Position Title
Jr Cloud Security Engineer
▨ General Responsibilities
1. Cloud Security Posture Management (CSPM): Configure, monitor, and manage AWS
security services such as AWS Config, AWS Security Hub, and AWS GuardDuty to
ensure continuous compliance and identify potential security threats and
misconfigurations.
2. Cloud Workload Protection (CWPP): Implement and manage a Cloud Workload
Protection Platform to secure workloads (containers, virtual machines, serverless
functions) running in the cloud.
3. Network and Web Application Firewalls: Design, deploy, and maintain security
policies and rules on AWS Firewall and AWS WAF to protect our network and web
applications from common exploits and threats.
4. Incident Response: Investigate security incidents, perform root cause analysis, and lead
remediation efforts within the cloud environment.
5. Automation: Develop and maintain security automation scripts and tools using
languages like Python, Bash, or PowerShell to streamline security operations and
response.
6. Vulnerability Management: Conduct regular vulnerability scanning and penetration
testing, and work with development teams to prioritize and patch identified
vulnerabilities.
7. Policy and Compliance: Help define and enforce security policies, standards, and best
practices to meet regulatory and compliance requirements (e.g., SOC 2, ISO 27001).
8. Access Management: Manage and audit Identity and Access Management (IAM)
policies, roles, and user accounts to enforce the principle of least privilege, with specific
focus on Database Access Control (DAC) using tools like ChakraMax.
9. Threat Modeling: Participate in architectural reviews and threat modeling to ensure
security is built into our cloud solutions from the initial design phase.
▨ Qualifications
- Required Skills & Experience:
- Korean language proficiency required
- 3+ years of experience in a dedicated cloud security role.
- Strong knowledge of AWS security services, including IAM, Security Hub,
- GuardDuty, AWS Config, AWS Firewall, AWS WAF, and AWS Inspector.
- Hands-on experience with CWPP and CSPM solutions.
- Hands-on experience with Database Access Control (DAC) tools such as
- ChakraMax.
- Experience with scripting and automation (e.g., Python, CloudFormation,Terraform).
- Solid understanding of networking concepts and security protocols.
- Familiarity with common web exploits and vulnerabilities (e.g., OWASP Top 10).
- Excellent problem-solving, communication, and collaboration skills.
▨ Preferred Skills & Experience
- AWS Certified Security – Specialty or other relevant certifications (e.g., CISSP, CCSP).
- Experience with container security technologies (e.g., Docker, Kubernetes).
- Familiarity with CI/CD security practices and DevSecOps principles.
- Experience in a large-scale, enterprise-level cloud environment.
Job Type: Full-time
Pay: Up to $110,000.00 per year
Application Question(s):
- Are you bilingual in Korean and English?
- Are you of Korean descent?
- Please specify your current status in the United States, or if you are a foreign national, indicate your visa type.
- Please indicate your total years of relevant experience.
Work Location: In person
