Logo for Boston Medical Center (BMC)

AWS Cloud Security Engineer- Remote

Role overview

Qualifications

  • Bachelor's degree in Computer Science, Engineering, or related discipline; equivalent experience acceptable.
  • 3+ years of experience managing information security in a public cloud environment (AWS, Azure, GCP) with strong AWS expertise required.
  • 4+ years in information security and 7+ years in IT, preferably with development, networking, or systems administration experience.
  • AWS Architect Associate or Professional certification required; additional Security or Advanced Networking certifications (e.g., CCSP, CISSP, CEH, Security+) preferred.

Responsibilities

  • Design, manage, support, and implement cloud security policies, services, and projects; provide architectural security guidance in compliance with HIPAA, NIST, CIS for public cloud environments.
  • Review designs and provide security-significant feedback on proposals; communicate findings to audiences with varying technical levels and to upper management.
  • Manage cloud firewall, DLP, and vulnerability scanning technologies; support L1 in resolving cloud-security issues and coordinate incident response playbooks; remediate vulnerabilities with other security/infrastructure teams.
  • Document security standards and processes; contribute to design decisions for new or existing technology; educate the workforce on security topics and mentor less experienced security engineers.

About the company

Boston Medical Center (BMC) logo

Boston Medical Center (BMC)

Hospitals & Health Care

Boston Medical Center (BMC) is a 511-bed, equity-led academic medical center and a proud member of the Boston Medical Center Health System. BMC delivers a model of healthcare where innovative and equitable care empowers all patients to thrive. As a premier academic medical center in Boston, a national leader in clinical care, and the largest essential hospital in New England, BMC’s world-class clinicians provide comprehensive care in more than 70 specialties and subspecialties. BMC understands that health equity is foundational to community wellbeing, and it requires transformative thinking, rewriting policies that have historically underserved communities, creating access to cutting-edge care for all, and co-creating programs with community partners that serve as national models for improving patient outcomes and experiences. We are invested in going above and beyond what is traditionally considered medicine to meet the needs of our communities and address disparities in clinical care and beyond. By pioneering cutting-edge research and advancing scientific discovery, we are fostering a culture of innovation where novel treatments and therapies are not only effective but also accessible. Boston Medical Center Health System is an integrated academic healthcare system that models a new kind of excellence in healthcare where clinical and operational innovation meets health equity and access. With more than 15,000 dedicated employees, BMC Health System is committed to advancing scientific discovery and access to care, partnering with our communities, and developing scalable approaches to restore and maintain health. Visit jobs.bmc.org for career opportunities.

Company details

Company typeLarge
IndustryHospitals & Health Care
Company size5001 - 10000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

POSITION SUMMARY:

The AWS Cloud Security Engineer role at Boston Medical Center Health System (BMCHS) is responsible for the development, management, and ongoing support of our public cloud information security strategy. This role will collaborate closely with infrastructure, application, and other internal and partner teams to achieve organizational goals in the public cloud, while promoting and maintaining strong adherence to and enforcement of security policies and best practices. The AWS Cloud Security Engineer II will provide value and be a primary source of knowledge in building secure, compliant, and cost-effective AWS solutions. Team members in this role will administer, maintain, and ensure that AWS and 3rd party security technologies are highly available, actionable, and can support the critical needs of the business. Strong communication skills and the ability to build/maintain/grow new relationships will ensure you can execute effectively in this role.

Position: AWS Cloud Security Engineer       

Department: Information Technology

Schedule: Full Time

ESSENTIAL RESPONSIBILITIES / DUTIES:

  • Design, manage, support, and implement cloud security policies, services, and projects.
  • Provide architectural security guidance in compliance with industry standards (HIPAA, NIST, CIS) for public cloud environments.
  • Review and provide security-significant feedback on designs and proposed changes submitted by others within the organization.
  • Frequently communicate and present technical data to audiences with varying levels of technical knowledge.
  • Frequently communicate with and present to upper management.
  • Manage cloud firewall, DLP, and vulnerability scanning technology.
  • Support L1 in resolving cloud-security related issues and follow/improve documented Incident Response playbooks
  • Research new technology and assist in proof-of-concept testing.
  • Document security standards and processes.
  • Work with other internal BMC Security / infrastructure teams to remediate vulnerabilities and other security issues.
  • Contribute to design decisions for new technology or existing technology being used in a new way.
  • Coordinate findings remediation of known vulnerabilities within the organization’s cloud presence.
  • Assist in the education of the workforce on security topics through training and awareness opportunities.
  • Provide less experienced security engineers with feedback and guidance on projects and skills development. 

 (The above statements in this job description are intended to depict the general nature and level of work assigned to the employee(s) in this job.  The above is not intended to represent an exhaustive list of accountable duties and responsibilities required).

JOB REQUIREMENTS

EDUCATION:

Bachelor’s degree in Computer Science, Engineering, or related discipline; equivalent experience acceptable.

CERTIFICATES, LICENSES, REGISTRATIONS REQUIRED:

  • CCSP, CISSP, CEH, Security+, or other security related certifications preferred

EXPERIENCE:

  • 3+ years of experience managing information security in a public cloud environment (AWS, Azure, GCP). Strong, demonstrated AWS expertise required
  • 4+ years of experiences in information security
  • 7+ years of experience in IT (information technology), preferentially with development, network, or systems administration experience
  • Healthcare domain knowledge and working in regulated environments is a plus (HIPAA, HITRUST, SOC2, PCI-DSS)
  • AWS Certifications, Architect Associate or Professional required. Security or Advanced Networking level specialty certs are a plus

KNOWLEDGE AND SKILLS:

  • Expert-level knowledge of AWS GuardDuty, Security Hub, Macie, Inspector, Trusted Advisor
  • Knowledge of Edge protection technologies such as AWS Shield, WAF, CloudFront
  • Strong working understanding of Identity and Access Management (IAM) and SSO Integration via Active Directory (Azure AD / ADFS)
  • Experience working in organizations with top level Control Tower or Landing Zone Accelerator (SCP’s, Guardrails, Config Rules, etc.)
  • Experience with monitoring systems such as CloudWatch / VPC Flow Logs and other industry standard visibility platforms (Splunk, DataDog, Dynatrace, New Relic, etc.)
  • Experience with Logging and log monitoring (CloudWatch and CloudTrail) both for security and compliance efforts
  • Proficiency with one or more scripting languages (python, json, yaml, bash, etc.)
  • Proficiency with Infrastructure as Code (IaC), including CloudFormation and/or Terraform
  • Understanding of CI/CD on AWS platform
  • Expert knowledge of AWS network and security features (VPC, Security Groups, NACLs, ALB/NLB, Transit Gateway, etc.)
  • Experience supporting applications with native services and serverless architecture (Lambda) on AWS platform
  • Strong understanding of high availability solutioning (multi-AZ / regions, Backup) and how security fits into this model
  • Demonstrated history of moving mission-critical applications from the datacenter to AWS
  • Ability to effectively adapt to rapidly changing technology and apply it to business needs

Compensation Range:

$89,500.00- $130,000.00

This range offers an estimate based on the minimum job qualifications. However, our approach to determining base pay is comprehensive, and a broad range of factors is considered when making an offer. This includes education, experience, skills, and certifications/licensures as they directly relate to position requirements; as well as business/organizational needs, internal equity, and market-competitiveness. In addition, BMCHS offers generous total compensation that includes, but is not limited to, benefits (medical, dental, vision, pharmacy), discretionary annual bonuses and merit increases, Flexible Spending Accounts, 403(b) savings matches, paid time off, career advancement opportunities, and resources to support employee and family well-being. 

NOTE: This range is based on Boston-area data, and is subject to modification based on geographic location.

Equal Opportunity Employer/Disabled/Veterans

According to the FTC, there has been a rise in employment offer scams. Our current job openings are listed on our website and applications are received only through our website. We do not ask or require downloads of any applications, or “apps” job offers are not extended over text messages or social media platforms. We do not ask individuals to purchase equipment for or prior to employment. 

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Cloud Security Engineer Related jobs

Other jobs at Boston Medical Center (BMC)

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.