AWS Engineer - Applications / Vulnerabilities / Security Groups
We have a 6 month contract to hire opportunity for an AWS Engineer. The position is remote and the candidate can sit anywhere in the US. The focus of this role is for candidates who have the following AWS tools list below. AWS experience with Application patching for AWS, AWS Vulnerabilities with EKS, Lambdas, applications, EC2, IAM, understanding CVE's etc. AWS accounts need software upgrade to add new features, improving performance and user experience, fix bugs, and while ensuring compatibility with other systems. Additionally, it will enhance security and help to reduce known vulnerabilities. The resource will execute the upgrade, testing and production release and work with VRM team to close the vulnerabilities and applications. The AWS Engineer needs to have a background with implementations, migrations and applications. Experience with AWS EKS, Lambda, VPC, Security Groups, EC2, DynamoDB, RDS, IAM & KMS, Route 53, MSK, S3, Glue, Observability concepts. Scripting and CLI, CI/CD - GitLab. 6 Month Contract-to-Hire | 100% Remote (US Only) We are seeking an AWS Engineer with strong Site Reliability Engineering (SRE) experience to support a large-scale cloud security remediation and modernization effort across a production AWS environment. This role will focus on identifying, analyzing, and remediating vulnerabilities across AWS services and containerized workloads, while also helping modernize legacy infrastructure configurations. The ideal candidate has broad AWS experience, strong knowledge of cloud security best practices, CVE-driven vulnerability remediation, and infrastructure-as-code, and the ability to work across multiple AWS services to identify and resolve configuration and security issues. This role will work closely with security, platform, and engineering teams to remediate vulnerabilities, modernize infrastructure configurations, and support the transition from legacy deployments to modern infrastructure automation.
Key Responsibilities
Cloud Security & Vulnerability Remediation
- Identify and remediate AWS vulnerabilities and configuration issues across services such as EKS, EC2, Lambda, IAM, and application workloads.
- Analyze and resolve CVE-driven vulnerabilities, ensuring infrastructure and applications meet security compliance standards.
- Work with the Vulnerability Risk Management (VRM) team to validate remediation efforts and close security findings.
- Review findings from Wiz cloud security scanning, determine legitimate vulnerabilities versus false positives, and implement corrective actions.
AWS Infrastructure & Application Upgrades
- Execute AWS software upgrades and patching efforts across multiple AWS services and application environments.
- Improve platform performance, stability, and security posture through infrastructure upgrades and configuration updates.
- Ensure upgrades maintain compatibility with existing systems, services, and integrations.
- Support upgrade testing, validation, and production release processes.
Kubernetes & Container Environment Awareness
- Maintain awareness of Kubernetes and containerized environments running on AWS EKS.
- Identify vulnerabilities and dependency issues impacting container workloads and assist with remediation planning.
- Understand container dependencies, upgrade requirements, and security implications within Kubernetes-based environments.
Infrastructure-as-Code & Cloud Architecture
- Review and maintain infrastructure defined in CloudFormation templates, understanding legacy deployments and configurations.
- Support the migration of infrastructure from CloudFormation to Terraform as part of modernization initiatives.
- Ensure infrastructure deployments follow secure and scalable architecture standards.
CI/CD & Automation
- Work with GitLab-based CI/CD pipelines to implement infrastructure updates and vulnerability remediation changes.
- Utilize AWS CLI, scripting, and automation tools to streamline remediation and deployment activities.
Collaboration & Operational Support
- Partner with security, platform engineering, networking, and application teams to coordinate remediation efforts.
- Participate in troubleshooting and remediation of issues affecting the production AWS environment.
- Assist in managing and prioritizing a large backlog of vulnerability remediation items (potentially 4,000+ findings).
Required Skills & Experience
- Strong AWS engineering or SRE background supporting production cloud environments
- Experience identifying and remediating cloud vulnerabilities and CVEs
- Hands-on experience with AWS services including:
- EKS (Kubernetes)
- Lambda
- EC2
- IAM & KMS
- VPC & Security Groups
- DynamoDB
- RDS
- Route 53
- MSK
- S3
- Glue
- Understanding of cloud observability and monitoring concepts
- Experience with AWS CLI, scripting, and automation
- Experience working with CI/CD pipelines (GitLab preferred)
Preferred Experience
- Experience with cloud security tools such as Wiz
- Experience migrating infrastructure from CloudFormation to Terraform
- Experience supporting Kubernetes/EKS container environments
- Experience working in SRE or platform engineering teams
Apply tot his job Apply To this Job