Technical expertise in securing cloud-based services and applications on AWS, leveraging managed services where possible (eg. KMS, GuardDuty, SecretsManager, CloudTrail, etc.)
Experience in Identity, Logging, and SIEM implementations and automation.
At least 3 years of hands-on development experience with API development, Data Analysis, SQL, Python, Terraform, and Git.
A deep understanding of information security, risk management, and data privacy, backed by practical experience in the field.
Knowledge and experience in applying cryptography, including encryption, hashing, key management, digital certificates, and TLS, to protect data and communications.
Experience in developing and managing security policies and standards.
Familiarity with security frameworks such as SOC, NIST, ISO, and PCI.
Familiarity with regulatory compliance regulations such as GDPR, HIPAA, FedRAMP and Privacy Shield.
Experience managing disaster recovery and business continuity programs.
The ability to communicate complex security and risk management concepts effectively to diverse audiences and translate them into business terms, while recommending alternative solutions to stakeholders.
Strong collaboration skills to work cross-functionally with internal and external stakeholders.
Solid project management skills, with proficiency in Jira.
Exceptional communication skills, both written and verbal, with the ability to effectively convey complex security concepts to both technical and non-technical audiences.