Job Information
Infinitive Inc AWS Cloud Engineer (Cloud Custodian & Policy Configuration) in Ashburn, Virginia
*Candidates must be local to the Washington D.C. metro area.
About Infinitive:
Infinitive is a data and AI consultancy that enables its clients to modernize, monetize and operationalize their data to create lasting and substantial value. We possess deep industry and technology expertise to drive and sustain adoption of new capabilities. We match our people and personalities to our clients' culture while bringing the right mix of talent and skills to enable high return on investment.
Infinitive has been named “Best Small Firms to Work For” by Consulting Magazine 6 times most recently in 2023. Infinitive has also been named a Washington Post “Top Workplace”, Washington Business Journal “Best Places to Work”, and Virginia Business “Best Places to Work.”
About the Role:
We are seeking a skilled AWS Cloud Engineer with hands-on experience in implementing cloud governance, compliance policies, and automation using AWS services and Cloud Custodian. In this role, you will be responsible for designing, deploying, and managing infrastructure on AWS while ensuring adherence to organizational policies through the configuration of AWS Identity and Access Management (IAM), Security, and Cloud Custodian policies. The ideal candidate is experienced in securing and optimizing cloud environments, automating compliance tasks, and managing AWS cloud infrastructure at scale.
Key Responsibilities:
Design, configure, and manage AWS infrastructure using best practices in security, reliability, and scalability.
Implement and automate compliance and security policies using Cloud Custodian, AWS Config, and other AWS services.
Develop and enforce AWS IAM policies, permissions boundaries, and roles to manage access and ensure compliance.
Automate the monitoring, reporting, and remediation of security and compliance violations in the AWS environment.
Collaborate with security teams to ensure AWS environments adhere to regulatory and organizational standards (e.g., GDPR, HIPAA, SOC 2, PCI-DSS).
Perform security audits and risk assessments using AWS services (e.g., AWS CloudTrail, AWS GuardDuty, AWS Security Hub).
Troubleshoot and resolve issues related to AWS infrastructure, networking, and security configurations.
Develop and maintain documentation for operational processes, security configurations, and compliance policies.
Work in an Agile environment and participate in sprint planning, reviews, and daily standups.
Required Qualifications:
Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent experience.
2+ years of experience in AWS Cloud engineering, architecture, or operations.
Strong experience with AWS IAM, AWS Organizations, S3, VPC, EC2, CloudTrail, GuardDuty, and other core AWS services.
Hands-on experience with Cloud Custodian for policy-as-code management, automation, and remediation.
Experience configuring and managing AWS security policies, such as resource tagging, encryption, and access control.
Proficiency in scripting and automation using Python, AWS Lambda, or AWS Systems Manager.
Familiarity with cloud governance and compliance frameworks such as CIS Benchmarks, NIST, or other security standards.
Experience working with CI/CD tools (e.g., Jenkins, GitLab, AWS CodePipeline) to automate policy deployment and updates.
Excellent problem-solving skills and ability to troubleshoot complex AWS infrastructure issues.
Preferred Qualifications:
AWS Certified Solutions Architect, AWS Certified Security Specialty, or other relevant AWS certifications.
Experience with additional AWS governance tools such as AWS Config, AWS Service Control Policies (SCPs), and AWS Control Tower.
Familiarity with monitoring and logging tools like CloudWatch, AWS CloudTrail, or third-party integrations (e.g., Datadog, Splunk).
Understanding of Terraform, AWS CloudFormation, or other Infrastructure-as-Code (IaC) tools for automating cloud resource management.
Experience with Docker, Kubernetes, or AWS ECS/EKS for containerized application management.
Powered by JazzHR
