Senior AWS DevSecOps Engineer - Remote Opportunity

About the Role

Are you looking to work for an innovative and exciting company from Silicon Valley or New York, 100% remotely? We are looking for a highly motivated and experienced Senior AWS DevSecOps Engineer who is passionate about building secure, scalable cloud infrastructure and committed to excellence in security-first environments. This Senior AWS DevSecOps Engineer remote position is strictly focused on hands-on AWS DevSecOps experience in regulated environments (HIPAA, SOC 2, PCI-DSS, or similar).

What You'll Do

• Design, build, and maintain secure-by-default AWS infrastructure in compliance with regulated environments (HIPAA or similar).
• Implement and manage AWS services such as VPC, RDS, S3, Lambda, IAM, KMS, CloudTrail, GuardDuty, Security Hub, and WAF.
• Configure and enforce IAM least-privilege access policies across all services and environments.
• Design and maintain CI/CD pipelines with integrated security controls, including SAST, dependency scanning, and secrets detection.
• Implement encryption strategies for data at rest and in transit (KMS, TLS, key rotation, certificate management).
• Set up and monitor security logging, auditing, and threat detection systems.
• Support compliance requirements (HIPAA, SOC 2, PCI-DSS) including audits, documentation, and remediation.
• Collaborate with engineering teams to ensure secure architecture and infrastructure best practices.
• Build and maintain Infrastructure as Code (Terraform or CloudFormation) for all environments.
• Act as the go-to expert for security incidents, risk mitigation, and infrastructure decisions.

Requirements

• 3+ years of hands-on AWS DevSecOps experience with a strong security-first approach.
• Proven experience working in regulated environments (HIPAA, PCI-DSS, SOC 2, or equivalent).
• Strong expertise in AWS security services (KMS, IAM, GuardDuty, Security Hub, CloudTrail, WAF, Secrets Manager).
• Experience designing and implementing CI/CD pipelines with security gates.
• Hands-on experience with Infrastructure as Code (Terraform or CloudFormation).
• Strong understanding of encryption standards (TLS, AES-256, key management, certificate lifecycle).
• Experience with AWS IoT Core or strong AWS experience with ability to implement IoT architectures.
• Strong analytical and problem-solving skills with a proactive and ownership-driven mindset.
• Highly organized, detail-oriented, and execution-focused.

Nice to Have

• AWS Certified Security Specialty or AWS Certified DevOps Engineer.
• Direct experience implementing HIPAA technical safeguards.

What We Offer

• This is a long-term contract opportunity structured in phases over a 24-month period.
• Compensation will be handled on a monthly salary basis, adjusted according to the expected workload and hours per phase.
• While the role is paid monthly, compensation will reflect the number of hours worked in each phase (full-time, reduced hours, and maintenance phase).
• This role is ideal for engineers who thrive in high-ownership environments and enjoy building secure systems from the ground up.