Key skills
JavaScriptPythonBashPowerShellAWSServerlessCloudFormationAWS CDKIAMCloudWatchSumo LogicCI/CDCloud Security
About this role
Kellton is partnering with a leading Education Domain client to hire a Senior Cloud Security Engineer who will play a critical role in securing enterprise-scale AWS environments. The role involves supporting application teams with security best practices, threat detection, and automation.
Responsibilities:
- Act as the security SME supporting multiple application teams
- Work with AWS security services & telemetry (CloudTrail, IAM, VPC Flow Logs, CloudWatch)
- Design and support security automation using Python, JavaScript, AWS CDK & CloudFormation
- Lead threat hunting, detection engineering, and incident response efforts
- Improve SIEM detections and reduce false positives (Sumo Logic experience is a plus)
- Align detection strategies with frameworks like MITRE ATT&CK
Requirements:
- 3–5 years of experience in cyber defense / cloud security
- Strong hands-on experience in AWS environments
- Expertise in SIEM, threat hunting, and incident response
- Experience with scripting/automation (Python, PowerShell, Bash)
- Ability to communicate findings clearly and collaborate with teams
- A proactive mindset with curiosity for evolving threats
- Must be authorized to work in the U.S
- Experience with purple team exercises
- Certifications like Security+, GCIH, GCIA, AWS Security Specialty
- Exposure to containers, serverless, CI/CD pipelines