About the Role
Abnormal Security is a leading cyber security organization committed to maintaining the highest standards of cybersecurity. As a Cyber Defense Engineering Manager with AWS expertise, you will lead a team of security professionals responsible for protecting our organization's digital assets and cloud infrastructure. You'll play a crucial role in developing and implementing robust cybersecurity strategies, overseeing incident response, and ensuring compliance with industry standards and regulations, with a particular focus on AWS environments. This position requires a blend of technical expertise in cloud security, leadership skills, and strategic thinking to stay ahead of evolving cyber threats in cloud-based infrastructures.
What you will do
- Lead and mentor a team of cyber defense engineers, fostering their growth and development
- Develop and maintain the organization's cybersecurity policies, procedures, and best practices for AWS cloud environments
- Oversee the design, implementation, and maintenance of security systems and controls in AWS
- Conduct regular risk assessments and vulnerability analyses to identify potential security gaps in cloud infrastructures
- Lead the team through architecture reviews and threat modeling exercises
- Manage incident response processes and lead investigations into security breaches, including those in AWS environments
- Collaborate with other departments to ensure security measures are integrated across the organization's cloud systems
- Review Infrastructure as Code (IAC) pull requests to implement security controls.
- Stay informed about emerging threats and technologies in cloud security, adapting strategies accordingly
- Prepare and present reports to senior management on security status and initiatives, including AWS-specific metrics and insights
- Manage budgets and resources for the cyber defense team, including AWS security tools and services
- Ensure compliance with relevant industry standards and regulations (e.g., NIST, ISO 27001, GDPR, FedRAMP) in cloud environments
Must Haves
- Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security, or equivalent years of professional experience to meet job requirements and expectations
- 7+ years professional experience in the cybersecurity space
- 2+ years professional experience managing a team of engineers
- Strong knowledge of network security, encryption, access control, and security protocols
- In-Depth knowledge of EDR, CDR, and SIEM technologies.
- Strong understanding of cloud security, particularly in AWS environments
- Familiarity with Kuberenetes environments and associated security controls
- Demonstrated ability to mentor and train security engineers
- Excellent communications skills and the ability to collaborate across teams
- Knowledge of Infrastructure as Code (IaC) and security automation in AWS (e.g., AWS CloudFormation, AWS CDK, Terraform)
- Familiarity with DevSecOps practices and tools, especially in AWS CI/CD pipelines
- Knowledge of containerization security (e.g., Docker, Kubernetes) in AWS ECS or EKS
- Proficiency in GitHub and its pull request process, including code review practices and security considerations
Nice to Haves
- Master's degree in Cybersecurity or a related field
- Relevant security certifications such as CISSP, CISM, GIAC, GCIH or equivalent
- Proficiency in programming languages such as Python, GoLang, or Java for security automations and code reviews
- Experience with penetration testing and ethical hacking techniques in cloud environment
- Public speaking or presentation skills for security awareness training
- Knowledge of digital forensics and malware analysis in cloud contexts
#LI-MA1