LanceSoft - AWS Cloud & Network Security Engineer

Job Title : AWS Cloud & Network Security Engineer

Location : Hyderabad (5 Days WFO)

Experience : 6 to 10 Years

Notice Period : Immediate to 15 Days

Shift Timings : 1 : 00 PM 10 : 00 PM IST

Mandatory Skills (Hands-On Expertise Required)

- AWS Cloud

- Networking

- Cloud Security

- Route 53

- Load Balancers

- SSL Certificates

Key Responsibilities

Network Design & Implementation :

- Design and implement scalable, secure network architectures in AWS and Azure.

- Integrate cloud networks with existing on-prem infrastructures.

Configuration & Management :

- Configure/manage VPCs, subnets, VPNs, load balancers, firewall rules, segmentation, and security controls.

Performance Optimization :

- Monitor network performance, troubleshoot issues, ensure high availability, and minimize latency.

Security & Compliance :

- Implement security policies, cloud security best practices, and ensure compliance with standards and company policies.

Automation & Scripting :

- Build and maintain automation using Terraform, CloudFormation, ARM, etc., for provisioning and management tasks.

Cross-Team Collaboration :

- Work with operations, development, and system teams on network issues and best practices.

Documentation & Reporting :

- Maintain detailed documentation, configuration records, and performance/incident reports.

Tier-3 Support :

- Act as the escalation point for complex cloud networking issues for CDK operational teams.

Qualifications :

- Bachelors degree in computer science, Engineering, IT, or equivalent experience.

- Minimum 5 to 7 years of network engineering experience focused on AWS/Azure cloud environments.

Preferred Certifications :

- AWS Certified Solutions Architect

- AWS Certified Advanced Networking

- AWS/Microsoft Security Specializations

- Azure Network Engineer Associate (or similar)

Technical Skills :

Deep expertise in :

a. VPCs, Transit Gateways, VPNs, Direct Connect, Azure Virtual Network, ExpressRoute

b. TCP/IP, BGP, DNS, DHCP, HTTP/HTTPS, IPAM

Experience with :

- Monitoring tools (New Relic, CloudWatch)

- Log analytics, forensics, and operational remediation

- Cloud security tools : CSPM, firewalls, IDS/IPS, encryption

- AWS & Azure native services : Config, CloudWatch, CloudTrail, Route 53, GuardDuty, Security Hub, KMS, Shield, Security Groups, etc.

- Third-party tools : Rapid7, Prisma Cloud, Wiz, Delinea

- Scripting using AWS APIs for automation and governance