Senior AWS DevSecOps Engineer

Are you looking to work for an innovative and exciting company from Silicon Valley or New York, 100% remotely?

We are looking for multi-skilled candidates with excellent interpersonal skills for the position of Senior DevSecOps Engineer.

We are seeking a highly motivated and experienced Senior AWS DevSecOps Engineer who is passionate about building secure, scalable cloud infrastructure and committed to excellence in security-first environments.

👉 This role is strictly focused on hands-on AWS DevSecOps experience in regulated environments (HIPAA, SOC 2, PCI-DSS, or similar). We are looking for someone who has directly built and secured infrastructure — not someone with only theoretical knowledge or general DevOps exposure.

The ideal candidate will have a strong background in AWS security services, infrastructure as code, CI/CD pipelines with security gates, and experience implementing compliance frameworks in production environments.

The salary range is $4,500 USD to $5,000 USD per month, depending on the candidate's experience and seniority.

Candidates from other Latin American countries may be considered. Candidates in a time zone outside of the western hemisphere will NOT be considered. The role is 100% remote.

ALL RESUMES MUST BE SUBMITTED IN ENGLISH

Responsibilities:

• Design, build, and maintain secure-by-default AWS infrastructure in compliance with regulated environments (HIPAA or similar).
• Implement and manage AWS services such as VPC, RDS, S3, Lambda, IAM, KMS, CloudTrail, GuardDuty, Security Hub, and WAF.
• Configure and enforce IAM least-privilege access policies across all services and environments.
• Design and maintain CI/CD pipelines with integrated security controls, including SAST, dependency scanning, and secrets detection.
• Implement encryption strategies for data at rest and in transit (KMS, TLS, key rotation, certificate management).
• Set up and monitor security logging, auditing, and threat detection systems.
• Support compliance requirements (HIPAA, SOC 2, PCI-DSS) including audits, documentation, and remediation.

Interested in remote work opportunities in Devops? Discover Devops Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Collaborate with engineering teams to ensure secure architecture and infrastructure best practices.
• Build and maintain Infrastructure as Code (Terraform or CloudFormation) for all environments.
• Act as the go-to expert for security incidents, risk mitigation, and infrastructure decisions.
  

Requirements:

• 3+ years of hands-on AWS DevSecOps experience with a strong security-first approach.
• Proven experience working in regulated environments (HIPAA, PCI-DSS, SOC 2, or equivalent).
• Strong expertise in AWS security services (KMS, IAM, GuardDuty, Security Hub, CloudTrail, WAF, Secrets Manager).
• Experience designing and implementing CI/CD pipelines with security gates.
• Hands-on experience with Infrastructure as Code (Terraform or CloudFormation).
• Strong understanding of encryption standards (TLS, AES-256, key management, certificate lifecycle).
• Experience with AWS IoT Core or strong AWS experience with ability to implement IoT architectures.
• Strong analytical and problem-solving skills with a proactive and ownership-driven mindset.
• Highly organized, detail-oriented, and execution-focused.
• Preferred: AWS Certified Security Specialty or AWS Certified DevOps Engineer.
• Preferred: Direct experience implementing HIPAA technical safeguards.

Fluent in English, YOU MUST BE ABLE TO HAVE A FLUENT PROFESSIONAL CONVERSATION IN ENGLISH

Engagement Structure & Duration:

This is a long-term contract opportunity structured in phases over a 24-month period.

• Phase 1 (Initial Build Phase):
• Months 1–3: 40 hours per week (full-time)
• Months 4–6: 30 hours per week (reduced workload)

• Phase 2 (Maintenance & Monitoring):Months 7–24: ~5 hours per week (ongoing support and monitoring)

This structure reflects an initial intensive infrastructure build phase followed by a lighter, steady-state maintenance period.

Compensation Structure:

Compensation will be handled on a monthly salary basis, adjusted according to the expected workload and hours per phase.

👉 While the role is paid monthly, compensation will reflect the number of hours worked in each phase (full-time, reduced hours, and maintenance phase).

This role is ideal for engineers who thrive in high-ownership environments and enjoy building secure systems from the ground up.