Senior AWS SecOps (part-time)

Position: AWS SecOps Engineer (Part-Time, 20 hours/week)
Location: Remote
Engagement: Ongoing / Long-term

We are looking for a skilled AWS Security Operations (SecOps) Engineer to join our team on a part-time basis (20 hours per week). You will work on an existing, active project and be responsible for ensuring security best practices across our AWS environment. This is a personal development and well-being platform focused on helping people find more meaning and fulfilment in their work.

Key Responsibilities:

• Manage and monitor IAM roles, policies, and trust relationships
• Implement and support AWS Control Tower setups and configurations
• Configure and manage IAM federation, including integration with GitHub
• Maintain and enhance AWS-native and third-party security scanning solutions
• Manage and configure AWS Identity Center
• Support and troubleshoot Single Sign-On (SSO) for Microsoft O365 via Identity Center
• Configure and manage Amazon Cognito, including Cognito Identity Pools (CIP)
• Perform regular security reviews, risk assessments, and compliance checks
• Respond to security incidents and provide post-incident analysis
• Collaborate with DevOps and cloud engineering teams to embed security into CI/CD pipelines

Required Skills & Experience:

• Strong hands-on experience with AWS IAM (roles, policies, trust relationships)
• Solid understanding of AWS Control Tower setup and governance
• Experience with IAM federation, specifically with GitHub
• Familiarity with AWS Identity Center and its integration with third-party services
• Experience implementing and managing SSO with Office 365
• Hands-on experience with Amazon Cognito and CIP configuration
• Knowledge of AWS security tools and best practices (e.g., GuardDuty, Security Hub, Config)
• Excellent English communication and documentation skills