Experience Inc. Jobs

Job Information

Capgemini AWS Cloud Security and Compliance Engineer (Work Remotely) in Texas

About Capgemini

A global leader in consulting, technology services and digital transformation, Capgemini is at the forefront of innovation to address the entire breadth of clients’ opportunities in the evolving world of cloud, digital and platforms. Building on its strong 50-year heritage and deep industry-specific expertise, Capgemini enables organizations to realize their business ambitions through an array of services from strategy to operations. Capgemini is driven by the conviction that the business value of technology comes from and through people. It is a multicultural company of over 200,000 team members in more than 40 countries. The Group reported 2018 global revenues of EUR 13.2 billion.

About Infrastructure Services :

The Cloud Infrastructure Services Global Business Line is Capgemini's consulting and infrastructure build-and-run provisioning offering, and supports the group's cloud-based services. As part of the integrated cloud offering from Capgemini, Cloud Infrastructure Services delivers a broad range of cloud services to build and support the hybrid cloud estate by encompassing the leading public cloud players and leading private cloud technologies. With EUR 1.5 billion annual revenue, Cloud Infra Services helps clients virtualize and optimize their IT estates through infrastructure outsourcing services such as data center, helpdesk, network support, and service integration and service maintenance support. Our other services also include infrastructure transformation services-helping clients consolidate and migrate entire workloads and data centers.


  • 10 years of experience as hands-on security engineer in a large-scale regulated enterprise customer environment or professional services consulting engagement(s) of a similar scope

  • Proven track record as a key contributor to multi-account/inter-region AWS solutions with focus on compliance and security best practices including design and implementation of security controls mapped to industry standards and regulatory frameworks (e.g. NIST 800-53, AWS Foundational, CIS, PCI DSS, etc)

  • Experience with identification of layered security and compliance controls (directive, detective, preventative and corrective) and their applicability to a variety of AWS services guided by customer's requirements

  • MOST IMPORTANT Mastery of AWS native services, tools and features such as IAM, Organizations/SCPs, KMS, Control Tower, Config, Security Hub, Guard Duty, CloudTrail, Secrets Manager as instruments for centralized, scalable and provable cloud security

  • In-depth understanding and practical knowledge of resource-level controls to enforce strong boundary protection and ensure confidentiality as well as data loss prevention via distributed policy (e.g. bucket, endpoint, key, etc) and configuration (e.g. data at rest / in transit encryption, SSL termination, etc)

  • Fluency in at least one scripting language (Python and Bash preferred) and ability to build fully automated custom checks to evaluate cloud environment's components detecting misconfigurations as well as remediation actions using Lambda and Event Bridge

  • Hands on experience and ability to express the desired state via declarative IaC tools such as CFN or TF as well as imperative (CDK, Troposphere) and familiarity with the associated DevOps practices aimed at producing repeatable and fully automated solutions

  • NOT CRITCAL Familiarity with 3rd party security operations and posture management products (e.g. Splunk, Checkpoint Dome9, Palo Alto Prisma Cloud, Rapid7 DivvyCloud, etc) and open source tools

  • Excellent communication skills including the ability to communicate to internal Risk and InfoSec organizations as well as willingness to transfer knowledge to customer's engineering teams

  • AWS Security Specialty and/or Architect Pro Certifications

  • Recognized Information Security Industry Certifications

Capgemini is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law

This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.

Click the following link for more information on your rights as an Applicant - http://www.capgemini.com/resources/equal-employment-opportunity-is-the-law

Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.

Job: Infrastructure

Organization: CIS US P&C

Title: AWS Cloud Security and Compliance Engineer (Work Remotely)

Location: Texas

Requisition ID: 055385