Apply on Employer Site

ECLARO · 2 weeks ago

AWS Cloud Security & Compliance Engineer

Charlotte, NC

Full-time

Onsite

Senior Level, Lead/Staff

$170K/yr - $225K/yr

10+ years exp

ECLARO is an innovative financial technology company transforming digital banking and payments, and they are seeking an AWS Cloud Security & Compliance Engineer to enhance their cloud security posture. The role involves designing, implementing, and maintaining security controls to ensure compliance with ISO 27001 and SOC 1 / 2 standards while managing AWS infrastructure security.

Staffing & Recruiting

H1B Sponsor Likely

Responsibilities

Design and enforce IAM policies, roles, and SCPs using the principle of least privilege

Implement AWS Organizations, Control Tower, and GuardDuty, Security Hub, Config, and CloudTrail for centralized governance

Manage MFA, SSO (AWS IAM Identity Center), and just-in-time access workflows

Conduct regular privilege access reviews and automate user / role lifecycle management

Lead ISO 27001 and SOC 1 / 2 control implementation (e.g., A.9, A.12, SC-13, PI-7)

Own risk assessments, control evidence collection, and audit preparation

Develop and maintain data classification, encryption (KMS, SSE), and data residency policies

Ensure PCI DSS alignment for payment data flows (in-scope systems)

Build Infrastructure as Code (IaC) security using Terraform or similar tools

Automate compliance checks via AWS Config Rules, Security Hub, and custom Lambda scripts

Respond to and triage findings from GuardDuty, Inspector, Macie, and third-party scanners

Maintain System Security Plan (SSP), Risk Register, and control matrices

Prepare audit-ready evidence (logs, configs, access reports)

Train engineering teams on secure AWS practices

Qualification

AWS Cloud SecurityISO 27001SOC 1 / 2AWS IAMTerraformCloudFormationEncryptionNetwork SecurityCompliance DocumentationSecurity AutomationAudit PreparationSoft Skills

Required

10+ years in cloud infrastructure; 5+ years in cloud security; 3+ years focused on AWS

Hands-on experience with: AWS IAM, Organizations, SCPs, KMS, CloudTrail, Config, Security Hub

Terraform / CloudFormation for secure infrastructure

ISO 27001 and SOC 2 control frameworks

Active AWS certifications: Security Specialty or Solutions Architect Professional

Experience supporting external audits (SOC 2 Type II, ISO 27001)

Strong understanding of encryption at rest / transit, network security (VPC, NACLs, WAF), and secrets management

Company

ECLARO

ECLARO is an award-winning professional services firm headquartered in New York City and operating in the U.S., Canada and the Philippines.

Founded in 1999

New York, NY, US

1001-5000 employees

http://www.eclaro.com

H1B Sponsorship

ECLARO has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (1)

2024 (1)

2023 (1)

2022 (2)

2020 (1)

Funding

Current Stage

Late Stage

Leadership Team

Nicholas Butcher

QA CTO Label Specialist

Dan Broderick

Chief Delivery Officer

Company data provided by crunchbase