• Location: Anywhere in LATAM

• Job Type: Remote

• Project: Healthtech industry

• Time Zone: GMT-4 (Argentina time)

• English Level: B2 / C1

Get to Know Us Darwoft
At Darwoft, we build digital products with heart. Were a Latin American tech company focused on creating impactful, human-centered software in partnership with companies around the globe. Our remote-first culture is based on trust, continuous learning, and collaboration.

Were passionate about tech, but even more about people. If youre looking to join a team where your ideas matter and your impact is real welcome to Darwoft.

About the Role
Were seeking a skilled AWS Cloud Security Engineer to join an innovative healthtech client focused on transforming healthcare through data and technology.

In this role, you'll take the lead in strengthening and optimizing the security posture of a multi-account AWS environment. From redesigning IAM and access models, to mitigating cloud security risks and contributing to cost-effective architecture you'll play a key part in building secure, scalable cloud infrastructure.

What You'll Be Doing

• Redesign and implement secure, scalable IAM policies and access models

• Identify and remediate security findings from CSPM (Cloud Security Posture Management) tools

• Apply cloud security best practices across multiple AWS accounts and environments

• Collaborate with DevOps and engineering teams to integrate security into CI/CD pipelines

• Establish guardrails and policies using tools like AWS Config, CloudTrail, SCPs, and Security Hub

• Optimize cloud architecture for both security and cost-efficiency

• Contribute to threat modeling, risk assessments, and incident response planning

• Stay up to date with AWS security updates, vulnerabilities, and best practices
  
  

What You Bring

• 5+ years of experience in Cloud Security Engineering or Cloud Infrastructure Security

• Deep expertise with AWS security services and architecture (IAM, KMS, VPC, Security Hub, GuardDuty, Config, etc.

• Strong understanding of identity and access management (IAM), least privilege, and role-based access

• Hands-on experience remediating findings from CSPM tools (e.g. Wiz, Prisma Cloud, AWS Security Hub)

• Familiarity with infrastructure as code tools like Terraform or CloudFormation

• Knowledge of DevSecOps principles and experience integrating security into CI/CD workflows

• Strong scripting or automation skills (Python, Bash, etc.)

• Understanding of compliance frameworks (HIPAA, SOC 2, ISO 27001, etc.) is a plus

• Excellent communication and collaboration skills
  
  

Nice to Have

• AWS Security Specialty certification

• Experience securing serverless and containerized workloads (Lambda, ECS, EKS)

• Familiarity with cost optimization techniques in AWS

• Experience with SIEM or SOAR tools

• Knowledge of Zero Trust architecture principles

What Darwoft Offers

• Contractor agreement with payment in USD

• 100% remote work

• Argentinas public holidays

• English classes

• Referral program

• Access to learning platforms