Hello!
Greetings from QNC Consulting!
We have an urgent requirement for the below position. Please go through the job description and let me know you’re interested.
Job Title: Cloud Security Engineer with IAM must
Location: California (Will confirm the city latter)
Duration: Long-term
JD:
Technical Expectations: Good AWS knowledge across IAM and Network Security, Good hands-on Network Security and IAM implementation experience
Based on the technical Evaluation from Salim the potential resource(s) with the combo skillset (AWS & IAM) to meet the requirements:
· They are looking for a candidate to perform the AWS Security service reviews and develop an Assessment report with write-up on the control assessment aligning to Client’s Information security standards, and recommendations on the detective and preventive controls.
· The resource should be an expert in AWS IAM roles, writing and reviewing SCPs and permission boundaries for resource and define OU level preventive controls.
· The resource should have experience to write detective controls rules and remediation actions using managed AWS Config rules and custom rules.
· The resource should have the holistic experience on AWS security across areas like VPC security, IAM role around different AWS resources, etc.
· Skills to write/review Python / Lambda scripts for certain scenarios and commenting on AWS API availability for AWS resources/services involved in the design.
· The resource should be an expert in AWS IAM roles, writing and reviewing SCPs and permission boundaries for resource and define OU level preventive controls.
· The resource should have experience to write detective controls rules and remediation actions using managed AWS Config rules and custom rules.
· The resource should have the holistic experience on AWS security across areas like VPC security, IAM role around different AWS resources, etc.
· Skills to write/review Python / Lambda scripts for certain scenarios and commenting on AWS API availability for AWS resources/services involved in the design.
Duties: -
1. Review individual cloud services in accordance with public cloud platform security policy.
2. Write documentation providing an overview of the service, along with detailed analysis of alignment between service deployment and public cloud platform security policy.
3. Identify potential methods of misuse which would violate public cloud platform security policy
4. Compose recommended preventive and detective controls to operate the service in compliance with public cloud platform security policy.
5. Candidate must have strong competency with IAM policies; as an example in AWS these would be Resource Policy, Service Control Policy, Permissions Boundary, Identity Policy.
6. Candidate should be able to compose efficient and effective IAM policies to ensure compliance with the reviewed service and public cloud platform security policy.
7. Highlight gaps between available controls and public cloud platform security policy.
No comments:
Post a Comment