Cloud Security Engineer [Remote] - Braintrust None Bookmark Share Print 102 0 2

Listing Description


  • JOB TYPE: Freelance, Contract Position (no agencies/C2C - see notes below)

  • LOCATION: Remote - United States only

  • HOURLY RANGE: Our client is looking to pay $125 – $150/hr

  • ESTIMATED DURATION: 40h/week - Short term


THE OPPORTUNITY


Requirements


Skills




  • Deep knowledge and hands-on experience with network security, particularly in AWS






  • Experience working with SOCII/HIPAA security compliance




  • Knowledge of third-party security tools for intrusion detection




  • Experience with AWS config, particularly with AWS Linux OS




  • Experience with WAF protecting Cloudfront and API Gateway




  • Advanced terraform knowledge and experience in a multi-module, multi-environment structure




  • Experience with Vanta (desired) or other automated compliance platforms




  • CISSP or AWS Security Specialty Certification (desired)




 


Project goals




  • Integrating an Intrusion Detection Tool into our client's AWS environment with proper alarming and notifications




  • Improving the network design and policies and introducing NACLs to further protect their systems, e.g. establishing TRUST and UNTRUST rules




  • Integrating a few existing EC2 instances into AWS Config with proper baselines and patching




  • Enable WAF to defend our client's web/mobile applications in CloudFront and APIs backed by API Gateway and ALB/NLB from attacks including cross-scripting




  • Improving security groups and IAM roles to limit exposure




  • Configuring advanced security in AWS cognito to defend against compromised credentials




 


What you’ll be working on




About the Role


Our client is looking for a Cloud Security Engineer contractor to help us remediate known security vulnerabilities and implement improvements to their AWS environment to align with their security policies and generally improve the security policies. This project will last 1 to 2 months to prepare for upcoming SOCII/HIPAA compliance audit and could possibly extend further if desired through audit and to help implement more improvements to the policies going forward.


The company works with PHI data including health insurance claims in the cloud, so security is extremely important to us and their users who trust us to store this sensitive data.


They operate on AWS using terraform as their IaaC and have generally followed best architecture practices for security but are looking for someone to help accelerate the implementation of their project and guide us with additional expertise of security on what other things they should address to protect their systems from attacks. They have a running product serving thousands of end users and have a fully operational cloud architecture inside a VPC with monitoring and alerting capabilities, so this project would not be starting from scratch and would need to be implemented without impacting service levels.




Apply Now!


Braintrust Job ID: 6619


 


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765