About the Role
Our client is looking for a Cloud Security Engineer contractor to help us remediate known security vulnerabilities and implement improvements to their AWS environment to align with their security policies and generally improve the security policies. This project will last 1 to 2 months to prepare for upcoming SOCII/HIPAA compliance audit and could possibly extend further if desired through audit and to help implement more improvements to the policies going forward.
The company works with PHI data including health insurance claims in the cloud, so security is extremely important to us and their users who trust us to store this sensitive data.
They operate on AWS using terraform as their IaaC and have generally followed best architecture practices for security but are looking for someone to help accelerate the implementation of their project and guide us with additional expertise of security on what other things they should address to protect their systems from attacks. They have a running product serving thousands of end users and have a fully operational cloud architecture inside a VPC with monitoring and alerting capabilities, so this project would not be starting from scratch and would need to be implemented without impacting service levels.