JOB DESCRIPTION:-
• AWS
o Identity and Access Management
? Designing & implementing AWS Organization, Account Strategy
? Architecting and implementing Azure AD as IDP, Identity Provisioning & Lifecycle management, Users, Service Principals
? Designing & implementing Role based access control, Provisioning/Deprovisioning automation, MFA & conditional access policies
? Designing and implementing access management automation, logging & monitoring
o Network Design
? Designing & implementing VPC architecture, best practices, dedicated links, NAT, Direct Connect
? Designing & implementing DNS, Network security, NACL design, Ingress/egress policies, DDoS/IPS/IDS, Network logging & VPC flow logs
o Platform Security
? Designing & implementing for HA & DR (multi-region, resilient services), traffic fail-over
? Designing & implementing service/resource creation automation through gitops
? Designing & implementing image hardening automation, patch management, auto remediation
? Designing & implementing preventive security, Defender policies
? Designing & implementing infra authentication & authorization, infrastructure automation (infra-as-code, gitops), config management
o Data Security
? Designing & implementing policies for data encryption, data access, DB logging, data retention