В работе

AWS Security Lab

Purpose (what do we want to accomplish)

Build an AWS Security Lab where we can experiment with implementing CIS security controls. We will focus on two key resources:

a. CIS Controls

b. AWS Security Audit Tools

Goals

1. To build AWS based infrastructure that resembles a typical organization.

2. Once built, the infrastructure will be used as a lab to apply various security controls, test their effectiveness and document the process and results.

Importance (what’s the biggest difference this will make)

We can effectively assess security of AWS infrastructure for future clients and provide them practical insights.

Ideal Outcome (what does the completed project look like)

• AWS Infrastructure built

• Security controls applied

• Effectiveness assessed and documented.

Success Criteria (what has to be true when this project is finished)

• AWS infrastructure resembles common components of 3 tier web applications

• Security controls applied to AWS components and AWS admin console (spreadsheet)

• Effectiveness testing is performed: perform attack steps and see if the control can prevent / detect them

• The process and results are clearly documented in Google Drive or Confluence: what worked / what didn’t work, key insights

• Documentation includes identifying what CIS control is applicable to which component

• We have draft summary presentation ready, highlighting the key insights

• Popular available AWS audit tools are evaluated (i.e. what can we automate?)

Best Results, if we do take action

• We move towards becoming AWS security experts

• We will have cloud security clients in the near future.

Worst Results, if we don’t take action

• We will miss out on huge cloud security opportunities.

Specifications

● Infrastructure:

○ 3 Tier App

○ Components (to be verified):

■ Application Load Balancer

■ EC2 Worker Node(s)

■ Elastic Kubernetes Service (optional) / Docker or regular EC2 VM

■ RDS

■ S3 Bucket

■ Guard Duty

■ Centralized Logging (AWS tool or Elastic Cloud)

○ Accounts:

■ AWS Administrative Accounts

■ AWS Operations Accounts

● Controls:

○ Identify which CIS controls are relevant to this environment

○ All applicable controls have been implemented,

● Perform effectiveness testing for each control

● Documentation:

○ Document steps for above: how-to, lessons learned (what worked, what didn’t), recommendations etc.

○ Use Confluence or Google Drive

Milestones

I. Implement a 3 tier Java based web application consisting of the following:

• Application Load Balancer

• EC2 Worker Node(s)

• Elastic Kubernetes Service (optional) / Docker or regular EC2 VM

• RDS

• S3 Bucket

• Guard Duty

• Centralized Logging (AWS tool or Elastic Cloud)

II. Enable basic AWS security controls such as:

● FW

● Vulnerability & Config Scanning for VMs and other components

● Other AWS recommended controls

III. Apply CIS sub-controls

● Identify which CIS sub-controls are applicable to this environment. It should cover front-end and backend (access to AWS infra)

● Implement the controls using free or low-cost tools and evaluate their effectiveness

IV. Perform effectiveness testing cycles until done

● Find ways to effectively test your controls

● Perform the tests

● Revise how the control has been implemented if needed

Квалификация: Amazon Web Services, Безопасность сети, Облачные вычисления, Интернет-безопасность, Linux

Показать больше mobile computer security lab pentest, network security lab report, aws security, security lab, aws security certifications, aws security compliance, aws security tools, aws security whitepaper, aws security monitoring, aws security best practices pdf, aws security assessment, aws security risks, aws security specialty exam questions, ccie security lab, cryptography and network security lab viva questions, aws security group multiple ip addresses, aws security best practices, aws security review, aws security manager, aws security competency

О работодателе:
( 0 отзыв(-а, -ов) ) Ottawa, Canada

ID проекта: #23465090

Поручен:

iamsehajtaneja

Hi it’s me Sehaj. This is just a filler text to satisfy the character count required to place the bid.

$2222 CAD за 30 дней(-я)
(0 отзывов(-а))
0.0

10 фрилансеров(-а) в среднем готовы выполнить эту работу за $2587

sarrvareddy

Hello, Hope you are doing well. I am a senior DevOps engineer and AWS Certified Solutions Architect. I have worked extensively on AWS and security infrastructure. I have read the complete document and I can execute Больше

$5000 CAD за 15 дней(-я)
(73 отзывов(-а))
5.3
PeterLi0529

Hi there. Thank you for your posting. *First, let me introduce myself. ; CLoud Infrastructure As a senior cloud manager, I have a good grasp of using almost AWS services. I am operating several k8s clusters now on-pr Больше

$3000 CAD за 15 дней(-я)
(7 отзывов(-а))
4.9
mgeorgiev13

Dear Employer, I can help with your security project and build, asses and test your AWS infrastructure. I have extensive experience with: - Network infrastructure (LAN and WAN) design, implementation and support. - Se Больше

$3000 CAD за 7 дней(-я)
(15 отзывов(-а))
5.0
ranumehta2017

***AWS EXPERT*** Больше

$2250 CAD за 7 дней(-я)
(29 отзывов(-а))
4.7
arifnafees

***AWS Certified Solution Architect+MCSA+CCNA***, DevOps Trained, 9 Years of Experience in System Administration Hi, Greetings! Have read your project description, and really much confident to setup the required sec Больше

$1500 CAD за 7 дней(-я)
(9 отзывов(-а))
4.4
nt1225

Nice to meet you I have 20 years of Linux SysAdmin experience. I currently use Apache, Nginx, Ldirectord, MySQL, Perl, PHP, Memcached, Sphinx, Bind, Typo3, WordPress, Send-mail, Postfix, NFS, Samba, Snort, Vsftpd, aide Больше

$1900 CAD за 10 дней(-я)
(4 отзывов(-а))
3.3
Solaristech

Hi, I specialize in website design and development and am excited for this opportunity to work with you in accomplishing your goals.. I am Good at Amazon Web Services, Cloud Computing, Internet Security, Linux, Web Sec Больше

$2500 CAD за 6 дней(-я)
(2 отзывов(-а))
0.7
NavilPolyakov

❤️Hi there❤️ I 'v read your requirement carefully and understood what you need for now I am sure I can help you perfectly with high quality and fast rate I am a senior skillful web developer in such as Vue.js/Vuex, Rea Больше

$2000 CAD за 18 дней(-я)
(0 отзывов(-а))
0.0
Rogerfalcone

Hi,sir, Thanks for taking your valuable time for reviewing my proposal.I'm sure that I can be a excellent candidate for your project. Please contact me, so that we can discuss more over chat. I value my credits from cl Больше

$2500 CAD за 13 дней(-я)
(0 отзывов(-а))
0.0