Description
One (1) AWS Resident Engineer for Security Operation (SecOps)a. Onsite: 5 days a week (Office hour)
b. Unlimited standby onsite/offsite after office hour including weekend and public holiday with a maximum 2 hours to report for duty from the time of notification for major incidents and emergencies.
c. May requires a backup Resident Engineer if the main resident engineer is not available during planned/unplanned job.
Resident Engineer Requirement:
i. Minimum 6 years working experiences in AWS security services
ii. Technical Skillset
• Cloud Security
• Operation Security
iii. AWS Security Certifications
Scope of Work (Summary):
a) Secure Configuration Oversight: Define and enforce secure configuration baselines for AWS services, including robust authentication, authorization, and encryption mechanisms to ensure the integrity and confidentiality of OUR's cloud resources.
b) Engineering and Operations: Review, design and execute security controls, responsible for AWS security patch management, building security automations and tacking action to mitigate emerging threats and vulnerabilities.
c) Security Projects: Main resource person for security projects (including security reviews, tool development, and creation of new security practices) in AWS that require security advisory and execution with other teams.
d) MSP Coordination: Collaborate with the MSP and AMS to expedite the resolution of security issues and incidents, ensuring timely response and mitigation measures are in place.
e) Security Reporting: Generate monthly security-related reports that provide insights into the state of AWS security, potential vulnerabilities, and areas of improvement, facilitating informed decision-making.
f) Compliance Assessment: Continuously monitor AWS resources to ensure compliance with relevant industry standards (e.g., PCI DSS, NIST) and internal security policies.
g) Cyber Security Risk Assessment: Conduct cyber security risk assessments and vulnerability assessments for AWS cloud resources, identifying and prioritizing security risks and vulnerabilities.
h) Policy Development: Assist in develop and maintain security policies, standards, and procedures specific to AWS cloud services, ensuring alignment with industry regulations and best practices.
i) Architecture Assessment: Review the architecture and design of AWS cloud solutions, ensuring they align with security best practices and meet organizational security requirements.
j) Knowledge Transfer: Provide ongoing mentoring, knowledge transfer, and documentation to internal teams and stakeholders regarding OUR's AWS infrastructure, security tools, technologies, and solutions. This includes best practices and procedures for AWS security.
One (1) year upon Purchase Order issuance.
AWS Resident Engineer Support Period
One (1) AWS Resident Engineer for Cyber Security Threat Defense (CSTD)
a. Onsite: 5 days a week (Office hour)
b. Unlimited standby onsite/offsite after office hour including weekend and public holiday
c. May requires a backup Resident Engineer if the main resident engineer is not available during planned/unplanned job.
Resident Engineer Requirement:
i. Minimum 6 years working experiences in AWS security services
ii. Technical Skillset
• Cloud Security
• SOC/Incident Management
iii. AWS Security Certifications
Scope of Work (Summary):
a) Part of OUR CSTD team as an additional resource for AWS Security.
b) Advanced Incident Analysis: Specialize in advanced incident analysis and investigation, including in-depth event analysis, incident qualification, and root cause analysis.
c) Security Event Expertise: Monitor the AWS security console for identifying and analyzing security events generated by the log sources integrated with AWS SIEM tools, offering Level 3 insights.
d) Advanced Threat Mitigation: Lead the triage and resolution of complex, advanced vector attacks such as botnets and advanced persistent threats (APTs), drawing upon deep expertise in security incident management.
e) Collaboration and Advisement: Collaborate directly with data asset owners and business response plan owners during high-severity incidents, providing Level 3 guidance and expertise.
f) Containment Strategy Leadership: Take charge of containment strategies during data loss or breach events, providing Level 3 direction and insights to minimize impact and prevent further compromise.
g) Knowledge Transfer and Mentorship: Provide ongoing mentoring, knowledge transfer, and documentation related to OUR AWS incident management, root cause analysis, and advanced security practices to elevate OUR CSTD's capabilities. One (1) year upon Purchase Order issuance.