Sedang Disiapkan

AWS Security Lab

Purpose (what do we want to accomplish)

Build an AWS Security Lab where we can experiment with implementing CIS security controls. We will focus on two key resources:

a. CIS Controls

b. AWS Security Audit Tools


1. To build AWS based infrastructure that resembles a typical organization.

2. Once built, the infrastructure will be used as a lab to apply various security controls, test their effectiveness and document the process and results.

Importance (what’s the biggest difference this will make)

We can effectively assess security of AWS infrastructure for future clients and provide them practical insights.

Ideal Outcome (what does the completed project look like)

• AWS Infrastructure built

• Security controls applied

• Effectiveness assessed and documented.

Success Criteria (what has to be true when this project is finished)

• AWS infrastructure resembles common components of 3 tier web applications

• Security controls applied to AWS components and AWS admin console (spreadsheet)

• Effectiveness testing is performed: perform attack steps and see if the control can prevent / detect them

• The process and results are clearly documented in Google Drive or Confluence: what worked / what didn’t work, key insights

• Documentation includes identifying what CIS control is applicable to which component

• We have draft summary presentation ready, highlighting the key insights

• Popular available AWS audit tools are evaluated (i.e. what can we automate?)

Best Results, if we do take action

• We move towards becoming AWS security experts

• We will have cloud security clients in the near future.

Worst Results, if we don’t take action

• We will miss out on huge cloud security opportunities.


● Infrastructure:

○ 3 Tier App

○ Components (to be verified):

■ Application Load Balancer

■ EC2 Worker Node(s)

■ Elastic Kubernetes Service (optional) / Docker or regular EC2 VM


■ S3 Bucket

■ Guard Duty

■ Centralized Logging (AWS tool or Elastic Cloud)

○ Accounts:

■ AWS Administrative Accounts

■ AWS Operations Accounts

● Controls:

○ Identify which CIS controls are relevant to this environment

○ All applicable controls have been implemented,

● Perform effectiveness testing for each control

● Documentation:

○ Document steps for above: how-to, lessons learned (what worked, what didn’t), recommendations etc.

○ Use Confluence or Google Drive


I. Implement a 3 tier Java based web application consisting of the following:

• Application Load Balancer

• EC2 Worker Node(s)

• Elastic Kubernetes Service (optional) / Docker or regular EC2 VM


• S3 Bucket

• Guard Duty

• Centralized Logging (AWS tool or Elastic Cloud)

II. Enable basic AWS security controls such as:

● FW

● Vulnerability & Config Scanning for VMs and other components

● Other AWS recommended controls

III. Apply CIS sub-controls

● Identify which CIS sub-controls are applicable to this environment. It should cover front-end and backend (access to AWS infra)

● Implement the controls using free or low-cost tools and evaluate their effectiveness

IV. Perform effectiveness testing cycles until done

● Find ways to effectively test your controls

● Perform the tests

● Revise how the control has been implemented if needed

Kemahiran: Amazon Web Services, Sekuriti Web, Pengkomputeran Awan, Keselamatan Internet, Linux

Lihat lagi: mobile computer security lab pentest, network security lab report, aws security, security lab, aws security certifications, aws security compliance, aws security tools, aws security whitepaper, aws security monitoring, aws security best practices pdf, aws security assessment, aws security risks, aws security specialty exam questions, ccie security lab, cryptography and network security lab viva questions, aws security group multiple ip addresses, aws security best practices, aws security review, aws security manager, aws security competency

Tentang Majikan:
( 0 ulasan ) Ottawa, Canada

ID Projek: #23465090

Dianugerahkan kepada:


Hi it’s me Sehaj. This is just a filler text to satisfy the character count required to place the bid.

$2222 CAD dalam 30 hari
(0 Ulasan)

10 pekerja bebas membida secara purata $2587 untuk pekerjaan ini


Hello, Hope you are doing well. I am a senior DevOps engineer and AWS Certified Solutions Architect. I have worked extensively on AWS and security infrastructure. I have read the complete document and I can execute Lagi

$5000 CAD dalam 15 hari
(73 Ulasan)

Hi there. Thank you for your posting. *First, let me introduce myself. ; CLoud Infrastructure As a senior cloud manager, I have a good grasp of using almost AWS services. I am operating several k8s clusters now on-pr Lagi

$3000 CAD dalam 15 hari
(7 Ulasan)

Dear Employer, I can help with your security project and build, asses and test your AWS infrastructure. I have extensive experience with: - Network infrastructure (LAN and WAN) design, implementation and support. - Se Lagi

$3000 CAD dalam 7 hari
(15 Ulasan)

***AWS EXPERT*** Lagi

$2250 CAD dalam 7 hari
(29 Ulasan)

***AWS Certified Solution Architect+MCSA+CCNA***, DevOps Trained, 9 Years of Experience in System Administration Hi, Greetings! Have read your project description, and really much confident to setup the required sec Lagi

$1500 CAD dalam 7 hari
(9 Ulasan)

Nice to meet you I have 20 years of Linux SysAdmin experience. I currently use Apache, Nginx, Ldirectord, MySQL, Perl, PHP, Memcached, Sphinx, Bind, Typo3, WordPress, Send-mail, Postfix, NFS, Samba, Snort, Vsftpd, aide Lagi

$1900 CAD dalam 10 hari
(4 Ulasan)

Hi, I specialize in website design and development and am excited for this opportunity to work with you in accomplishing your goals.. I am Good at Amazon Web Services, Cloud Computing, Internet Security, Linux, Web Sec Lagi

$2500 CAD dalam 6 hari
(2 Ulasan)

❤️Hi there❤️ I 'v read your requirement carefully and understood what you need for now I am sure I can help you perfectly with high quality and fast rate I am a senior skillful web developer in such as Vue.js/Vuex, Rea Lagi

$2000 CAD dalam 18 hari
(0 Ulasan)

Hi,sir, Thanks for taking your valuable time for reviewing my proposal.I'm sure that I can be a excellent candidate for your project. Please contact me, so that we can discuss more over chat. I value my credits from cl Lagi

$2500 CAD dalam 13 hari
(0 Ulasan)