AWS Guard Duty

Job title/role: AWS Guard Duty - NSG, ACL, Firewall, DDOS & WAF Protection

Experience – 9 to 12 years

Location – Hyderabad, Bangalore, Pune.

About Zensar:

Zensar is a digital solutions company helping organizations around the world achieve new thresholds of business performance. We work with clients in banking and financial services, hi-tech and manufacturing, insurance, consumer services, and more. We prepare our clients for sustainable success through experience design, cloud technology, advanced analytics, and business acceleration.

Overview

We are seeking a highly skilled AWS Security Specialist to join our cloud security team. The ideal candidate will have extensive experience with AWS GuardDuty and other AWS security services, including Network Security Groups (NSGs), Access Control Lists (ACLs), AWS Firewall Manager, DDoS protection, and AWS WAF. This role is crucial in maintaining the security, compliance, and resilience of our AWS cloud infrastructure.

Responsibilities

• AWS GuardDuty Management
• Implement and manage AWS GuardDuty across all AWS accounts and regions
• Configure and optimize GuardDuty findings and alerts
• Analyze GuardDuty findings and coordinate response actions

• Integrate GuardDuty with other security tools and SIEM systems

• Network Security Configuration

• Design, implement, and manage Network Security Groups (NSGs) and Access Control Lists (ACLs)
• Develop and maintain network segmentation strategies
• Regularly review and optimize network security configurations

• Troubleshoot network connectivity and security issues

• AWS Firewall Management

• Deploy and manage AWS Firewall Manager policies across multiple accounts and applications
• Configure and maintain AWS Network Firewall rules
• Implement and manage AWS Web Application Firewall (WAF) rules

• Ensure consistent firewall policies across the AWS organization

• DDoS Protection

• Implement and manage AWS Shield for DDoS protection
• Configure and optimize AWS Shield Advanced features
• Develop and maintain DDoS response playbooks

• Conduct DDoS simulations and mitigation exercises

• Web Application Firewall (WAF) Configuration

• Design and implement AWS WAF rules to protect web applications
• Manage WAF conditions, rules, and web ACLs
• Monitor and analyze WAF logs for security insights

• Keep WAF rules updated against evolving web application threats

• Security Monitoring and Incident Response

• Monitor security events and alerts across all AWS security services
• Develop and maintain incident response procedures for various security scenarios
• Coordinate with other IT and security teams during incident investigations

• Conduct post-incident analysis and implement security improvements

• Compliance and Reporting

• Ensure AWS security configurations meet industry standards and regulatory requirements
• Generate and analyze security reports from various AWS services
• Prepare documentation for security audits and assessments
• Develop and maintain security baselines and best practices

Requirements

• Bachelor's degree in Computer Science, Cybersecurity, or a related field
• 9+ years of experience in IT security, with at least 6 years focused on AWS security
• In-depth knowledge of AWS GuardDuty, Network Security Groups, ACLs, Firewall Manager, Shield, and WAF
• Strong understanding of network protocols, cloud architecture, and security concepts
• Experience with infrastructure-as-code tools (e.g., CloudFormation, Terraform)
• Familiarity with compliance standards (e.g., PCI DSS, HIPAA, SOC 2)
• Proficiency in scripting languages (e.g., Python, Bash, PowerShell)
• Excellent problem-solving and communication skills
• AWS Certified Security - Specialty certification required
• Additional certifications (e.g., CISSP, CCSP) are a plus

Relationships:

You will work with CIS Team (Shared Services, Network, Security, Applications) architects, engineers, developers, support, and leadership team on projects and provides subject matter expertise as necessary.

Maintaining a good relationship with our global IT teams is key to your success. In your role you will need to be able to communicate with people at all levels in the organization and work with several of our suppliers and partners.