After a technical interview where the candidate will have the oportunity to go over these topics this challenge can be used to assess the automation and coding skills as well as the AWS knowledge of a candidate.
- Although documentation is not mandatory for this challenge it still is quite important
- Any automation tool can be used, so feel free to use whatever you are most comfortable with, bash script included
- Although our main development languages are Python and Go, feel free to pick whatever you are most comfortable with
As a DevSecOps, I'd like to be notified by email or some IM tool (i.e: MS Teams, Slack, Hipchat, Riot) whenever a change that is likely exposing our VPC to external attacks is made to a Security Group.
- AWS Lambda functions
- AWS SES, or AWS SNS, or AWS PinPoint or whatever other technology you choose to send emails
- AWS VPC - Subnet, Security Groups, NACls
- AWS CloudTrail or AWS Config or whatever other technology you choose to detect VPC changes
Please create a private Git repository on Github, BitBucket or Gitlab and share the access with [email protected].
After the start date you have 7 days to deliver this challenge. If for some reason (holidays, family emergency, current job schedule, etc) you cannot delivery this within this time frame, please let us know in advance.