Skip to content

Instantly share code, notes, and snippets.

@danielpsf
Last active April 30, 2019 14:56
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
Star You must be signed in to star a gist
Save danielpsf/4954f6352ce414da79b4c4510ec37e3a to your computer and use it in GitHub Desktop.
A devops small challenge to be used on interviews

AWS Security monitoring and alert

After a technical interview where the candidate will have the oportunity to go over these topics this challenge can be used to assess the automation and coding skills as well as the AWS knowledge of a candidate.

Assumptions

  • Although documentation is not mandatory for this challenge it still is quite important
  • Any automation tool can be used, so feel free to use whatever you are most comfortable with, bash script included
  • Although our main development languages are Python and Go, feel free to pick whatever you are most comfortable with

The challenge

As a DevSecOps, I'd like to be notified by email or some IM tool (i.e: MS Teams, Slack, Hipchat, Riot) whenever a change that is likely exposing our VPC to external attacks is made to a Security Group.

Technologies to be used
  • AWS Lambda functions
  • AWS SES, or AWS SNS, or AWS PinPoint or whatever other technology you choose to send emails
  • AWS VPC - Subnet, Security Groups, NACls
  • AWS CloudTrail or AWS Config or whatever other technology you choose to detect VPC changes
Delivery method

Please create a private Git repository on Github, BitBucket or Gitlab and share the access with danielpsf@gmail.com.

Time window

After the start date you have 7 days to deliver this challenge. If for some reason (holidays, family emergency, current job schedule, etc) you cannot delivery this within this time frame, please let us know in advance.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment