NeGD is currently inviting applications for the following positions purely on Contract basis initially for a period of 2 years which is further extendable as per the requirement of the project.

The last date of receipt of application will be 15th June 2025.

Role/Position : AWS Expert
No. of Position : 1

Roles & Responsibilities:

Cloud Architecture & Design:
•Design and implement scalable, secure, and reliable cloud architectures using AWS services.
•Develop architectural best practices for cloud adoption, including design, implementation, and automation.
•Create and manage cloud infrastructure with Infrastructure as Code (IaC) tools like Terraform, CloudFormation, etc.
Deployment & Management:
•Deploy, manage, and operate scalable, highly available, and fault-tolerant systems on AWS.
•Implement automation tools and frameworks (CI/CD pipelines) for managing cloud environments.
•Manage AWS services like ECS, EKS, API Gateway, EC2, S3, RDS, Lambda, VPC, CloudFront, etc.

Security & Compliance:
•Ensure the security of cloud infrastructure by implementing best practices, including IAM policies, encryption, and security group management.
•Monitor and optimize cloud resources for security, performance, and cost-efficiency.
•Perform regular security assessments and audits of the cloud environment.

Secure Development and Deployment:
•Integrate security into cloud development and deployment.
•Conduct security reviews of architecture, design, and code.
•Automated vulnerability scanning (Nessus, OWASP ZAP)
•Source Code scanner (SonarQube)

Infrastructure Security:
•Implement and manage security AWS, Azure, Google Cloud
•Secure cloud environments (e.g., AWS, Azure, Google Cloud) with appropriate controls and policies.
•Manage and monitor infrastructure AWS inspector, Guard Duty, GCP security command center)

Monitoring and Incident Response:
•Set up and maintain tools for real-time threat monitoring and incident response.
•Analyze and respond to security incidents, ensuring swift resolution.
•Create and test disaster recovery and incident response plans.

Collaboration and Training:
•Work closely with developers to embed security in every stage of the development process.
•Collaborate with business stakeholders to gather and analyze their needs, translating business requirements into cloud-based solutions.
•Act as the liaison between business units, cloud architects, and IT teams, ensuring clear communication and understanding of cloud requirements.
•Responsible for account creation, accounting, billing management
•Conduct security training and workshops for DevOps and development teams.
•Foster a culture of “security as everyone’s responsibility.”
•Cloud Cost Management: Billing, accounting, Cost Optimization Strategies

Compliance and Best Practices:
•Ensure adherence to security standards (e.g., ISO 27001, SOC 2, PCI DSS, GDPR, DPDP Act).
•Stay updated on industry trends, threats, and best practices in DevSecOps.
•Continuously evaluate and improve the organization’s security posture.

Security Risk Analysis and Vulnerability Assessment:
•Identify and prioritize vulnerabilities based on their severity and potential business impact.
•Stay updated on the latest vulnerabilities, exploits, and security trends.
•Recommend and implement security improvements to prevent recurring vulnerabilities.
•Document vulnerabilities with detailed reports, including remediation recommendations.
•Simulate real-world attacks to evaluate the effectiveness of security measures.
•Analyze the results of penetration tests to identify security gaps and potential attack vectors.
•Assess the organization’s overall security posture by evaluating risks and potential attack surfaces
•Perform threat modeling to identify high-risk areas that require immediate attention.
•Provide recommendations for risk mitigation based on findings.
•Create detailed reports of findings from vulnerability assessments and penetration tests.
actionable remediation steps and recommendations for improvement on findings

Important Links:

About National e-Governance Division (NeGD)

The National e-Governance Division (NeGD) is an independent business division under the Digital India Corporation, Ministry of Electronics and Information Technology. NeGD has been playing a pivotal role in supporting MeitY in Programme Management and implementation of e-Governance projects and initiatives undertaken by various Ministries/ Departments, both at the Central and State levels.

NeGD has been spearheading several innovative initiatives under the aegis of the Digital India Programme. Those have been developed keeping the vision areas of Digital India at the core- providing digital infrastructure as a core utility to every citizen, governance and services on demand and in particular, digital empowerment of the citizens of our country; some of these initiatives include DigiLocker, UMANG, Poshan Tracker, OpenForge Platform, API Setu, National Academic Depository, Academic Bank of Credits, Learning Management System.