MeteorOps

HIPAA-Ready AWS CI/CD for Next.js

Set up a simple, secure, trunk-based CI/CD pipeline and AWS IaC for a Next.js monorepo. Build multi-account environments with gated staging and manual production promotion, focusing on HIPAA/SOC2 readiness without unnecessary complexity.

Goals:

  • →Provision multi-account AWS infrastructure with Terraform (VPC, RDS, S3, CloudTrail, WAF, Secrets)
  • →Implement trunk-based CI/CD with staged deploys, automated tests/lints/security checks, and manual production promotion
  • →Deploy the Next.js monorepo on Amplify with secrets integration, monitoring, and compliance-ready controls, plus documentation and training
AWSTerraformGitHub ActionsNext.jsAWS AmplifyPostgreSQL (RDS)DockerAWS Secrets Manager
Healthcare company in USA, seed-funded at the startup stage. Work is remote. greenfield type project.

This is why we're looking for help:

The team needs a compliant-by-design pipeline with strong guardrails and fast feedback while keeping the system simple for a small engineering group. They also need clear guidance on hosting trade-offs (Amplify vs Vercel vs ECS), secret management, and multi-tenant considerations. Compliance (HIPAA now, SOC2 later) and future data/ML needs add complexity that requires expert setup.

Apply to this project

Submit your application and we'll get back to you soon.

PDF, DOC, or DOCX (max 5MB)

h/
$/hr