云安全 Jobs

I want to run a small-scale proof of concept—no more than five endpoints (Windows, Mac laptops, windows server and mobile device iPhone and Android) —to show how Microsoft Defender with VPN and Intune can secure and manage various devices. On the Defender side: real-time threat protection, vulnerability management dashboards, and endpoint detection and enrollment. Enable web protection (online privacy and security by creating an encrypted tunnel for internet traffic) using Microsoft VPN services (which was part of defender but now provided as a separate service) Current setup: Entra ID setup and sync with on-premise AD accounts These activities are done prod systems so credentials cannot be shared, all the work must be done using screen sharing tools like anydesk, teamviewe...

We are migrating and hardening a healthcare-oriented web platform on AWS. We need an engineer (or small team lead) who can discover the current environment, design a safe cutover plan, execute migration and modernization (lift-and-shift where appropriate, refactor where required), and leave us with documented, automated operations (IaC, CI/CD, observability, backup/DR, security controls). What I expect from you • Review the current EC2, RDS, and S3 configurations, then right-size or redesign them for lower cost without hurting performance. • Implement cost-saving measures such as auto-scaling policies, spot or reserved instances, storage life-cycle rules, and any other best-practice features you recommend. • Harden the setup with sensible security settings and monitor...

Implement secure workload identity for Kubernetes using SPIFFE/SPIRE. Deploy SPIRE Server and Agents, configure attestation, issue short-lived identities (SVIDs), and integrate with service-to-service authentication using mTLS. Package deployments using Helm charts for scalable and repeatable infrastructure.

My internal ERP sits behind a private domain that I’m ready to move under Cloudflare Zero Trust. The goal is simple: when someone tries to reach the ERP URL, the prompt must enforce multi-factor authentication and allow the session to open only if the request comes from one of our office computers on our Wi-Fi network. Anything originating elsewhere—home, café, mobile hotspot—should be denied outright. Here is what I need from you as the security specialist familiar with Cloudflare Access, Gateway, and device posture rules: • Configure the domain inside Cloudflare, enabling the security features that sit in front of the ERP server (Firewall, WAF, DDoS protection). • Create an Access policy that ties identity (Google Workspace / Azure AD, or another SS...

I run a small construction company and want to build a long-term relationship with an external IT team that bills by the hour. My most pressing need is tightening our email defences, but you will also step in whenever we face issues with phone or computer security, malware, or any attempt at hacking. For email specifically, make sure your proposal shows how you will: • stop spam and phishing before it reaches our staff, • enable encrypted communications that are simple for non-technical users, • set up access controls and ongoing monitoring so we always know who touched what and when. Beyond email, outline the tools and processes you use to harden endpoints, secure mobile devices, and perform rapid incident response. A detailed project proposal explaining your approach, ti...

I’m enrolled in an online security course and the Capture-the-Flag component is very challenging. Your role is to coach me through these CTF tasks, sharpening technique rather than simply handing over flags. During live screen-share sessions, I want you to help me: - navigate through multiple machines and OS (Windows and Linux) - navigate various exploits (metasploit, kali) basd on the unique machine environment - navigate different clues and dead ends We can schedule focused virtual meetings around specific machines and exploits and walk through challenges. If this sounds like your kind of deep dive, let’s connect and plan the first walkthrough.

**Title:** Senior Full-Stack Auditor & Technical Overseer ( / Supabase / Lovable) **Project Overview:** We are building *Smart Connect Solutions*, a professional service-based marketplace focused on HR and on-demand services. The frontend and initial logic have been generated using AI (), and we are now looking for a highly experienced Senior Full-Stack Developer to act as a long-term Technical Consultant and Auditor. This is not a traditional development role. Instead, we are seeking a “Technical Guardian” who ensures the platform remains scalable, secure, and well-architected as we grow. --- **Key Responsibilities:** * **Code Audit:** Review and validate code exported from Lovable to ensure quality, performance, and security best practices. * **Architecture & ...

I am looking for an experienced cybersecurity professional to prepare a detailed and comprehensive report on recent cyber security incidents in the healthcare sector. The report should cover the latest real-world incidents (2026), including attack methods, impact, indicators of compromise (IOCs), indicators of attack (IOAs), and actionable recommendations for improving security posture within an organization. Scope of Work: The freelancer is expected to include: Latest Cybersecurity Incidents in Healthcare Detailed analysis of recent attacks (e.g., ransomware, data breaches, supply chain attacks) Examples like hospital ransomware attacks, healthcare vendor breaches, etc. Attack Breakdown Initial access (phishing, vulnerabilities, credential theft, etc.) Lateral movement and privilege es...

the customised WhatsApp-marketing script is ready to upload. What I now need is a specialist who can: • Install and configure the full stack on my AWS server (security groups, SSL, database, background jobs, all dependencies). • Bring the tool online and run end-to-end tests so every campaign feature—bulk sending, contact import, reporting, scheduling—works without errors or rate-limit issues. • Guide me through obtaining the correct WhatsApp Business API credentials and completing Meta Business verification, then wire those keys into the application. • Hand over clear setup notes and a short walkthrough so I can manage routine maintenance myself. Acceptance criteria 1. Application accessible over HTTPS and passes basic load test. 2. Message send...

We’re looking for someone to join our team for a 6-month freelance/contract/full time role (remote) focused on application authentication and authorization using Microsoft Entra ID. In this role, you will design and implement secure identity solutions, enabling **SSO, OIDC/SAML integrations**, and centralized access control across enterprise applications. You will work closely with development and infrastructure teams to modernize authentication flows and strengthen IAM practices. **Key Responsibilities** * Implement and manage authentication & authorization using Microsoft Entra ID * Design and integrate **SSO solutions (OIDC/SAML)** for applications * Configure and enforce **access control, MFA, and Conditional Access policies** * Integrate modern apps (React, APIs) and lega...