Sécurité cloud Jobs

Je souhaite établir une collaboration sur la durée avec un(e) spécialiste capable de renforcer la sécurité de nos réseaux d’entreprise, de nos environnements cloud et de notre parc IoT. Objectifs prioritaires • Mettre en place une protection active contre les intrusions (IDS/IPS, segmentation, règles firewall affinées). • Sécuriser les données en transit et au repos : chiffrement, gestion des clés, politiques de sauvegarde vérifiables. • Structurer la gestion des accès : Zero-Trust, MFA, revues de droits périodiques. Défis actuels – Menaces internes : droits excessifs, shadow IT, comportement à risque. – Attaques externes : phishin...

I have an Azure VM with an attached hard disk that contains a collection of documents and files. I simply need every file moved from that managed disk into Azure Blob Storage without altering the existing folder structure or renaming anything. Scope • Detach or snapshot the current managed disk safely. • Copy all data to a new or existing Blob container, keeping the directory hierarchy intact. • Configure access permissions on the container so that I can manage public/private access levels and shared access signatures easily later. Key Points • No data re-organization or cleanup is required—just a clean, reliable transfer. • Please use standard Microsoft-recommended tooling such as AzCopy, Azure CLI, or Storage Explorer and document the exact commands...

Necesito ayuda para configurar el acceso de AWS S3 en mi aplicación Plane que está desplegada en un servidor Hetzner con arquitectura ARM64 (aarch64). Contexto: Tengo una aplicación Plane (self-hosted) corriendo en un servidor ARM64 Tengo un bucket S3 en AWS (región eu-south-2) llamado "coolify-tools" La aplicación muestra el error: "Access to the bucket 'coolify-tools' is forbidden. Check permissions" Ya tengo configurados IAM users, roles, policies y un Trust Anchor en IAM Roles Anywhere Lo que necesito: Diagnosticar por qué Plane no puede acceder al bucket S3 Configurar correctamente las credenciales de AWS en Plane (Access Keys o IAM Roles Anywhere) Verificar que los permisos de IAM están correctame...

Design and operate a production-grade Google Cloud platform for a global SaaS solution with deep hands-on ownership of Kubernetes, CI/CD, service mesh, and auditability. Deploy and manage regional GKE clusters (e.g., primary in me-central1/Riyadh), implement secure multi-environment landing zones, and build reusable Infrastructure-as-Code with automated, auditable provisioning. Build CI/CD pipelines using Cloud Build and/or GitHub Actions to containerize and deliver Python backend and Angular frontend services, publish Docker images, and deploy via Helm charts with tenant-specific configuration. Implement advanced deployment strategies on GKE using Istio service mesh, including header-based canary releases and tenant-aware traffic routing (e.g., X-Tenant-ID). Enable global scalability, mul...

My EKS-based application is running in a Development cluster and currently throws 403 errors whenever the pods attempt to reach our S3 bucket. The root cause is clear: the Kubernetes service account has never been configured for IAM Roles for Service Accounts (IRSA). I need someone to walk through the entire IRSA setup, make the changes, and prove that the pods can finally read and write to S3 without hard-coded credentials. Scope of work • Discover the AWS account ID with AWS CLI. • Draft and apply the trust relationship JSON that lets the service account assume a new IAM role. • Create that IAM role, then craft a least-privilege S3 access policy and attach it. • Annotate the existing Kubernetes service account so it references the role. • Validate the ...

I'm seeking an experienced DevOps engineer to reverse engineer my current Alicloud environment. The setup runs an application using Kubernetes. Your tasks will include: - Documenting in-depth technical details on: - Existing CI/CD pipeline using Github actions - Automated build (CI) - Infrastructure setup - Kubernetes configurations - Security policies - Training my existing team on: - Basic Kubernetes management - Advanced Kubernetes troubleshooting - Alicloud-specific operations Ideal skills and experience: - Proficiency in Alicloud and Kubernetes - Strong documentation skills - Experience in training technical teams - Knowledge of security policies and infrastructure setup Please provide a detailed plan and relevant experience in your bid.

I need an Angular-based project, which is already built for manufacturing, deployed on a cloud server. I'm open to discussing which cloud service provider to use. Requirements: - Experience with deploying Angular applications - Familiarity with major cloud service providers (AWS, Azure, Google Cloud) - Knowledge of cloud server configurations and security best practices - Ability to troubleshoot and resolve deployment issues Ideal Skills & Experience: - Proven track record in cloud deployments - Strong understanding of Angular and related technologies - Good communication skills for discussing deployment options

Cloud Security Specialist – Immediate Infrastructure Hardening (Short Term) Project Overview Duration: 3 to 5 days Location: Remote Start: Immediate A healthcare technology platform requires a Cloud Security Specialist to implement quick security improvements identified in a recent penetration assessment. This is a focused, short-term assignment aimed at reducing immediate attack surface exposure at the infrastructure layer. Scope of Work All listed tasks must be completed. 1. Server Version Disclosure Prevention Remove server and framework version information from HTTP responses. Responsibilities Configure AWS Application Load Balancer to remove server headers Update CloudFront response headers policy Disable X Powered By headers in Customize error responses to prevent ve...

Cloud Security Specialist – Immediate Infrastructure Hardening (Short Term) Project Overview Duration: 3 to 5 days Location: Remote Start: Immediate A healthcare technology platform requires a Cloud Security Specialist to implement quick security improvements identified in a recent penetration assessment. This is a focused, short-term assignment aimed at reducing immediate attack surface exposure at the infrastructure layer. Scope of Work All listed tasks must be completed. 1. Server Version Disclosure Prevention Remove server and framework version information from HTTP responses. Responsibilities Configure AWS Application Load Balancer to remove server headers Update CloudFront response headers policy Disable X Powered By headers in Customize error responses to prevent ve...

is seeking an experienced web application security specialist to address specific vulnerabilities identified in our recent penetration testing assessment. As a healthcare technology company specializing in innovative oral health monitoring solutions, we prioritize robust security standards and regulatory compliance. This is a focused, short-term engagement to remediate six specific security findings in our web application infrastructure. We need an independent contractor who can take full ownership of implementing these security fixes efficiently and professionally. Scope of Work - Specific Vulnerability Remediations Based on our completed Web Penetration Testing assessment, you will address the following security findings: 1.-n/a 2. Server Version Disclosure Prevention • Task Ty...

is seeking an experienced web application security specialist to address specific vulnerabilities identified in our recent penetration testing assessment. As a healthcare technology company specializing in innovative oral health monitoring solutions, we prioritize robust security standards and regulatory compliance. This is a focused, short-term engagement to remediate six specific security findings in our web application infrastructure. We need an independent contractor who can take full ownership of implementing these security fixes efficiently and professionally. Scope of Work - Specific Vulnerability Remediations Based on our completed Web Penetration Testing assessment, you will address the following security findings: 1.-n/a 2. Server Version Disclosure Prevention • Task Ty...

I'm seeking a contractor with deep expertise in Microsoft Active Directory Certificate Services (ADCS) to help us properly configure and stabilize our internal Certificate Authority. Current State: - Fully configured but unstable. Key Issues: -Enterprise CA configuration and hardening -Certificate template design (Kerberos Authentication, Computer/Wi‑Fi, NPS/RADIUS) -Integration with NPS for EAP‑TLS and Wi‑Fi/VPN authentication -Ensuring domain controllers receive and renew the correct Kerberos Authentication certificates -General PKI best practices and remediation Ideal Skills and Experience: - Extensive experience with ADCS. - Strong troubleshooting skills. - Ability to configure and optimize certificate templates. - Familiarity with Active Directory and related services. Your ...

We are seeking an experienced ClawdBot/OpenClaw practitioner who can also handle AWS setup to help stand up a Clawd-based CloudBot environment on Amazon AWS for two users. This is a turn-key engagement for someone who already understands how ClawdBot /OpenClaw works in practice - including setup, security boundaries, and safe configuration. AWS is the infrastructure layer, but CloudBot expertise is the priority. Scope includes: • Deploying OpenClaw (Docker preferred) on a single, cost-efficient AWS instance. • Configuring two user accounts with proper isolation and access control. • Setting up one simple interaction method (web UI or Telegram). • Advising on best practices for light integrations (email/calendar) and what not to overbuild. • A short live walkthrou...

TOR — Causeway Finance Website + Resource Library (Production-Ready, Admin + CI/CD) Deadline: 17 Feb 2026, 18:00 Cairo (UTC+2) Production domains: + Staging: (or equivalent) Inputs (authoritative) Version A: Version B: What I provide Full Drive package access (code + materials) AWS IAM access (scoped/least-privilege) for deployment/setup Project Title: Causeway Finance Website + Resource Library + Admin System (EN/AR) + AWS CI/CD Final Deadline: 17 Feb 2026, 18:00 Cairo (UTC+2) Project Type: Fixed-Price, Strict Milestone-Based 1. Project Overview & Objective We are seeking a top-tier full-stack developer to build and deploy a production-ready, bilingual (EN/AR) website and a comprehensive admin control panel for Causeway Group. The target audience is banks and financial in...