Seguridad en la Nube Jobs

Dispongo de una réplica de SQL Server alojada en una máquina virtual de Azure y necesito exponerla a internet sin comprometer la seguridad. para poder acceder desde MCP's Qué busco • Un esquema de arquitectura robusto que contemple acceso público controlado, buenas prácticas de red y servicios administrados de Azure. • Configurar Microsoft Data API Builder para publicar endpoints REST/MCP sobre las tablas y vistas que autorice (ambos tipos deben quedar operativos). • Implementar autenticación combinada JWT y OAuth2, delegando correctamente los permisos de lectura en la base de datos (solo read-only). • Añadir una capa de seguridad perimetral: mi preferencia es Azure Front Door, pero puedo considerar WAF, AP...

I run my workload on a single Compute Engine instance and I’m urgently looking to tighten security after a recent unauthorized-access event. The immediate priorities are: • Lock down the instance: review and update firewall rules, service accounts, IAM roles, OS-level settings, and any exposed ports. I expect clear recommendations (e.g., Cloud Armor policies, VPC Firewall tweaks, OS patching) and implementation where feasible. • Trace the breach: pull the relevant Cloud Logging records, VPC flow logs, and any SSH / RDP audit data to build a timeline showing when the intrusion occurred, the source IPs, and actions performed. Deliver the raw export plus a concise report so I can hand it to management. • Prevent recurrence: enable or improve ongoing monitoring—Se...

Senior Zscaler engineer needed to guide me over the shoulder while I rebuild the foundational pieces of our ZPA/ZIA setup. I drive the consoles; you advise in real time and explain the why behind each setting. Context: A current implementation works but isn't scalable, security-focused, or aligned with best practice. Goal is to reset the foundation so those problems don't carry forward, built to a strong security bar, with a structure that scales cleanly across employees, contractors, admins, and third parties without rework. Constraint: Okta SSO is operational and out of scope. ZIdentity group/role binding is on a separate track. Work fits around both. In scope: - Hardened pre-auth machine tunnel with the strongest realistic device trust model - Least-privilege pre-logon acc...

I need an expert to improve the performance of my AWS VPC. The goal is to enhance my network performance to support a high-demand environment. Key objectives include: - Reducing latency - Increasing throughput - Enhancing reliability Ideal skills and experience: - Extensive knowledge of AWS networking, especially VPC Site to Site VPN with On-prem, Firewalls, IGW, Security Group, NAT GW - Proven track record in optimizing AWS and campus Networking environments - Strong understanding of network latency, throughput, and reliability metrics - AWS networking certifications would be a plus

I need an end-to-end roll-out of Data Loss Prevention, Bitdefender security, and Mobile Device Management within our small enterprise environment. The primary objective is data protection, with a clear emphasis on data loss prevention. Scope of work • Design an integrated architecture that combines Bitdefender GravityZone (or equivalent) with a robust DLP module and a cloud-based MDM platform. • Install and configure the solutions across all endpoints—laptops, desktops, and mobile devices—using best-practice security hardening. • Build and fine-tune DLP policies so they: – Monitor data transfers in real time – Block any unauthorized access or exfiltration attempts – Alert me immediately when suspicious activity occurs (em...

I run an EU-registered consultancy delivering cybersecurity services to mid-market and enterprise clients in France and broader Europe. I'm building a roster of cybersecurity engineers I can engage on a recurring basis as client missions come in — not a one-off project. What I'm looking for : A cybersecurity engineer (mid-level acceptable, 3+ years hands-on) able to deliver vulnerability assessments and penetration tests on: - Network infrastructure (internal/external) - Web applications (OWASP Top 10, API security) - Cloud environments (AWS, Azure, or GCP — at least one) Required : - At least one recognized certification: OSCP, CEH, CompTIA PenTest+, or equivalent (please state which in your bid) - Hands-on experience with Nmap, Burp Suite, Metasploit, OWASP ZAP, a...

I want a brand-new, US-based account created for me. This must be a completely new setup that has never been used before. Once the profile is registered, activate a Pay As You Go subscription and attach it to a credit card; I will supply the card details as soon as we start. After the subscription is live, turn on the standard Developer Plan so I can immediately provision development and testing resources. Deliverables • Secure Azure login (temporary password for first access) • Pay As You Go subscription visible and active in the Subscriptions blade • Developer Plan enabled on the account • Brief hand-off document covering the steps you took and how I can change billing or recovery details Acceptance criteria I can log in from my location, view the activ...

I need an experienced consultant to dive straight into our cloud environment and advise on the best way to strengthen, scale, and streamline it. The scope is squarely on cloud solutions—everything from selecting or validating the right platform to designing the overall architecture, improving reliability, and keeping costs predictable. Because the business is moving fast, I’m aiming for actionable recommendations almost immediately. We can begin as soon as we agree on the approach, and I’d like to see a first draft of your findings within days, not weeks. To keep expectations clear, the core deliverables should be: • A concise assessment of the current state, highlighting risks and quick wins • A future-state architecture diagram with justifications for ea...

I have a newly built software platform running entirely on Firebase and, as part of my contract with the end-client, I must supply an independent penetration-testing report. The application itself is straightforward—no AI components or unusual integrations—so the engagement will be tightly focused on classic web and cloud-hosted attack surfaces. Key focus areas • Authentication issues: confirm sign-in, session handling and privilege escalation vectors are fully locked down. • Data leakage: verify that Firestore, Cloud Storage buckets and any API endpoints are not exposing sensitive information through misconfigurations or improper access rules. • Injection attacks: test for SQL-like or NoSQL injection, as well as any injection vectors in Cloud Functions or...