Seguridad en la Nube Jobs

AWS Cloud Architect Contract Engagement (3-6 months) US Citizenship Required We are seeking an experienced AWS Cloud Architect to lead the design and execution of a cloud migration from AWS Commercial to AWS GovCloud. The migration scope includes more than 150 EC2 instances with associated volumes, snapshots, and AMIs across development, testing, and customer support environments. This engagement is driven by the CMMC Level 2 compliance initiative and requires hands-on GovCloud expertise from day one. What You'll Do - Design and build the GovCloud landing zone from scratch, including VPCs, IAM structure, networking, and security baselines - Develop a comprehensive migration runbook covering sequencing, procedures, rollback plans, and validation checklists for EC2 instances - Define...

Deployment and configuration of an Application Gateway • Configuration of DDoS protection for the Application Gateway public IP • Configuration of Azure Traffic Manager • Deployment of any additional resources required by the application to support non-production environments / testing (Such as storage accounts) • Configuration and DNS cutover of non-live instances / slots / domains of the application, alongside up to 7 public domain names, testing and validatio • Configuration and DNS cutover of the Production instances / slots / domains of the application, alongside up to 7 public domain names, testing and validation • Documentation and handover detailing any configuration and changes made during the project.

Hi I will share the details with the shortlisted candidates. Thanks

I want to run a small-scale proof of concept—no more than five endpoints (Windows, Mac laptops, windows server and mobile device iPhone and Android) —to show how Microsoft Defender with VPN and Intune can secure and manage various devices. On the Defender side: real-time threat protection, vulnerability management dashboards, and endpoint detection and enrollment. Enable web protection (online privacy and security by creating an encrypted tunnel for internet traffic) using Microsoft VPN services (which was part of defender but now provided as a separate service) Current setup: Entra ID setup and sync with on-premise AD accounts These activities are done prod systems so credentials cannot be shared, all the work must be done using screen sharing tools like anydesk, teamviewe...

We are migrating and hardening a healthcare-oriented web platform on AWS. We need an engineer (or small team lead) who can discover the current environment, design a safe cutover plan, execute migration and modernization (lift-and-shift where appropriate, refactor where required), and leave us with documented, automated operations (IaC, CI/CD, observability, backup/DR, security controls). What I expect from you • Review the current EC2, RDS, and S3 configurations, then right-size or redesign them for lower cost without hurting performance. • Implement cost-saving measures such as auto-scaling policies, spot or reserved instances, storage life-cycle rules, and any other best-practice features you recommend. • Harden the setup with sensible security settings and monitor...

Implement secure workload identity for Kubernetes using SPIFFE/SPIRE. Deploy SPIRE Server and Agents, configure attestation, issue short-lived identities (SVIDs), and integrate with service-to-service authentication using mTLS. Package deployments using Helm charts for scalable and repeatable infrastructure.

My internal ERP sits behind a private domain that I’m ready to move under Cloudflare Zero Trust. The goal is simple: when someone tries to reach the ERP URL, the prompt must enforce multi-factor authentication and allow the session to open only if the request comes from one of our office computers on our Wi-Fi network. Anything originating elsewhere—home, café, mobile hotspot—should be denied outright. Here is what I need from you as the security specialist familiar with Cloudflare Access, Gateway, and device posture rules: • Configure the domain inside Cloudflare, enabling the security features that sit in front of the ERP server (Firewall, WAF, DDoS protection). • Create an Access policy that ties identity (Google Workspace / Azure AD, or another SS...

I run a small construction company and want to build a long-term relationship with an external IT team that bills by the hour. My most pressing need is tightening our email defences, but you will also step in whenever we face issues with phone or computer security, malware, or any attempt at hacking. For email specifically, make sure your proposal shows how you will: • stop spam and phishing before it reaches our staff, • enable encrypted communications that are simple for non-technical users, • set up access controls and ongoing monitoring so we always know who touched what and when. Beyond email, outline the tools and processes you use to harden endpoints, secure mobile devices, and perform rapid incident response. A detailed project proposal explaining your approach, ti...