Hire the Best Cloud Security Framework Specialists

More than 3,000 reviews on G2
Rating is 4.5 out of 5.
4.5/5
of Upwork by G2 peer reviewers
David M.

Tonbridge, United Kingdom

$50/hr
5.0
5 jobs

๐Ÿ”’ You need security that actually works โ€” not a report that says it does. The organisations I work with want to find the vulnerabilities that matter, fix them with confidence, and get on with growing their business without security becoming the thing that stops them. I have delivered over 1,000 commercial penetration tests across 27 years. Not side projects. Not internal assessments. Full mission-critical engagements for high street and investment banks, hedge funds, insurance firms, government departments, police, military, national infrastructure, retailers, law firms, airports and more. I led the security architecture for the Athens 2004 Olympics internet-facing systems. I was lead architect on the UK Cyber Essentials scheme at launch. I have published in commercial security press and guest lectured at universities. There is a difference between someone who does penetration testing and someone who has seen every flavour of environment, every attack pattern, and every way organisations deceive themselves about their security posture. That difference is what you are hiring. ๐ŸŽฏ Where can I help: ๐Ÿ—ก๏ธ Network & Infrastructure Penetration Testing โ€” adversarial testing of internal and external infrastructure, finding exploitable exposures before an attacker does. ๐ŸŒ Application Penetration Testing โ€” web application and API security testing against real attack patterns: authentication, authorisation, input handling and business logic flaws. โ˜๏ธ Microsoft 365 Security Assessment โ€” Entra ID, Conditional Access, PIM, Intune, DLP, sensitivity labelling, Exchange Online and Defender for Office 365. ๐Ÿ”ท Azure Security Assessment โ€” identity and access management, network controls, storage and key management, Defender for Cloud posture, and monitoring coverage. ๐ŸŸข Google Workspace, GCP & AWS Security Assessments โ€” configuration and access control assessments across Google and Amazon cloud environments. ๐Ÿ›๏ธ Security Architecture and Risk Advisory โ€” senior technical input on architecture decisions, control design and risk without a full engagement commitment. ๐Ÿ‘ค Every engagement is delivered directly by me โ€” David Morgan, founder of Metis Security. No account management layer, no junior handoffs, no templated output. You work with the person conducting the analysis and writing the report. ๐Ÿ“‹ How I work is as important as what I find Every finding in my reports is one I will defend as genuinely material to your environment. No padding, no low-hanging fruit included to justify the fee, no default risk ratings copied from a scanner. If your context changes the risk, the rating reflects that. What you receive: โœ… A visually structured report with clear separation between executive summary, findings and remediation roadmap โ€” written to be read by people who are not security specialists โœ… Risk ratings adjusted to your specific environment and context, not defaulted from a tool โœ… A prioritised remediation roadmap so your team knows exactly what to fix first and why it matters commercially โœ… Immediate escalation of any high-risk finding or schedule-affecting issue during the engagement โ€” you are never waiting until the end to hear something important โœ… Daily status updates so you always know where the engagement stands โœ… A debrief call at close to walk through findings, answer questions and finalise the report before it is delivered CISSP | ISSAP | Microsoft Security certifications | 27 years If you need to know whether your environment is genuinely secure โ€” not whether it looks configured โ€” I am worth a conversation.

  • Cloud Security
  • Penetration Testing
  • Web Application Security
  • Network Penetration Testing
  • Office 365
  • Microsoft Azure
  • Network Security
  • Vulnerability Assessment
  • Security Assessment & Testing
  • Cybersecurity Management
  • Zero Trust Architecture
  • Security Analysis
  • Google Cloud Platform
  • Google Workspace
  • Amazon Web Services
  • NIST Cybersecurity Framework
  • Microsoft 365 Copilot
  • Internet Security
  • Information Security Audit
  • Information Security Consultation
Nandy B.

Lehigh County, Pennsylvania

$85/hr
5.0
280 jobs

๐Ÿ—ฝ U.S. and ๐Ÿ Canada -only clients โ˜‘๏ธ Upwork Expert-Vetted ๐ŸŒŸ | 100% Job Success โœ… | 10,000+ hours ๐Ÿ’ป on 200+ projects Hi there! ๐Ÿ‘‹ Iโ€™m an Upwork veteran with over 10,000 hours delivered, 200+ successful projects, and $1M+ earned helping U.S. companies secure and scale their cloud and hybrid environments. โ˜๏ธ I specialize in Azure, Microsoft 365, and security-focused systems โ€” delivering: โ€ข Secure infrastructure using Zero Trust, IaC (Terraform/Bicep), and DevSecOps pipelines โ€ข Incident response, forensics, and breach containment across regulated industries โ€ข Compliance-ready solutions aligned to SOC 2, HIPAA, ISO 27001, and NIST 800-53 As a certified consultant, I work directly with technical teams to deliver secure cloud transformation, implement controls, and respond to threats โ€” fast. I also collaborate with Microsoftโ€™s internal dev teams, giving me early-access insights and practical fixes 3โ€“4 release cycles ahead of public rollout. Why Choose Me? โœ… $1M+ in security projects delivered across healthcare, fintech, crypto, and gov sectors ๐Ÿ” Architected Azure landing zones, GitOps pipelines, and zero trust cloud environments ๐Ÿšจ Led incident response and forensic investigations for Fortune 500 and defense clients ๐Ÿ“Š Built compliance workflows and policy-as-code enforcement for audit success ๐Ÿช™ Secured crypto CI/CD pipelines and smart contract environments with GitHub, Checkov, GHAS ๐Ÿง  Career Highlights: โ–ช Delivered security modernization and audit readiness for global government contractors and Fortune 500 companies โ–ช Led compliance remediation and data protection initiatives across healthcare, fintech, and public sector clients โ–ช Migrated global users to Microsoft 365 with security-first design โ€” Exchange, Purview, Intune, Defender โ–ช Built hybrid identity strategies (Entra ID, ADFS, GoDaddy 365, Azure AD B2C, custom policy support) โ–ช Managed VMware-to-Azure hardening with conditional access, audit enforcement, and security baselines ๐Ÿ”ง Solutions I Deliver: โ€ข Azure Infra Security: Terraform, Bicep, Azure Policy, RBAC, Defender for Cloud โ€ข DevSecOps: GitHub Actions, tfsec, Checkov, Trivy, GHAS, pipeline reviews โ€ข Microsoft 365 Hardening: Defender, Purview, Compliance Center, Intune, Exchange โ€ข Compliance & Audits: SOC 2, ISO 27001, HIPAA, GDPR, NIST, CIS Benchmarks โ€ข Incident Response & Forensics: Malware analysis, reverse engineering, breach recovery โ€ข Crypto Security: CI/CD for smart contracts, wallet infra hardening, Web3 audits โ€ข Reverse-engineered malware to identify attack vectors and harden systems post-breach โ€ข Hardened Microsoft Exchange Online and Defender for Email in phishing-prone orgs โ€ข Integrated Azure Sentinel analytics with dashboards for cross-cloud visibility ๐Ÿค Retainer & Advisory Support: โ€ข Ongoing guidance for CISOs, security architects, and compliance teams โ€ข Monthly retainers for SOC 2 evidence collection, security tool reviews, and policy automation โ€ข Rapid-response engagements for forensics, malware recovery, and breach root cause analysis ๐Ÿงฐ Platforms & Tools: โ€ข Azure, Microsoft 365, Azure Sentinel, Microsoft Defender (all modules), Intune โ€ข Terraform, Bicep, GitHub, Azure DevOps, GitOps, GHAS โ€ข Splunk, FTK, EnCase, Wireshark, Autopsy, Cisco ASA/Firepower โ€ข Checkov, Trivy, Aqua Security, smart contract security tooling โ€ข Compliance: SOC 2, HIPAA, ISO 27001, CIS, NIST, GDPR ๐Ÿ“… Letโ€™s set up a free 30-minute consultation to explore how I can help you with security transformation, compliance readiness, or urgent recovery โ€” no fluff, just fast, proven results. I bring the calm in chaos โ€” whether you're planning secure growth or cleaning up after a breach, Iโ€™ll steady the course and deliver results. ๐Ÿ“Œ Helped a fintech client pass SOC 2 in under 60 days ๐Ÿ“Œ Responded to ransomware, restored 95% of systems in 48 hours ๐Ÿ“Œ Hardened crypto wallet infra securing $100M+ in assets Thanks again for stopping by. You can invite me to your job post or simply send a message to arrange a quick discovery call โ€” I respond fast, and weโ€™ll keep everything inside Upwork. โ€” Nandy Bo ๐Ÿ—ฃ๏ธโ ๐™„๐™ฉ ๐™๐™–๐™จ ๐™—๐™š๐™š๐™ฃ ๐™– ๐™ฅ๐™ก๐™š๐™–๐™จ๐™ช๐™ง๐™š ๐™ฉ๐™ค ๐™ฌ๐™ค๐™ง๐™  ๐™ฌ๐™ž๐™ฉ๐™ ๐™‰๐™–๐™ฃ๐™™๐™ฎ ๐™™๐™ช๐™ง๐™ž๐™ฃ๐™œ ๐™ฉ๐™๐™š ๐™ฉ๐™ง๐™–๐™ฃ๐™จ๐™ž๐™ฉ๐™ž๐™ค๐™ฃ ๐™ค๐™› ๐˜พ๐™–๐™ก๐™ก๐™˜๐™ค๐™ข. ๐™‰๐™–๐™ฃ๐™™๐™ฎ ๐™ž๐™จ ๐™ซ๐™š๐™ง๐™ฎ ๐™œ๐™š๐™ฃ๐™ช๐™ž๐™ฃ๐™š, ๐™๐™ค๐™ฃ๐™š๐™จ๐™ฉ ๐™–๐™ฃ๐™™ ๐™๐™š๐™ก๐™ฅ๐™›๐™ช๐™ก ๐™ž๐™ฃ ๐™ฃ๐™–๐™ฉ๐™ช๐™ง๐™š. ๐™ƒ๐™š ๐™–๐™ก๐™จ๐™ค ๐™๐™–๐™จ ๐™– ๐™ซ๐™š๐™ง๐™ฎ ๐™ž๐™ฃ-๐™™๐™š๐™ฅ๐™ฉ๐™ ๐™ ๐™ฃ๐™ค๐™ฌ๐™ก๐™š๐™™๐™œ๐™š ๐™ค๐™› ๐™„๐™ ๐™ฌ๐™๐™ž๐™ก๐™š ๐™ข๐™–๐™ž๐™ฃ๐™ฉ๐™–๐™ž๐™ฃ๐™ž๐™ฃ๐™œ ๐™– ๐™ซ๐™š๐™ง๐™ฎ ๐™—๐™ง๐™ค๐™–๐™™ ๐™ฅ๐™ง๐™ค๐™—๐™ก๐™š๐™ข-๐™จ๐™ค๐™ก๐™ซ๐™ž๐™ฃ๐™œ ๐™ค๐™ช๐™ฉ๐™ก๐™ค๐™ค๐™ . ๐™๐™๐™š๐™จ๐™š ๐™›๐™š๐™–๐™ฉ๐™ช๐™ง๐™š๐™จ ๐™ข๐™–๐™ ๐™š ๐™๐™ž๐™ข ๐™ฃ๐™ค๐™ฉ ๐™ค๐™ฃ๐™ก๐™ฎ ๐™– ๐™ฅ๐™ก๐™š๐™–๐™จ๐™ช๐™ง๐™š ๐™ฉ๐™ค ๐™ฌ๐™ค๐™ง๐™  ๐™ฌ๐™ž๐™ฉ๐™ ๐™—๐™ช๐™ฉ ๐™–๐™ก๐™จ๐™ค ๐™ซ๐™š๐™ง๐™ฎ ๐™ž๐™ฃ๐™จ๐™ฅ๐™ž๐™ง๐™–๐™ฉ๐™ž๐™ค๐™ฃ๐™–๐™ก. โž โ€” ๐™…๐™ค๐™ง๐™™๐™ค๐™ฃ ๐˜ฝ๐™ž๐™ก๐™ก - ๐™ˆ๐™–๐™ฃ๐™–๐™œ๐™ž๐™ฃ๐™œ ๐˜ฟ๐™ž๐™ง๐™š๐™˜๐™ฉ๐™ค๐™ง - ๐˜พ๐™–๐™ก๐™ก๐™˜๐™ค๐™ข ๐™„๐™ฃ๐™ฉ๐™š๐™ง๐™ฃ๐™–๐™ฉ๐™ž๐™ค๐™ฃ๐™–๐™ก

  • Cloud Security
  • Solution Architecture Consultation
  • Cloud Implementation
  • Information Security
  • Microsoft Endpoint Manager
  • Risk Assessment
  • Cloud Engineering Consultation
  • Microsoft Azure
  • Office 365
  • Email Security
  • Microsoft Exchange Online
  • Digital Forensics
  • Incident Response Readiness Assessment
  • Information Security Audit
Rishabh B.

Bangalore, India

$45/hr
5.0
74 jobs

Your infrastructure breaks at 2 AM. Your deploys take 45 minutes. Your AWS bill climbed 40% and nobody can explain why. I fix all three - and I've done it 100+ times on this platform. Former SRE Lead at Yellow AI (100M+ users, AWS + on-prem). Now I run Skybyte, a DevOps and cloud consulting practice focused on startups and mid-market teams that need senior infrastructure work without the senior hire. What 61+ Upwork jobs and a 100% Job Success Score actually look like: Cloud cost optimization - cut AWS/Azure/GCP spend by 40-60% through right-sizing, Reserved Instances, spot fleets, and architecture cleanup. Not guesswork; I run the cost audit, build the dashboard, and hand you the savings. Kubernetes migration and management - moved production workloads to EKS, AKS, and self-managed clusters on Hetzner. Helm charts, ArgoCD GitOps, zero-downtime cutovers. I've handled clusters running 200+ pods and clusters running 6. CI/CD pipeline engineering - GitHub Actions, GitLab CI, Azure DevOps Pipelines, Bitbucket Pipelines. Took teams from 45-minute manual deploys to sub-5-minute automated releases with rollback built in. Infrastructure as Code with Terraform - full AWS, Azure, and GCP environments defined in Terraform modules. State management, drift detection, and PR-based infrastructure reviews that your team can maintain without me. DevSecOps and compliance - SOC 2 infrastructure from scratch, cloud security audits, Cloudflare WAF and DDoS protection, network security architecture, and DPDP-aligned data handling. I've built the controls and written the documentation auditors actually accept. Monitoring, observability, and SRE - Prometheus, Grafana, OpenTelemetry, Datadog, PagerDuty. Full observability stacks that catch failures before your users file tickets. I set up SLOs, runbooks, and on-call workflows. Beyond core DevOps - SSO/SAML integration, n8n workflow automation, MLOps pipelines, Docker deployments on bare metal and VPS, GCP Cloud Run serverless, and technical documentation your team won't ignore. I work best with funded startups burning money on cloud, engineering teams stuck in deployment hell, and companies scaling past the point where one developer can manage the infrastructure part-time. Stack: AWS (EKS, EC2, Lambda, RDS, S3) ยท Azure (AKS, DevOps, AD) ยท GCP (GKE, Cloud Run) ยท Kubernetes ยท Helm ยท Terraform ยท Docker ยท GitHub Actions ยท GitLab CI ยท ArgoCD ยท Prometheus ยท Grafana ยท OpenTelemetry ยท Datadog ยท Cloudflare ยท n8n Not a "set it up and disappear" contractor. I document everything, train your team, and build systems designed to run without me and scale.

  • Cloud Security Framework
  • Cloud Computing
  • Kubernetes
  • SOC 2
  • Amazon Web Services
  • Python
  • Terraform
  • Deployment Automation
  • Docker
  • Microsoft Azure
  • Automated Deployment Pipeline
  • Git
  • CI/CD
  • System Administration
  • Network Security
  • Google Cloud Platform
  • Cloud Migration
  • DevOps Engineering
  • DevOps
  • AI Security
Andrii B.

Lviv, Ukraine

$40/hr
4.6
21 jobs

I'm a DevOps and Cloud Security engineer who builds infrastructure that passes audits โ€” not just infrastructure that runs. I've delivered compliance-grade cloud platforms three times over โ€” twice right here on Upwork: architected SOC 2 / ISO 27001-compliant infrastructure for a Lithuanian financial payment platform on GCP (secure networking, Istio service mesh, Jenkins CI/CD), and led SOC 2 / ISO 27001-aligned AWS infrastructure for a UK fintech (ECS, CloudFront, RDS, Lambda, GitHub Actions). Before that, I deployed enterprise monitoring (Grafana Enterprise โ€” GET, GEM, GEL) inside a US government cloud at DoD Impact Level 5, where every component met FedRAMP-grade security controls. What I do best: Kubernetes at scale โ€” multi-cluster EKS architecture, Karpenter and KEDA autoscaling, Helm/Helmfile delivery. At Mono I ran the EKS platform behind a marketplace serving 1M+ users at up to 27k RPS. My depth is EKS-native; the security model (RBAC, network policy, workload identity, admission control) transfers directly to GKE, and I've run production GCP infrastructure (Compute Engine, Cloud Run, Istio) โ€” including a multi-tenant platform serving 40+ tenants. Infrastructure as Code โ€” Terraform and Terragrunt as source of truth, including multi-workspace architectures across concurrent projects. Compliance-ready operations โ€” audit-friendly observability (Prometheus, Thanos, VictoriaMetrics, Grafana, Loki, Tempo), secrets management, secure PostgreSQL on RDS and self-hosted, security patching automation in Python and Bash. CI/CD & GitOps โ€” Jenkins, GitHub Actions, GitLab CI with self-hosted runners, ArgoCD; multi-environment promotion flows with rollback strategies. If your infrastructure needs to satisfy an auditor, a regulator, or a security review โ€” that's the work I do best. Let's talk.

  • Cloud Security
  • Kubernetes
  • Amazon Web Services
  • Terraform
  • DevOps
  • Google Cloud Platform
  • Docker
  • CI/CD
  • Ansible
  • Jenkins
  • Python
  • PostgreSQL
  • Golang
  • Linux
  • Bash
Sahil D.

Noida, India

$10/hr
4.7
167 jobs

๐ŸŽ– AWS Certified Solutions Architect โ€“ Professional ๐ŸŽ– AWS Certified Solutions Architect โ€“ Associate ๐ŸŽ– CISA Certified Information Security Expert ๐ŸŽ– 16+ Years in Cloud Security, Compliance & AI-Driven Automation ๐Ÿ’ก Track Record: โœ… 6,900+ Hours on Upwork โœ… 200+ Successfully Delivered Projects โœ… Top Rated Plus Freelancer When businesses need to secure their cloud infrastructure, pass a compliance audit, or build AI-powered DevSecOps pipelines โ€” they come to me. I'm a CISA-certified Cloud Security and Compliance Expert with 16+ years of experience helping startups, enterprises, and regulated industries build systems that are secure, audit-ready, and future-proof. What sets me apart today is my ability to combine deep compliance and security expertise with modern AI capabilities โ€” including Agentic AI workflows, prompt engineering, and intelligent automation โ€” to deliver faster results with fewer manual bottlenecks. Over 200+ projects and 6,500+ hours on Upwork, I've helped organizations across the US, Europe, and Middle East strengthen their security posture, achieve certifications, and ship secure products without slowing down their engineering teams. ๐Ÿค– AI & Intelligent Automation Skills (New & In-Demand) โœ… Agentic AI Development โ€” Design and deploy autonomous AI agents for compliance monitoring, security alerting, and audit evidence collection using LangChain, AutoGen, and CrewAI frameworks โœ… Prompt Engineering โ€” Craft production-grade prompts for security analysis, policy generation, risk assessment automation, and compliance documentation using GPT-4, Claude, and open-source LLMs โœ… AI-Powered DevSecOps โ€” Integrate AI-driven code scanning, vulnerability detection, and automated remediation into CI/CD pipelines โœ… Intelligent Compliance Automation โ€” Build AI workflows that continuously monitor controls, flag gaps, and generate audit-ready evidence โ€” reducing manual compliance effort by up to 70% โœ… LLM Integration & Development โ€” Integrate large language models into security dashboards, internal tools, and compliance platforms via REST APIs and SDKs ๐Ÿ” Core Expertise: Security, Compliance & Governance โœ… IT Compliance & Audit Readiness HIPAA, PCI-DSS, GDPR, ISO 27001, SOC 1 & SOC 2 implementation and audit support DPDP Act compliance frameworks and governance Risk assessments, gap analysis & security control mapping Policy development, security documentation & AI-assisted monitoring โœ… Security Audits, VAPT & Risk Mitigation Comprehensive security audits with detailed, actionable reporting Cloud Security Audits across AWS & Azure environments Vulnerability Assessment & Penetration Testing (VAPT) CIS Benchmarks and NIST framework enforcement Enterprise-wide vulnerability management & remediation planning โœ… DevSecOps & Cloud Security Engineering DevSecOps with Zero Trust architecture and AI-assisted threat detection Cloud Security Posture Management (CSPM) AWS Security Hub, GuardDuty, Inspector Azure Security Center & governance policies Secure CI/CD pipeline automation with built-in AI-powered security controls โ˜๏ธ Cloud & DevOps Engineering Cloud Platforms AWS (EC2, ECS, EKS, Lambda, IAM, S3, Route 53, RDS, CloudFormation) ยท Microsoft Azure (AKS, VMs, VNets, Azure DevOps, Azure Monitor) ยท Kubernetes ยท Docker ยท Terraform ยท Helm ยท GitOps ยท Ansible ยท Jenkins CI/CD & Infrastructure as Code GitHub Actions ยท GitLab CI/CD ยท Azure Pipelines ยท Terraform ยท CloudFormation ยท Automated deployments & release management Monitoring, Observability & Incident Response Prometheus ยท Grafana ยท OpenTelemetry ยท AWS CloudWatch ยท ELK Stack ยท Datadog ยท AI-assisted threat monitoring ยท Disaster recovery & business continuity planning ๐Ÿ’ก What You Get Working With Me โœ… Compliance-ready security frameworks built for audit day โœ… AI agents and automation that cut manual compliance work dramatically โœ… End-to-end security audits with clear, prioritized remediation plans โœ… Secure, scalable cloud infrastructure with proactive AI-powered monitoring โœ… DevSecOps pipelines with security and intelligence baked in from day one โœ… A single expert who speaks both security and AI โ€” no need to hire two people ๐Ÿ“ž Available now for cloud security audits, SOC 2 / ISO 27001 compliance, DevSecOps implementation, VAPT, Agentic AI development, and intelligent compliance automation. ๐Ÿš€ Let's talk about how I can help you build a system that's secure, compliant, and ready for the AI-driven future.

  • Cloud Computing
  • Amazon Web Services
  • DevOps
  • Docker
  • AWS CloudFormation
  • Kubernetes
  • Linux System Administration
  • Python
  • Microsoft Azure
  • Terraform
  • Web App Penetration Testing
  • ISO 27001
  • PCI DSS
  • SOC 2
  • HIPAA
Ehteshamuddin M.

Phoenix, Arizona

$45/hr
4.5
78 jobs

I build and run Production Infrastructure on AWS, GCP, Azure and on-prem. Most of my work the last few years has been Kubernetes (EKS, GKE, AKS, and bare metal RKE2 with Rancher) and getting that infrastructure through compliance audits: HIPAA, SOC 2, PCI DSS, NIST 800-53. 10+ years in DevOps. Top Rated Plus, 100% Job Success. ๐™Ž๐™ค๐™ข๐™š ๐™ง๐™š๐™˜๐™š๐™ฃ๐™ฉ ๐™ฅ๐™ง๐™ค๐™Ÿ๐™š๐™˜๐™ฉ๐™จ ๐™ฉ๐™ค ๐™œ๐™ž๐™ซ๐™š ๐™ฎ๐™ค๐™ช ๐™–๐™ฃ ๐™ž๐™™๐™š๐™– ๐™ค๐™› ๐™ฌ๐™๐™–๐™ฉ ๐™„ ๐™–๐™˜๐™ฉ๐™ช๐™–๐™ก๐™ก๐™ฎ ๐™™๐™ค: Built an on-prem RKE2 cluster from scratch for a company preparing for SOC 2 and HIPAA. Rancher for management, Cilium with WireGuard for encrypted pod traffic, GPU nodes for their ML workloads, Longhorn for storage, Velero for backups, ArgoCD for deployments. Also enforced SSO through Entra ID on every cluster and SSH access point because their auditors required it. Took a healthcare data platform through HIPAA hardening on AWS. ECS Fargate, Aurora PostgreSQL, private subnets, TLS everywhere, proper secrets handling. Phase one was making it work, phase two was making it pass an audit. Different skill sets, I do both. Modernized AWS infrastructure for a holding group running four brands. Moved everything to ECS Fargate and Aurora Multi-AZ, set up blue-green deployments, CloudFront in front. Midway through we found a security breach in their GitHub org and I handled the full remediation across every repo. Fixed a production Aurora MySQL performance problem that had their app timing out during peak hours. Root cause was tmp table spill to disk. Tuned it, added a reader, no downtime. I also do a lot of unglamorous work that keeps things running: CI/CD pipelines (GitHub Actions, GitLab CI, ArgoCD), Terraform for everything, monitoring with Prometheus and Grafana, cost cleanup, VPN and networking issues, database migrations. Industries I know well: Healthcare (HIPAA is second nature at this point), Fintech and Payments (PCI DSS), and B2B SaaS. ๐™’๐™๐™–๐™ฉ ๐™ฎ๐™ค๐™ช ๐™œ๐™š๐™ฉ ๐™ฌ๐™ค๐™ง๐™ ๐™ž๐™ฃ๐™œ ๐™ฌ๐™ž๐™ฉ๐™ ๐™ข๐™š: Infrastructure that is written down in code, documented, and reproducible. I answer messages fast and I will tell you upfront if something is a bad idea or if I am not the right person for it. Send me your project details and current setup. I will give you an honest read on scope and effort before you spend anything.

  • Cloud Computing
  • Kubernetes
  • Terraform
  • Docker
  • DevOps
  • Google Cloud Platform
  • Amazon Web Services
  • Cloud Architecture
  • CI/CD
  • Microsoft Azure
  • DigitalOcean
  • HIPAA
  • SOC 2
  • Ansible
  • Python
  • Data Warehousing & ETL Software
  • Django
  • Linux System Administration
  • AWS CloudFormation
  • Git

How it works

Post a job for freePost a job

Tell us what you need. Create your own job post or generate one with AI then filter talent matches.

Hire top talent fast

Consult, interview, and hire quickly, so you can meet the freelancers you're excited about.

Collaborate easily

Use Upwork to chat or video call, share files, and track project progress right from the app.

Payment simplified

Manage payments in one place with flexible billing options. Only pay for approved work, hourly or by milestone.

Don't just take our word for it

How do I hire a Cloud Security Framework Specialist on Upwork?

You can hire a Cloud Security Framework Specialist on Upwork in four simple steps:

  • Create a job post tailored to your Cloud Security Framework Specialist project scope. Weโ€™ll walk you through the process step by step.
  • Browse top Cloud Security Framework Specialist talent on Upwork and invite them to your project.
  • Once the proposals start flowing in, create a shortlist of top Cloud Security Framework Specialist profiles and interview.
  • Hire the right Cloud Security Framework Specialist for your project from Upwork, the worldโ€™s largest work marketplace.

At Upwork, we believe talent staffing should be easy.

How much does it cost to hire a Cloud Security Framework Specialist?

Rates charged by Cloud Security Framework Specialists on Upwork can vary with a number of factors including experience, location, and market conditions. See hourly rates for in-demand skills on Upwork.

Why hire a Cloud Security Framework Specialist on Upwork?

As the worldโ€™s work marketplace, we connect highly-skilled freelance Cloud Security Framework Specialists and businesses and help them build trusted, long-term relationships so they can achieve more together. Let us help you build the dream Cloud Security Framework Specialist team you need to succeed.

Can I hire a Cloud Security Framework Specialist within 24 hours on Upwork?

Depending on availability and the quality of your job post, itโ€™s entirely possible to sign up for Upwork and receive Cloud Security Framework Specialist proposals within 24 hours of posting a job description.