Hire the Best CyberARK Professionals

Most companies don't discover their M365 security gaps until after a breach - or a compliance audit. I've supported and secured enterprise environments spanning healthcare and financial services - including a 16,000+ user financial institution and a 12,000+ user healthcare organization - where security failures have real business consequences. I'm a Microsoft 365 and IAM Security Engineer with 6+ years of hands-on enterprise experience across cloud and on-premises environments. My work focuses on identity security, endpoint management, secure mobile access, and compliance-aligned Office 365 architecture. I don't just secure environments - I build scalable systems that improve operational efficiency, strengthen access governance, and support modern remote and BYOD workforces without sacrificing usability. What I do: 🔐 Identity & Access Management → Okta SSO/MFA integrated with Active Directory (12K+ users) → Okta application onboarding, SAML/OIDC SSO, and group-based access across 70+ enterprise apps → Automated joiner/mover/leaver (JML) provisioning via Okta group rules and Power Automate → CyberArk PAM - privileged account onboarding/offboarding and vault management → Microsoft Entra ID (Azure AD) - Conditional Access, RBAC, MFA, and SSPR → Azure Virtual Desktop (AVD) secure contractor workspace configuration → Windows Hello for Business and biometric authentication policies ☁️ Microsoft 365 & Office 365 Security and Endpoint Management → Microsoft Intune deployment and endpoint management → Conditional Access and BYOD security architecture → App Protection Policies (MAM) for Outlook, Teams, OneDrive, and SharePoint → Secure mobile access configuration balancing security and usability → Multi-domain Office 365 and M365 tenant administration → SharePoint Online, Teams, OneDrive, and Exchange Online administration → Microsoft Purview - DLP policies and eDiscovery → Windows Server administration and system configuration 🛡️ Infrastructure Security & Hardening → CIS Benchmarks and DISA STIG implementation on servers and workstations → GPO strategy design for security baselines and application control → Qualys Vulnerability Management - threat detection and remediation cycles → HIPS deployment, upgrade, and migration → Active Directory and Windows Server administration and PowerShell automation → Microsoft Exchange Server administration and migration support ⚙️ Power Automate & Business Process Automation → End-to-end HR automation - offer letters, contracts, and onboarding workflows → Contract generation triggered via SharePoint and Power Platform → Power Automate + Make integration for cross-platform workflows → License expiry tracking with automated notifications → IT operational workflow automation via Teams and Email integrations 📋 Compliance & Security Operations → CIS-aligned security documentation and SOX IT controls support → Technical risk assessments and compliance gap reporting → SIEM log triage, threat correlation, and incident support → Secure access governance for distributed and offshore teams I've administered multi-domain Active Directory and Windows Server environments, automated bulk AD operations via PowerShell, and resolved complex LDAP and replication issues in production enterprise environments. I've also supported a full enterprise identity provider migration from CyberArk to Okta, covering per-application SSO verification, authentication policy review, and automated provisioning design. Whether you need IAM architecture, Microsoft 365 security hardening, Intune deployment, Conditional Access architecture, Office 365 administration, or secure BYOD/mobile workforce management - I deliver structured, documented solutions built for real-world business and compliance requirements. 📩 Message me with your project or security challenge. I typically respond within a few hours and offer a free 20-minute scoping call for new clients.

CyberArk SME. CyberArk PAM Sentry certification. SSO/SAML knowledge too. Platform administration, patching/upgrading. Problem solver, self-learner.

Security Engineer | Penetration Testing | Bot Mitigation | Incident Response | Application Security I work as a Senior Security Engineer where I deal with large scale security challenges daily, from bot networks and web abuse to vulnerability assessments and incident response on platforms serving millions of users. My background covers the full security lifecycle: Offensive security Vulnerability assessment and penetration testing across web applications, identifying weaknesses before attackers do. Experience with VAPT engagements covering OWASP Top 10, authentication flaws, injection vulnerabilities, and business logic issues. Defensive security Bot mitigation, web abuse detection, WAF configuration, rate limiting, and traffic analysis. I have dealt with everything from credential stuffing and account takeover attempts to large scale scraping operations and store cloning attacks. Risk and compliance Threat modeling, architecture risk assessments, and security reviews helping businesses understand their attack surface and prioritise what to fix first. Incident response Investigating active breaches, tracing attack vectors, containing damage, and hardening systems post incident so it does not happen again. Some specific problems I help businesses solve: Unauthorised account access and breach investigations, bot traffic and automated scraping, fraudulent analytics inflation, store cloning and product theft, credential stuffing, checkout abuse, WAF setup and tuning, and ongoing security monitoring. My approach is practical not theoretical. I start by understanding exactly what is happening before recommending anything. Whether that is analysing traffic patterns, reviewing access logs, or running a proper vulnerability assessment the goal is always targeted solutions that fix the real problem. New to Upwork, not new to security.

TOP RATED Freelancer | 10+ Years of Experience | Your Trusted Compliance Partner 75+ clients served all with 5 * ratings They call me "Mr. Compliance"—and for good reason. While you focus on growing your business, I take care of everything compliance-related, ensuring you meet industry standards and win more deals with confidence. Whether it's SOC 2, ISO 27001, HIPAA, PCI DSS, CMMC, or FedRAMP, I make compliance effortless so you can unlock new opportunities without the hassle. Why Clients Trust Me: - Seamless Compliance: I simplify audits, security assessments, and certifications—no stress, no delays. - Growth-Driven Compliance: Compliance isn’t just a checkbox; it’s a competitive advantage. I help shorten sales cycles by getting you audit-ready fast. - End-to-End Support: From policies to risk assessments, vendor due diligence, and security questionnaires—I handle it all. - vCISO Services: Need expert guidance but not ready for a full-time CISO? I offer affordable virtual CISO (vCISO) solutions tailored to your business. - Security Strategy & TPRM: Managing third-party risks? Struggling with cloud or endpoint security? I’ve got you covered. - Maximizing Compliance Tools: Already using Vanta, Drata, Hyperproof, or Scrut but unsure what’s next? Let’s optimize your investment. Proactive, not reactive. I don’t just tick boxes—I future-proof your security and compliance programs. ** Tools & Frameworks: 🔹 Tools Expertise: JIRA, Vanta, Hyperproof, Drata, ServiceNow, AWS, Confluence, Archer, Scrut Automation 🔹 Compliance Frameworks: ISO 27001, SOC 2, FedRAMP, NIST, HIPAA, PCI-DSS, CMMC, TPRM, and more 📢 Ready to Make Compliance Work for You? Click "Invite" to connect, and let's build a stronger, more secure, and audit-ready business together. ⚠️ Note: If you're not fully committed to compliance or tend to be unresponsive, I may not be the right fit. I prioritize working with businesses serious about security and compliance success.

Cybersecurity Engineer and CyberArk Consultant with hands-on experience delivering and operating CyberArk Privileged Access Management (PAM), CyberArk Identity, and Endpoint Privilege Management (EPM) solutions in enterprise environments. I have worked with large organizations and consulting firms, including Deloitte, NeoSecure, and NTT, supporting privileged access operations, identity security, and endpoint privilege controls for critical infrastructures. My expertise includes CyberArk PAM administration, privileged account onboarding, user and permission management, access control enforcement, CyberArk Identity integrations (SSO, authentication, identity governance), and EPM policy configuration for least-privilege enforcement on endpoints, along with day-to-day operational support. All work is aligned with least privilege, auditability, and security best practices. I approach CyberArk as a core security control, focused on reducing risk, strengthening governance, and ensuring privileged access, identities, and endpoints are properly controlled and auditable. Ideal for companies that need solid, no-nonsense CyberArk expertise, whether for operational support, PAM/Identity/EPM optimization, Identity integration, or security advisory work.

With over 5 years of experience as a cybersecurity professional, I help businesses protect their digital assets by identifying, analyzing, and mitigating security threats across networks, applications, and infrastructure. My core expertise includes: Penetration Testing (Web, Mobile, Network) Vulnerability Assessment Information Security Management Compliance Oversight (CMMC Level 2, NIST SP 800-171/800-53, ISO 27001, GDPR, SOC 2) CASA Tier 2 Security Testing I have worked with companies across the US, UK, Germany, and Canada, delivering security solutions that meet rigorous international standards. Security Automation I build custom Security Automation Tools to streamline vulnerability management, threat detection, and compliance reporting helping organizations scale their security posture efficiently. Technical Toolkit Security Tools: Burp Suite, Metasploit, OWASP ZAP, Nessus, Nmap, SonarQube, Bandit, Veracode, Appknox Infrastructure & WAF: Firewall Configuration, Cloudflare, Imperva, Access Control Management, Database Security Programming (for automation & testing): Python, Bash, Node.js, Java, React, Next.js, Nuxt.js Why Clients Choose Me ✅ 5+ Years of Experience ✅ Individual developer no agencies, no handoffs ✅ Support across all time zones (including full EST overlap) ✅ Unlimited revisions ✅ 100% Refund Guarantee if expectations aren't met, no questions asked Let's secure your environment message me to get started.