I help SaaS platforms and enterprises implement enterprise SSO and resolve complex SAML SSO, OAuth SSO, and AD/LDAP across Google, Okta, Entra ID (Azure AD), Keycloak, Auth0 and AWS Cognito with seamless user experience.
🎯 What I Help You Achieve
→ Implement SSO (SAML / OAuth / OIDC) across Okta, Entra ID, Keycloak, Auth0, AWS
→ Enable multi-IdP authentication for SaaS platforms
→ Resolve SSO failures (SAML errors, OAuth callbacks, redirect loops)
→ Design secure authentication & authorization architectures
→ Implement SCIM provisioning and lifecycle automation
→ Support enterprise customer onboarding with SSO (B2B SaaS integrations)
🔐 Core IAM Expertise
✅ SSO / Identity Federation
→ SAML SSO, OAuth 2.0, OpenID Connect (OIDC)
→ Multi-IdP integration (Okta, Entra ID, Keycloak, Google, Auth0, AWS)
→ Enterprise SSO for SaaS (multi-tenant, domain-based login)
→ Identity federation design and custom authentication flows
✅ Authorization & Access Control
→ RBAC / ABAC implementation
→ Fine-grained authorization (OpenFGA, OPA)
→ Secure API authentication & token validation (JWT lifecycle)
→ Session management and access policy enforcement
✅ MFA & Security
→ MFA: OTP, TOTP, WebAuthn, YubiKey, Push
→ Conditional access & adaptive authentication
→ Step-up authentication and risk-based flows
✅ User Lifecycle & Provisioning
→ SCIM 2.0 integrations
→ AD / LDAP sync
→ Automated provisioning & deprovisioning
→ Identity migration and federation transitions
✅ Troubleshooting Complex SSO & OAuth Issues
→ SAML assertion and metadata issues
→ OAuth redirect / callback errors
→ Token validation and session misconfigurations
→ Infinite redirects, login failures, federation issues
🛠️ Identity Platforms
Primary:
Okta • Microsoft Entra ID • Keycloak • Auth0 • AWS Cognito • Google Workspace
Enterprise:
Ping • OneLogin • ForgeRock • IBM Verify • Shibboleth • ADFS • WSO2
Custom / Open Source:
Custom SAML SP/IdP • IdentityServer • SimpleSAMLphp • LDAP / RADIUS
🧠 Why Clients Work With Me
→ Delivered enterprise SSO integrations across 20+ identity providers
→ Deep expertise in SAML, OAuth, OIDC internals (not just configuration)
→ Strong debugging capability for complex identity issues
→ Experience building multi-tenant SaaS authentication systems
→ Clean, production-ready implementations with documentation
⚙️ Tech Stack
Java • Node.js • Python • Golang • TypeScript • .NET • PHP
Spring Security • Express • Django • React • Angular
SAML2 • OAuth2 • OIDC • JWT • SCIM • MFA • WS-Fed • RBAC
AWS • OCI • Docker • Kubernetes • CI/CD
📌 Available for hourly, fixed-rate, and long-term IAM engagements
Let’s make identity your strongest layer, secure, scalable, and seamless.
LDAP
Single Sign-On
Security Assertion Markup Language
OAuth
OKTA
Microsoft Azure
Auth0
Google Workspace
Active Directory Federation Services
Oracle Identity Management
User Authentication
Multi-Factor Authentication
User Identity Management
Application Integration
Enterprise Architecture
Microsoft Azure Administration
Google Workspace Administration
Cloud Security
Cybersecurity Management
Governance, Risk Management & Compliance
Prashant D.
Bengaluru, India
$25/hr
4.9
13 jobs
6+ years as an Offensive Security Researcher, OSCP and CEH v12 certified, I help startups, SaaS companies, and enterprises think like an attacker before real attackers do through hands-on Penetration Testing, Red Teaming, and Vulnerability Assessment (VAPT) across web, mobile, API, network, and cloud environments.
My approach is simple: real offensive security isn't a scanner dump it's manual exploitation, chained attack paths, and a prioritized, developer-ready remediation plan mapped to your actual business risk.
With a strong software engineering background, I read source code, trace data flows, and reason about architecture catching business-logic flaws, privilege-escalation chains, and design weaknesses that automated tools always miss.
🎯 PENETRATION TESTING & VAPT
Full-scope Vulnerability Assessment and Penetration Testing (VAPT) across the OWASP Top 10, OWASP API Security Top 10, and PTES/OSSTMM methodologies: broken access control, IDOR, SSRF, SQLi/NoSQLi/command/template injection, XSS, CSRF, insecure deserialization, auth/session flaws, privilege escalation, and business-logic abuse.
Web App Pentesting: React, Angular, Vue, Next.js, Node.js, Django/Flask/FastAPI, Spring, Laravel, Rails, .NET, Go
Mobile Pentesting: Android & iOS per OWASP MASVS/MASTG, static + dynamic analysis, reverse engineering, insecure storage, API/backend abuse
API Pentesting: REST, GraphQL, SOAP auth bypass, rate-limit abuse, mass assignment, BOLA/BFLA
Network Pentesting: internal/external, Active Directory attacks (Kerberoasting, pass-the-hash, lateral movement, privilege escalation), segmentation testing
Every finding is manually verified (zero false positives), CVSS-scored, and delivered with an executive summary + technical deep dive + exact remediation steps, plus a free retest.
Tools: Burp Suite Pro, OWASP ZAP, Nmap, Metasploit, Cobalt Strike, Nuclei, sqlmap, Nessus, ffuf, BloodHound, Mimikatz, Hashcat, John the Ripper, Wireshark
🕵️ RED TEAMING & ADVERSARY SIMULATION
End-to-end Red Team engagements simulating real-world TTPs mapped to MITRE ATT&CK: initial access, phishing simulation, C2 infrastructure, privilege escalation, lateral movement, persistence, and data exfiltration testing people, process, and technology together, not just systems. Purple Team collaboration to strengthen detection and response (SOC/EDR/SIEM evasion & tuning).
☁️ CLOUD SECURITY (AWS, Azure & GCP)
IAM and least-privilege reviews, network segmentation, exposed storage (S3/Blob/GCS), privilege-escalation paths, and CIS Benchmark hardening. Cloud penetration testing and CSPM assessments using Prowler, ScoutSuite, and Pacu.
⚙️ DEVSECOPS & INFRASTRUCTURE SECURITY
Security embedded into CI/CD (GitHub Actions, GitLab CI, Jenkins), container/Kubernetes security (Trivy, Grype, RBAC, Pod Security Standards), and IaC security review for Terraform/CloudFormation/Ansible (Checkov, tfsec). SAST, DAST, SCA, and secrets scanning integration (Semgrep, Snyk, SonarQube, Gitleaks, TruffleHog).
🤖 AI / LLM SECURITY
Offensive testing of AI/ML and LLM-powered features against the OWASP Top 10 for LLM Applications and MITRE ATLAS: prompt injection, jailbreaks, model DoS, sensitive-data leakage, insecure output handling, and excessive agency in agentic systems.
🧠 SECURITY ENGINEERING & RESEARCH
Secure code review, threat modeling (STRIDE, attack trees), reverse engineering (Java/bytecode, anti-tamper analysis), malware analysis fundamentals, and security architecture design.
🤝 HOW I WORK:
1️⃣ Free scoping call to define objectives, rules of engagement, and scope
2️⃣ Testing/assessment with clear, regular communication
3️⃣ A prioritized report Executive Summary + technical detail + exact fixes
4️⃣ Free retest and debrief once your team remediates
Every engagement is handled under strict confidentiality, signed Rules of Engagement, and full written authorization. I don't oversell if you don't need a service, I'll tell you honestly.
Keywords: penetration testing, ethical hacking, VAPT, red teaming, purple team, OSCP, CEH, offensive security, web app pentest, mobile pentest, API pentest, network pentest, Active Directory pentest, cloud security, AWS pentest, Azure pentest, GCP pentest, DevSecOps, cybersecurity consultant, vulnerability assessment, security audit, ISO 27001, SOC 2, GDPR compliance, MITRE ATT&CK, OWASP Top 10, secure code review, threat modeling, AI security, LLM security.
📩 Message me with your project details, and I'll respond with a clear, no-pressure scoping plan.
DevOps
Web Application Security
Penetration Testing
Vulnerability Assessment
Information Security
OWASP
API
Cloud Security
Kubernetes
IT Compliance Audit
ISO 27001
SOC 2
Network Security
Risk Assessment
NIST Cybersecurity Framework
Information Security Audit
Information Security Governance
Governance, Risk Management & Compliance
Information Security Consultation
Rajendiran C.
Bengaluru, India
$30/hr
4.9
77 jobs
SSO developer with 8+ years of experience in to identity and access management.Possess good knowledge on integrating different apps using SAML/OIDC/OAUTH.
Possess experience in using different libraries for saml/oidc that includes below programming langauge:
★ NodeJs
★ ReactJS
★NestJS
★ Angular
★ PHP/larvel
★ Python
★ .NET
Possess experience in using different identity providers such as :
★ KeyCloak
★ AzureAD
★ PINGFed/PingOne
★ Auth0
★ OKTA
★ ISAM/ISIM
★ AWS
★ SailPoint
Spring Security
PHP
Java Servlet API
OAuth
User Identity Management
Microsoft Azure
OKTA
Firebase
NodeJS Framework
React
Single Sign-On
AWS Application
Security Assertion Markup Language
Mahesh T.
Bengaluru, India
$40/hr
5.0
127 jobs
🔐 Certified Penetration Tester | AWS & Azure Cloud Security | Incident Response Expert 🔐
I’m a results-driven cybersecurity specialist with 13+ years of experience securing cloud infrastructure, web applications, and enterprise environments. I help companies prevent breaches, mitigate risks, and ensure compliance through advanced security architecture and real-world offensive security skills.
🎯 What I Do:
✔️ Cloud Security Hardening – AWS (IAM, EC2, S3, VPC, RDS, Route 53) & Azure (VNET, NSGs, Azure Security Center, Defender)
✔️ Penetration Testing – Full-scope internal/external pentests, web/app/API testing, business logic abuse, OWASP Top 10
✔️ Vulnerability Assessments – Nessus, OpenVAS, Nmap, custom exploit validation, CVSS scoring & prioritization
✔️ Threat Detection & Response – Wazuh setup, real-time event correlation, SIEM deployment, log analysis
✔️ Security Architecture – Designing scalable, secure cloud solutions with strong IAM, encryption, and DR practices
✔️ Cloudflare Optimization – Harden DNS, implement WAF rulesets, rate-limiting, Zero Trust setup
✔️ Incident Response – Triage, forensics, log collection, remediation and recovery plans (NIST, MITRE ATT&CK aligned)
📌 Security Tools I Work With:
- **Offensive Security**: Burp Suite, Metasploit, Nmap, Hydra, SQLmap
- **Defensive Tools**: Wazuh, AWS GuardDuty, Azure Sentinel, Nessus, Suricata
- **Languages/Scripting**: Bash, PowerShell, HTML/JavaScript (for attack emulation & automation)
- **Frameworks/Standards**: OWASP, MITRE ATT&CK, NIST CSF, CIS Benchmarks
🛡️ Certifications:
- AWS Certified Security – Specialty
- Microsoft Certified: Azure Security Engineer Associate
- Licensed Penetration Tester (LPT) | Certified Penetration Testing Professional (CPENT)
- CEH, CCSK
📈 Highlights:
- $200K+ earned, 97% Job Success on Upwork
- 9,300+ hours across 90+ successful projects
- Trusted by startups, fintechs, and regulated industries (HIPAA, GDPR, SOC2)
I’m known for delivering real-world, **actionable security results** — not just checkbox audits. If you’re looking to **secure your infrastructure, detect threats faster, or simulate real-world attacks**, let’s connect!
Cloudflare
Kali Linux
Microsoft Azure
Security Testing
Vulnerability Assessment
Application Security
Security Analysis
Penetration Testing
Amazon Web Services
Information Security
Web App Penetration Testing
Security Assessment & Testing
Security Infrastructure
Information Security Consultation
Krishnan P.
Bengaluru, India
$67/hr
4.7
4 jobs
I am a passionate full stack hands-on Software Architect with more than 19 years of experience in architecting, designing and developing solutions using apt technology stack.
I am experienced in .NET / C#, Java, J2EE, Spring / Springboot, REST API, React, Angular, Javascript, HTML, CSS, ASP.NET, C++, Python, Oracle, PostgreSQL, MS SQL Server, Amazon Web Services. My healthcare domain expertise includes IHE Radiology workflow, DICOM, HL7 2.3, DVTk, JDICOM, Orion Rhapsody, Mirth, DCMTk, Wireshark.
User-focused, system-level thinking approach, keen attention to security, design patterns with clean and maintainable code are my greatest skills.
I am practicing agile software development for more than 10 years with Certified Scrum Master certification from Scrum Alliance with proven track record of improving team productivity and performance.
Having worked with multi-cultural customers and teams, both onsite as well as fully remote, I am a self-motivated and proactive engineer who loves to step up to new challenges.
Looking forward to working with you!
C#
C++
Java
JavaScript
PostgreSQL
Medical Informatics
Oracle Database
RESTful API
Spring Boot
SonarQube
OpenAPI
Microsoft SQL Server
Amazon Web Services
React
Manaswita R.
Bengaluru, India
$10/hr
5.0
1 jobs
Looking for a developer to bring your website vision to life?
I specialize in transforming concepts into polished, functional web pages. I can help small businesses and individuals create a strong online presence, build an engaging landing page, or implement eye-catching visual effects.
* My core skills include HTML5, CSS3, and JavaScript (ES6+), and I use modern techniques like GSAP for dynamic, engaging animations.
* Full project management from start to finish- from development to deployment.
* I believe in regular, transparent communication to ensure we meet every goal on time.
Web Development
HTML5
CSS 3
JavaScript
GSAP
Figma
HTML
CSS
DNS
Web Hosting
API Integration
Responsive Design
Cloudflare
Content Writing
SEO Writing
How it works
Post a job for freePost a job
Tell us what you need. Create your own job post or generate one with AI then filter talent matches.
Hire top talent fast
Consult, interview, and hire quickly, so you can meet the freelancers you're excited about.
Collaborate easily
Use Upwork to chat or video call, share files, and track project progress right from the app.
Payment simplified
Manage payments in one place with flexible billing options. Only pay for approved work, hourly or by milestone.
Don't just take our word for it
“Upwork provides an umbrella-level of security. I can see a talent’s work history and ratings. I can hold payments in escrow. I can communicate through Upwork Messages instead of working through my email address.”
KD
Kim Darling
Emerald Tiger
“Upwork is the best platform to hire skilled professionals when we're not looking for a full-time employee. All the companies in our portfolio use Upwork to find talent across a wide range of fields.”
DM
David Merry
Kinetic Investments
“Our very specific requirements can be a challenge—With Upwork, we’re able to access a bigger community to ensure the success of our projects.”
KK
Katja Krohn
Summa Linguae
How do I hire a LDAP Specialist near Bengaluru, on Upwork?
You can hire a LDAP Specialist near Bengaluru, on Upwork in four simple steps:
Create a job post tailored to your LDAP Specialist project scope. We’ll walk you through the process step by step.
Browse top LDAP Specialist talent on Upwork and invite them to your project.
Once the proposals start flowing in, create a shortlist of top LDAP Specialist profiles and interview.
Hire the right LDAP Specialist for your project from Upwork, the world’s largest work marketplace.
At Upwork, we believe talent staffing should be easy.
How much does it cost to hire a LDAP Specialist?
Rates charged by LDAP Specialists on Upwork can vary with a number of factors including experience, location, and market conditions. See hourly rates for in-demand skills on Upwork.
Why hire a LDAP Specialist near Bengaluru, on Upwork?
As the world’s work marketplace, we connect highly-skilled freelance LDAP Specialists and businesses and help them build trusted, long-term relationships so they can achieve more together. Let us help you build the dream LDAP Specialist team you need to succeed.
Can I hire a LDAP Specialist near Bengaluru, within 24 hours on Upwork?
Depending on availability and the quality of your job post, it’s entirely possible to sign up for Upwork and receive LDAP Specialist proposals within 24 hours of posting a job description.