Hire the Best LDAP Specialists
in the United States

Your Google Workspace environment has security gaps you probably don't know about yet. I'm a Google Workspace specialist with nearly a decade of experience across SMB, enterprise, and FedRAMP-regulated environments. I help business owners and IT leads fix the things that keep them up at night, excessive super admin access, missing MFA, AI tools connected to the wrong accounts, backdoor access from former employees, and domain sprawl. My engagements are milestone-based and fixed-price. You approve each phase before I proceed. No surprises, no runaway hours. What I do: GWS security audits — super admin reduction, OAuth app enumeration, SPF/DKIM/DMARC Identity hardening — YubiKey MFA, dedicated admin accounts, custom roles OU architecture and Shared Drive governance SAML SSO + JIT provisioning (replacing broken SCIM setups) AI governance — safely deploying Gemini and Claude without exposing super admin scope Onboarding/offboarding automation via Google Chat chatbot (no super admin required) Apple Business Manager + MDM for device fleets Advanced GAM for bulk operations and auditing Who I work with: Fast-growing SMBs that scaled quickly and now realize their GWS environment hasn't kept pace with the business. Companies about to deploy AI tools who want guardrails in place first. Anyone who's had a security incident, or wants to avoid one. My background: SADA Systems, Meta (Senior GWS SME), Salesforce (FedRAMP High), and several Google Cloud partners. I know what enterprise-grade GWS administration looks like, and I bring that to SMB engagements at a fraction of the cost. All work performed remotely. Off-hours scheduling available to minimize disruption to your team. Ready to start? Send me a message or book a 30-minute consultation call.

Okta Certified Professional and Administrator. Experienced Technical Architect with domain expertise in e- commerce, health care and financial. experienced in developing web and portal applications using various skills Java, J2ee, Spring, hibernate, SOAP, REST, Angular, React, NodeJs, typescript, Rest API, Google Analytics and Power BI. Good experience in Identity and Access management (IAM/IDM) solution using several products: Okta, Azure AD, B2C, PING, PINGONE, Davinci, OIM, SAML, OIDC, Jumpcloud, SailPoint, Saviynt, SSO (Single sign on) and Hubspot. Google analytics (GAIQ).Have worked for several private and gov clients.

Is your website, network, cloud, or business system truly secure or only “working fine” until an attacker finds the weak point? I help businesses identify vulnerabilities, reduce cyber risk, and strengthen security with clear testing, reporting, and remediation guidance. I am a Certified Cybersecurity Consultant with hands-on experience in Vulnerability Assessment & Penetration Testing, SOC/SIEM monitoring, ISO 27001 compliance, SOC 2 audit support, network security, phishing awareness, and security documentation. I work with tools and technologies including Nmap, Burp Suite, Metasploit, OpenVAS, Nessus, Wazuh SIEM/XDR, Kali Linux, Parrot OS, Palo Alto Firewall, Cisco ASA, Active Directory, ServiceNow, Saviynt, HighBond, Microsoft Office 365, GitLab CI/CD, and Kubernetes security environments. Services I can help you with: i. Vulnerability Assessment & Penetration Testing ii. Website, Web App & Network Security Testing iii. Nmap, Burp Suite, Metasploit, Nessus & OpenVAS Testing iv. SOC/SIEM Setup, Monitoring & Wazuh Deployment v. ISO 27001 Policies, Procedures & Security Controls vi. SOC 2 Audit Support & Compliance Documentation vii. Phishing Awareness Campaigns & Security Training viii. Firewall, VPN & Network Security Review ix. Active Directory & Access Rights Review x. Security Incident Documentation & Remediation Guidance xi. Cybersecurity Reports with Risk Rating & Fix Recommendations My background includes cybersecurity teaching, cyber defense lab implementation, information security documentation, Proofpoint phishing campaign setup, SOC-2 audit support, IAM access review campaigns, Kubernetes production environment exposure, Wazuh SOC deployment, and enterprise network administration. I do not just provide automated scan results. I focus on giving you clear findings, business impact, risk severity, screenshots where needed, and step-by-step remediation guidance so your team can fix the issues properly. Let’s secure your systems before vulnerabilities become real business risks.

I design and build production-grade security systems for companies that need to secure cloud infrastructure, pass audits, and operate in regulated environments. Most teams don’t have a security tool problem. They have an architecture, integration, and execution problem. That’s where I come in. What I Do I help startups and enterprise teams move from: ❌ fragmented tools and partial controls ❌ audit delays and failing security reviews ❌ reactive fixes and security debt → to ✅ engineered, scalable security architecture ✅ audit-ready, continuously compliant environments ✅ automated, integrated security operations Core Expertise Cloud Security & Cryptography • Multi-cloud security architecture (AWS, Azure, GCP) • TLS PKI systems with automated certificate lifecycle (IaC + CI/CD) • Encryption architecture (CMEK, KMS, data masking, data protection) • Cryptographic hardening aligned with FIPS and modern standards • DNS security, network isolation, and zero-trust patterns Identity & Access Management • SSO (SAML, OIDC), enterprise identity federation • RBAC and least-privilege system design at scale • SCIM provisioning and identity lifecycle automation • Integration with enterprise IdPs (PingFederate, Azure AD, Okta) • Cross-account and multi-environment access control Compliance & Audit Readiness • SOC 2, ISO 27001, PCI DSS, HIPAA, FedRAMP-aligned environments • End-to-end delivery: gap assessment → implementation → audit support • Control design, remediation, and evidence automation (Vanta, Drata, custom pipelines) • Continuous compliance monitoring vs point-in-time audits • Closing audit findings fast (not just identifying them) Security Engineering & Incident Response • CI/CD security (SAST, DAST, IaC scanning, secret management) • Vulnerability management with automated remediation workflows • Cloud misconfiguration detection (CIS benchmarks, runtime analysis) • Secure system design across infrastructure and application layers • Incident response, forensics support, and system hardening AI-Driven Security I don’t just integrate tools — I design security platforms. I have built and architected multi-agent AI-driven cybersecurity systems combining: • Cloud security analysis (AWS integrations, IAM analysis, misconfiguration detection) • Offensive security (recon, exploitation, privilege escalation simulation) • Vulnerability management (SAST, DAST, fuzzing, CI/CD integration) • SOC automation (SIEM/SOAR integrations, alert enrichment, playbooks) • Forensics and incident investigation workflows • Compliance reporting mapped to frameworks (SOC 2, ISO 27001, PCI, HIPAA) Key capabilities: • Multi-agent orchestration and communication • Automated remediation workflows • MITRE ATT&CK mapping and executive reporting • API-driven integrations across security tooling ecosystem • Role-based access for security, DevOps, and compliance teams This enables: → Continuous security instead of periodic assessments → 80% reduction in manual security effort → Faster audit readiness and real-time visibility How I Work • Engineering-first — I build and implement, not just advise • Work directly in production systems (cloud, identity, pipelines) • Design for real audit constraints, not theoretical compliance • Fast execution, clear communication, and ownership Typical Clients • SaaS companies preparing for SOC 2 / ISO 27001 / HIPAA • Cloud-native platforms handling sensitive or regulated data • Startups entering enterprise sales with security blockers • Organizations with fragmented security tools that don’t work together Important I’m not a fit for checklist-based security or surface-level audits. If you need: • real security architecture • working implementations • systems that pass audits and hold up in production - we’ll work well together.

🗽 U.S. and 🍁 Canada -only clients ☑️ Upwork Expert-Vetted 🌟 | 100% Job Success ✅ | 10,000+ hours 💻 on 200+ projects Hi there! 👋 I’m an Upwork veteran with over 10,000 hours delivered, 200+ successful projects, and $1M+ earned helping U.S. companies secure and scale their cloud and hybrid environments. ☁️ I specialize in Azure, Microsoft 365, and security-focused systems — delivering: • Secure infrastructure using Zero Trust, IaC (Terraform/Bicep), and DevSecOps pipelines • Incident response, forensics, and breach containment across regulated industries • Compliance-ready solutions aligned to SOC 2, HIPAA, ISO 27001, and NIST 800-53 As a certified consultant, I work directly with technical teams to deliver secure cloud transformation, implement controls, and respond to threats — fast. I also collaborate with Microsoft’s internal dev teams, giving me early-access insights and practical fixes 3–4 release cycles ahead of public rollout. Why Choose Me? ✅ $1M+ in security projects delivered across healthcare, fintech, crypto, and gov sectors 🔐 Architected Azure landing zones, GitOps pipelines, and zero trust cloud environments 🚨 Led incident response and forensic investigations for Fortune 500 and defense clients 📊 Built compliance workflows and policy-as-code enforcement for audit success 🪙 Secured crypto CI/CD pipelines and smart contract environments with GitHub, Checkov, GHAS 🧠 Career Highlights: ▪ Delivered security modernization and audit readiness for global government contractors and Fortune 500 companies ▪ Led compliance remediation and data protection initiatives across healthcare, fintech, and public sector clients ▪ Migrated global users to Microsoft 365 with security-first design — Exchange, Purview, Intune, Defender ▪ Built hybrid identity strategies (Entra ID, ADFS, GoDaddy 365, Azure AD B2C, custom policy support) ▪ Managed VMware-to-Azure hardening with conditional access, audit enforcement, and security baselines 🔧 Solutions I Deliver: • Azure Infra Security: Terraform, Bicep, Azure Policy, RBAC, Defender for Cloud • DevSecOps: GitHub Actions, tfsec, Checkov, Trivy, GHAS, pipeline reviews • Microsoft 365 Hardening: Defender, Purview, Compliance Center, Intune, Exchange • Compliance & Audits: SOC 2, ISO 27001, HIPAA, GDPR, NIST, CIS Benchmarks • Incident Response & Forensics: Malware analysis, reverse engineering, breach recovery • Crypto Security: CI/CD for smart contracts, wallet infra hardening, Web3 audits • Reverse-engineered malware to identify attack vectors and harden systems post-breach • Hardened Microsoft Exchange Online and Defender for Email in phishing-prone orgs • Integrated Azure Sentinel analytics with dashboards for cross-cloud visibility 🤝 Retainer & Advisory Support: • Ongoing guidance for CISOs, security architects, and compliance teams • Monthly retainers for SOC 2 evidence collection, security tool reviews, and policy automation • Rapid-response engagements for forensics, malware recovery, and breach root cause analysis 🧰 Platforms & Tools: • Azure, Microsoft 365, Azure Sentinel, Microsoft Defender (all modules), Intune • Terraform, Bicep, GitHub, Azure DevOps, GitOps, GHAS • Splunk, FTK, EnCase, Wireshark, Autopsy, Cisco ASA/Firepower • Checkov, Trivy, Aqua Security, smart contract security tooling • Compliance: SOC 2, HIPAA, ISO 27001, CIS, NIST, GDPR 📅 Let’s set up a free 30-minute consultation to explore how I can help you with security transformation, compliance readiness, or urgent recovery — no fluff, just fast, proven results. I bring the calm in chaos — whether you're planning secure growth or cleaning up after a breach, I’ll steady the course and deliver results. 📌 Helped a fintech client pass SOC 2 in under 60 days 📌 Responded to ransomware, restored 95% of systems in 48 hours 📌 Hardened crypto wallet infra securing $100M+ in assets Thanks again for stopping by. You can invite me to your job post or simply send a message to arrange a quick discovery call — I respond fast, and we’ll keep everything inside Upwork. — Nandy Bo 🗣️❝ 𝙄𝙩 𝙝𝙖𝙨 𝙗𝙚𝙚𝙣 𝙖 𝙥𝙡𝙚𝙖𝙨𝙪𝙧𝙚 𝙩𝙤 𝙬𝙤𝙧𝙠 𝙬𝙞𝙩𝙝 𝙉𝙖𝙣𝙙𝙮 𝙙𝙪𝙧𝙞𝙣𝙜 𝙩𝙝𝙚 𝙩𝙧𝙖𝙣𝙨𝙞𝙩𝙞𝙤𝙣 𝙤𝙛 𝘾𝙖𝙡𝙡𝙘𝙤𝙢. 𝙉𝙖𝙣𝙙𝙮 𝙞𝙨 𝙫𝙚𝙧𝙮 𝙜𝙚𝙣𝙪𝙞𝙣𝙚, 𝙝𝙤𝙣𝙚𝙨𝙩 𝙖𝙣𝙙 𝙝𝙚𝙡𝙥𝙛𝙪𝙡 𝙞𝙣 𝙣𝙖𝙩𝙪𝙧𝙚. 𝙃𝙚 𝙖𝙡𝙨𝙤 𝙝𝙖𝙨 𝙖 𝙫𝙚𝙧𝙮 𝙞𝙣-𝙙𝙚𝙥𝙩𝙝 𝙠𝙣𝙤𝙬𝙡𝙚𝙙𝙜𝙚 𝙤𝙛 𝙄𝙏 𝙬𝙝𝙞𝙡𝙚 𝙢𝙖𝙞𝙣𝙩𝙖𝙞𝙣𝙞𝙣𝙜 𝙖 𝙫𝙚𝙧𝙮 𝙗𝙧𝙤𝙖𝙙 𝙥𝙧𝙤𝙗𝙡𝙚𝙢-𝙨𝙤𝙡𝙫𝙞𝙣𝙜 𝙤𝙪𝙩𝙡𝙤𝙤𝙠. 𝙏𝙝𝙚𝙨𝙚 𝙛𝙚𝙖𝙩𝙪𝙧𝙚𝙨 𝙢𝙖𝙠𝙚 𝙝𝙞𝙢 𝙣𝙤𝙩 𝙤𝙣𝙡𝙮 𝙖 𝙥𝙡𝙚𝙖𝙨𝙪𝙧𝙚 𝙩𝙤 𝙬𝙤𝙧𝙠 𝙬𝙞𝙩𝙝 𝙗𝙪𝙩 𝙖𝙡𝙨𝙤 𝙫𝙚𝙧𝙮 𝙞𝙣𝙨𝙥𝙞𝙧𝙖𝙩𝙞𝙤𝙣𝙖𝙡. ❞ — 𝙅𝙤𝙧𝙙𝙤𝙣 𝘽𝙞𝙡𝙡 - 𝙈𝙖𝙣𝙖𝙜𝙞𝙣𝙜 𝘿𝙞𝙧𝙚𝙘𝙩𝙤𝙧 - 𝘾𝙖𝙡𝙡𝙘𝙤𝙢 𝙄𝙣𝙩𝙚𝙧𝙣𝙖𝙩𝙞𝙤𝙣𝙖𝙡

Misconfigurations, shadow identities, and unsecured AI pipelines silently raise breach odds. I partner with business owners to close those gaps fast! What I’ll Deliver • Cloud-native hardening – Entra ID Conditional Access, AWS IAM least-privilege, GCP VPC SC, Microsoft Defender & Purview tuning • AI security & governance – Threat modeling for LLM/agentic systems, secure Vertex AI/Bedrock pipelines, TRiSM-aligned policies • Compliance-ready architecture—ISO 27001, SOC 2, HIPAA evidence packs, Zero-Trust roadmaps • Incident preparedness—24-hour containment playbooks, forensic workflows, automated Sentinel/Chronicle detections Proven Impact • 70 % cut in high-risk privileges across multi-cloud estate • Inbox placement boosted from 60 % to 95 via SPF/DKIM/DMARC • ISO 27001 audit pass in six weeks—saving $40K in outside fees Want me to walk you through the three quickest wins I already see? Message me What my clients say: Top rated : "Best investment I made on Upwork, Ray is quick, thoughtful, organized and made this project SO easy. He's incredibly communicative and so on top of it. 10/10 "Ray did an excellent job solving some email delivery issues for us. He was extremely timely and his communication was consistent and clear. Definitely recommend Ray!" Microsoft 365 Security | Azure Security | Cloud Security Consulting | ISO 27001 Implementation | SOC 2 Readiness | Google Workspace Security | Email Deliverability | SPF | DKIM | DMARC | Microsoft Intune | Conditional Access | Microsoft Defender for Endpoint | Risk Assessment | Vulnerability Assessment | Compliance Consulting