DevSecOps Consultant
Worldwide
Description: Deploy and configure production security tools and services to monitor and protect cloud workloads, networks, containers, and endpoints across AWS and Azure Design, implement, and manage cloud security architecture including IAM, network segmentation, security groups, and firewall policies Implement and manage Infrastructure as Code (IaC) security scanning (Terraform, CloudFormation, ARM templates) to catch misconfigurations before deployment Own cloud security posture management (CSPM) and workload protection across multi cloud environments Review and enhance rules and policies for security devices and SaaS platforms such as WAF, DLP, IDS, IPS, Firewalls, EDR, and CASB Manage container and Kubernetes platform security, including image hardening, admission controls, and runtime protection Design and manage secrets management, key rotation, and secure credential handling across cloud environments Apply Zero Trust principles across cloud infrastructure, workload identity, and service to service communication Working knowledge of SASE, ZTNA, PAM, and XDR technologies and their application in cloud and hybrid environments Implement and administer SD-WAN, Site to Site, and Multi Cloud Network connectivity Basic exposure to embedding security checks into CI/CD pipelines is helpful but not a core focus of the role Perform SecOps and cloud security maturity gap assessments, determine risks, and recommend mitigation actions Investigate, document, and report on infrastructure and platform security issues and emerging trends Hands on administration and hardening of Linux and Windows based OS and cloud native infrastructure Requirements: Bachelor's degree in Computer Science, Information Security, or related field (or equivalent work experience) A minimum of 4 years of professional experience in cloud security, platform engineering, or infrastructure security Hands on experience with cloud native security on AWS and/or Azure, including IAM, network security, and workload protection Experience with CSPM and cloud workload protection tools Proficiency with IaC (Terraform, CloudFormation, ARM templates) and IaC security scanning Proficiency in IPSec, SSL VPN, Sandboxing, Proxy, NAT, syslog, DNS, and NAC Strong scripting ability (Python, Bash, or similar) to automate security checks and platform tooling Strong knowledge in networking and operating systems such as Linux/Unix/Windows Familiarity with OWASP Top 10 and SANS Top 25 is a plus but not the primary focus Industry relevant certifications such as CISSP, AWS Security, Azure Security, CCSP are a plus Strong understanding of ITIL processes
- More than 30 hrs/weekHourly
- 6+ monthsDuration
- IntermediateExperience Level
- Remote Job
- Ongoing projectProject Type
Skills and Expertise
Activity on this job
- Proposals:20 to 50
- Last viewed by client:42 minutes ago
- Interviewing:0
- Invites sent:0
- Unanswered invites:0
About the client
- CanadaBrampton1:42 PM
- $2.4M total spent97 hires, 3 active
- 91,054 hours
- Mid-sized company (10-99 people)
Explore similar jobs on Upwork
How it works
Create your free profileHighlight your skills and experience, show your portfolio, and set your ideal pay rate.
Work the way you wantApply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
Get paid securelyFrom contract to payment, we help you work safely and get paid securely.
About Upwork
- 4.9/5(Average rating of clients by professionals)
- G2 2021#1 freelance platform
- 49,000+Signed contract every week
- $2.3BFreelancers earned on Upwork in 2020
Find the best freelance jobs
Growing your career is as easy as creating a free profile and finding work like this that fits your skills.
Trusted by