- Hourly: $20.00 - $75.00
- Expert
- Est. time: 3 to 6 months, 30+ hrs/week
DevOps Manager: Own operational support, deployment, security, and modernization for RDC/Bureau marketing applications and dependencies. Maintain PHP and ensure smooth operations.
- Hourly: $75.00 - $120.00
- Expert
- Est. time: 3 to 6 months, 30+ hrs/week
The main purpose of this six month contract-to-hire position is to help us migrate our existing Amazon workloads from the EC2 Autoscaling group / Instance / CodeDeploy pattern to the EKS / ECR / Helm Pattern. This will include networking changes to support both ASG and EKS based deployments in parallel. We expect a "systems-architect" mindset where you proactively design the health, observability, and long-term technical integrity of the entire EKS stack to support high-performance workloads. - Architect, build, and maintain greenfield Kubernetes (EKS) infrastructure designed for high availability and elastic scalability. - Develop and implement advanced Infrastructure as Code (IaC) templates to standardize deployment and configuration management across AWS. - Engineer and optimize automated CI/CD Buildkite pipelines to facilitate rapid deployment cycles and ensure high-performance infrastructure reliability. - Implement comprehensive observability frameworks using CloudWatch and New Relic monitoring tools to proactively manage Kubernetes system health and performance. - If this moves into a full time role, participate in on-call rotations to maintain platform integrity and uptime.
- Fixed price
- Expert
- Est. budget: $500.00
Job Description Project Overview We have a fully code-complete Micro-SaaS platform called BounceBack SMS. The app is an automated missed-call text-back and lead recovery system built using Next.js 15, Tailwind CSS, Twilio API, and Supabase. The repository is isolated, structured, and securely hosted in a private GitHub repository. We are looking for an experienced Full-Stack/DevOps Engineer to handle the production deployment, configure live API pipelines, manage database environment mapping, and ensure the entire setup runs on a frictionless, automated continuous integration/continuous deployment (CI/CD) framework. Scope of Work (Key Deliverables) 1. Infrastructure Mapping & Production Deployment Deploy the Next.js 15 frontend/backend application from our private GitHub repository to production hosting (Vercel/Render). Map and connect production environment variables, database schemas, and connection strings to our live database instance (Supabase/PostgreSQL). Configure a permanent automated CI/CD pipeline (e.g., GitHub Actions or Vercel integration) ensuring any future push to the main branch automatically rebuilds and deploys the app flawlessly. 2. Twilio API & A2P 10DLC Compliance Configuration Connect and secure our live Twilio API gateways within the backend architecture. Audit and verify that our messaging endpoints cleanly support incoming webhooks for missed-call detection. Crucial Milestone: Assist and audit our US A2P 10DLC Campaign Registration via Twilio to ensure 100% carrier delivery compliance (Privacy Policy and Terms pages are already live and coded in the repo). 3. Live Stripe Billing Integration Transition our checkout environment variables from Stripe Sandbox/Test Mode into Live Production Mode. Wire up our exact pricing architecture: $0 Setup Fee, 100 Free Leads Usage Trial, transitioning into a flat $19.99/Month Recurring Subscription. Ensure Stripe webhooks are completely listening to successfully provision, pause, or update customer account access tiers inside our database based on subscription state. 4. Handover & Bulletproof Documentation Provide a brief, plaintext .txt or .md technical handover file outlining the deployed environment structure, a list of active API webhooks, and step-by-step instructions for simple environment variable updates. Required Tech Stack Expertise Frameworks: Next.js 15 (App Router), React, Tailwind CSS Database: Supabase / PostgreSQL (Schema sync, migrations, security policies) APIs: Twilio SMS Gateway (Webhook architecture, A2P 10DLC registration compliance) Payment Rail: Stripe Billing API (Usage-based trials, recurring webhooks) DevOps/Version Control: Git, Private GitHub Repositories, Vercel/Render, CI/CD automation Preferred Qualifications Proven track record deploying independent Micro-SaaS or automation applications. Deep familiarity with strict US telecom carrier A2P SMS delivery guidelines to prevent messaging blocking or spam flags. Obsession with clean environment variable separation—absolutely no hardcoded credentials. Excellent technical communication skills and availability to run live end-to-end integration testing before final milestone sign-off. 🎯 Candidate Screening Questions (Include on Upwork) 1. Briefly describe your experience configuring Twilio webhooks and handling the US A2P 10DLC registration process to ensure high carrier delivery rates. 2. How would you configure Stripe to trigger a recurring $19.99/mo flat-rate subscription specifically after a user consumes exactly 100 free database actions/leads? 3. Confirm that you are comfortable working out of a private GitHub repository and setting up an automated CI/CD pipeline so I never have to manually pay for developer redeployments.
- Hourly: $35.00 - $50.00
- Intermediate
- Est. time: 1 to 3 months, 30+ hrs/week
NO AGENCIES - Freelancers only. Looking for an Azure engineer who can help manage a client's existing Azure Infrastructure and help out with Azure DevOps CI/CD pipelines. Hours are flexible - about 20-25 hours a week. Only hard requrirement is that you are able to attend their daily standup at 10am CST
- Hourly: $3.00 - $200.00
- Expert
- Est. time: Less than 1 month, Less than 30 hrs/week
Project Type & Budget We left this open. You know what this entails and what your time is worth. Be reasonable. Can be hourly or fixed rate but we need to complete this today. NO AGENCIES, NO RECRUITERS, NO DIRECT OUTREACH About Us We are a growing digital solutions agency. We recently migrated our infrastructure from Linode to Google Cloud Platform (GCP). The initial migration was not optimal, and we are currently facing several configuration issues that require an experienced GCP architect or senior engineer to audit, fix, and optimize. We need someone who can hit the ground running, diagnose root causes quickly, and implement best-practice solutions. Scope of Work You will be responsible for reviewing and resolving the following specific issues: CDN Setup & Caching Review: Diagnose why cookies are preventing caching (cookies are currently not being set correctly or are being set to 0), and ensure proper edge caching is functional. Firewall Review & Hardening: Audit our current GCP firewall rules and provide actionable recommendations/implementations to secure the environment. DDoS Protection: Upgrade and properly configure our DDoS mitigation setup (Cloud Armor) to ensure robust resilience. Cloud-Level Logging: Shift our logging architecture. We need to enable and configure comprehensive logging at the GCP cloud level, moving away from server-level logging. Server Scaling Configuration: Review, optimize, and properly configure our autoscaling/instance group settings for seamless handling of traffic fluctuations. Required Skills & Experience Proven track record as a Senior DevOps / Cloud Engineer with deep expertise in Google Cloud Platform (GCP). Strong experience with GCP Cloud CDN, Cloud Armor, VPC Firewalls, and Cloud Logging (Stackdriver). Expertise in HTTP headers, cookie handling, and web caching mechanics. Experience troubleshooting post-migration infrastructure instability. Excellent communication skills and the ability to explain infrastructure choices clearly. Experience Level: Expert Timeline: Immediate start required with completion today.
- Hourly
- Expert
- Est. time: 1 to 3 months, Less than 30 hrs/week
Senior HIPAA Infrastructure Engineer We are building modern telemedicine and healthcare infrastructure focused on performance, scalability, security, and compliance. We are looking for a senior-level infrastructure engineer who understands how to architect and manage secure healthcare environments while maintaining fast website and application performance. This is NOT a basic web hosting or sysadmin role. You should understand: * HIPAA environments * healthcare infrastructure * cloud architecture * server performance * security hardening * DevOps workflows * modern web application infrastructure * scalable hosting environments * APIs and integrations * modern frontend/backend ecosystems Our stack may involve: * PHP * WordPress * React / Next.js * APIs * Docker * server-side tracking * cloud infrastructure * telemedicine applications * secure patient workflows We need someone who can help architect the right infrastructure decisions long-term. Responsibilities Infrastructure & Cloud * Architect and manage cloud/server infrastructure * Configure scalable hosting environments * Optimize uptime, reliability, and performance * Setup staging/development/production workflows * Infrastructure planning and documentation * Monitoring and alerting systems Security & HIPAA * Secure healthcare infrastructure * Server hardening * Access control and permissions * SSL/TLS configuration * Firewall and WAF setup * Backup and disaster recovery systems * Audit logging and monitoring * Secure API/webhook handling * HIPAA-conscious infrastructure planning Performance Optimization * Improve website/application speed * Diagnose server bottlenecks * Optimize Core Web Vitals * CDN and caching optimization * Database optimization * Infrastructure scaling * High-traffic performance tuning Development Infrastructure * Docker/containerized workflows * CI/CD pipelines * Deployment automation * Development environment management * Infrastructure support for React/PHP applications Requirements You should have strong experience with: * AWS * DevOps * HIPAA environments * Network/security best practices * Infrastructure management * Server administration * Performance optimization * Modern hosting environments * Docker * APIs and integrations * Telemedicine * Healthcare startups * WordPress optimization * React/Next.js hosting * Cloudflare * Server-side tracking * HIPAA marketing systems What We’re Looking For * Senior-level thinker * Strong communicator * Proactive and highly organized * Security-minded * Performance-focused * High ownership mentality * Able to troubleshoot complex infrastructure issues * Able to think long-term about scalability and architecture We are looking for someone who can become a long-term infrastructure partner, not just complete random tasks. To Apply Please send: 1. A Loom video introducing yourself 2. Examples of healthcare/HIPAA infrastructure you’ve worked on 3. Details about your AWS and DevOps experience 4. Performance optimization examples 5. Your preferred infrastructure stack 6. Your availability 7. Your hourly rate or monthly retainer Please put: “Optimized” at the top of your proposal so we know you read the full posting.
- Fixed price
- Expert
- Est. budget: $5,000.00
We are looking for an expert backend developer and automation engineer to extend an existing, production-grade Model Context Protocol (MCP) server and overhaul its orchestration layer. The headline correction for this project: the existing Lawfather MCP is to be retained and extended, not rebuilt. It already exposes deterministic, parameterized Playwright tools for every required county portal (District Clerk, HCSO, HCDAO) and a client database. Those backend tools are the reliable layer and are not the source of the instability this project exists to fix. The instability lives entirely in the orchestration layer — the model-driven layer that decides when and how to call the tools. The fix is to move deterministic control out of model-followed prose and into code, and to host the agent on an always-on machine with persistent memory. Core Project Principles • Extend, Don't Rebuild: Retain and extend the existing MCP; do not re-implement portal scrapers from scratch. • Code Over Prompts: Deterministic logic lives strictly in tool code, never in instructions the model must remember each session. • No Caller Loops: Batch operations must run to completion server-side. No operation may require the caller (model) to loop. • Agnostic Architecture: The system must remain model-agnostic and host-agnostic. No single provider — Anthropic, OpenAI, Z.ai/GLM, or Nous — may be a hard dependency. • Privilege First: Client data stays on owned hardware; the model is never the gatekeeper of which case a file belongs to. Existing Tool Inventory (To Be Inherited As-Is) The following tools already exist on the production MCP (containerized on a local Synology NAS) and are in daily use. Re-deriving their behavior is completely out of scope: • hcdc_get_docket: Court settings by date range + bar number (District Clerk). • hcdc_check_filings: Per case: standard defense filings present vs. missing. • hcdc_download_filings: Images-tab documents: bulk OR selective by filters; dest_subfolder; dry_run. Note: The parameterized download tools already cover most retrieval requests. "All filings," "this filing," "all subpoenas," "all resets," and "everything filed that day" are argument combinations on this tool, not separate features. • hcso_locate: Defendant custody location (facility / floor / pod) by SPN. • hcdao_grab_file: Download a single named file from the DA portal Files tab. • hcdao_download_discovery: Batch / delta discovery download from the DA portal. • hcdao_download_media_alert: Batch-download files listed in a 'New Media Available' portal email. • hcdao_case_summary: Scrape the Case Jacket quick summary / DAO narrative. • hcdao_plea_offer: Scrape current plea offer + full offer history. • hcdao_assigned_ada: Assigned ADA name / email / phone on a case. • lookup_client / list_clients: Resolve / list clients from the shared client database. Scoped Work (Paid Deliverables) 1. County Case Resolver (New Tool): Find a case from partial identifiers — any subset of (name, SPN, DOB, court, cause). Searches county systems (not just the local client DB). MUST return a ranked candidate list for the user to choose from; MUST NEVER auto-select. Wrong-defendant selection is a privilege failure, not a cosmetic bug. 2. Latest-Version Retrieval: Add scope=latest to hcdao_grab_file so 'most recent' selects the newest among supplements instead of the first match. 3. Async Transcribe Tool (Skill to Tool Promotion): Build a deterministic MCP tool using Gemini 3.1 Pro Preview for transcription, followed by a second pass that sends the transcript back with case context for cleanup (speaker mapping, defense-moment preamble). Long-running: implement as an async job (submit to job id to poll to fetch), NOT a synchronous call. 4. OCR Tool (Skill to Tool Promotion): Implement a readability check on ingest. If a document is not cleanly readable, FLAG it and ASK before sending to Gemini 3.1 Pro Preview for OCR. OCR must be gated and confirmed, never automatic. 5. Server-Side Batch Jobs: Move all chunk, loop, delta, and throttle logic OFF the caller and INTO the tool code. One call runs the batch to completion. 6. Queued HCDAO Fixes: For hcdao_download_discovery, add a portal_ids filter for targeted single-file pulls and a custom output-path / Drive-folder destination feature. Known Portal Quirks to Handle from Day One • hcdc_get_docket returns a broader date range than requested; results must be filtered to the requested window. • hcdao_download_discovery delta detection is blind to files organized into dated subfolders and must be explicitly handled. • Court DG7 does not surface through standard bar-number docket lookup and requires separate handling. • The Playwright Node.js driver subprocess can die silently while database tools respond; you must health-check the driver proactively. Orchestration, Host Layer, & Deployment Topology • Target Host: Hermes Agent (Nous Research) running as the persistent shell, providing persistent memory, the scheduler, and messaging surfaces. The MCP server will plug directly into it. • Agnostic LLM Routing: Default the agent/dispatch role to the most reliable tool-calling model (currently Claude Opus). Route bulk, non-critical generations (draft summaries, transcript cleanup) to a cheaper model (e.g., GLM-5.2). No provider may be hard-wired. Per-tool pins are allowed strictly for transcription/OCR tasks (pinned to Gemini 3.1 Pro Preview). • Memory Fencing: Hermes's persistent memory and learning loops must remain enabled to accumulate facts and user preferences. However, the agent must be strictly fenced from self-editing or rewriting its own mechanical execution paths (portals, downloads, filings), which must remain frozen in MCP tool code. • Hardware Deployment Infrastructure: • Always-on Brain: M1 Pro MacBook Pro (16 GB, mains-powered, lid open) running the Hermes gateway, Messages.app, and a BlueBubbles iMessage bridge. Must be fully automated via launchd services to handle headless crash recovery, auto-login, and sleep prevention (pmset autorestart / caffeinate). • Tools and Storage: Synology NAS (10.0.0.149) hosting the Lawfather MCP container, local client folders, and Drive sync. • Private Network: Tailscale mesh across all devices for secure remote access without open inbound ports. Acceptance Criteria for Sign-Off • No batch operation requires the caller to iterate. • The case resolver returns ranked candidates and never auto-selects. • Transcription runs seamlessly as an async two-stage job surviving multi-hour files without timing out. • OCR never fires automatically on low-readability files without gated confirmation. • Zero regressions on the existing MCP tool inventory. • The Resiliency Test: The full stack successfully restarts completely unattended after a host reboot or simulated power loss, and is reachable via iMessage/SMS immediately after. • Self-editing is fenced on mechanical download/filing paths. Hard Guardrails • Privilege: Downloads route strictly to the correct client folder; a wrong-case match is treated as a severe defect, not a warning. Privileged audio/discovery data stays on owned hardware where the chosen model allows. • Determinism: Repeatable steps live entirely in tool code, never in prompts. • Agnosticism: Model and host layers must remain fully swappable without modifying the core MCP tools. Before quoting "done," you will be expected to confirm live portal behaviors regarding District Clerk document labels, DA portal stable identifiers, and county search surfaces. How to Apply Please submit a proposal detailing your specific experience with MCP architectures, Playwright browser automation, and macOS/Docker DevOps automation. Anti-Bot Filtering: To prove you read this entire scope, please start your application with the phrase "PROTECT THE LAW" in all caps. Automated or generic copy-paste applications will be instantly rejected.
- Fixed price
- Expert
- Est. budget: $200.00
We are looking for an experienced DevOps engineer to deploy our existing containerized application to AWS EKS. Project Scope: - Set up a production-grade AWS EKS cluster (using eksctl or Terraform) - Deploy our microservices application using Kubernetes manifests or Helm charts - Configure proper networking (Ingress, ALB), service discovery, and secrets management - Implement Horizontal Pod Autoscaler (HPA) and resource requests/limits - Set up monitoring (CloudWatch or Prometheus) and logging - Create a basic CI/CD pipeline using GitHub Actions that builds Docker images and deploys to EKS (staging + production environments with manual approval) - Document the full deployment process and provide handover Required Skills & Experience: - Strong hands-on experience with AWS EKS and Kubernetes - Proficiency with Docker and multi-stage Dockerfiles - Experience with Helm charts (preferred) - GitHub Actions for CI/CD - Terraform or eksctl for infrastructure - AWS services: ECR, IAM, VPC, ALB - Strong Linux and YAML skills Nice to Have: - Previous experience deploying Node.js / Python / Java applications - Knowledge of ArgoCD or Flux for GitOps
- Hourly: $60.00 - $85.00
- Intermediate
- Est. time: More than 6 months, 30+ hrs/week
About Sybal Corp: Sybal Corp is building the world's first governance-focused AI infrastructure platform through its Proof of Governance® (PoG™) platform. We serve defense, government, and highly regulated commercial organizations that require governance intelligence, oversight, and audit readiness. Position Overview: The Engineering Operations & Technical Program Management serves as the bridge between executive leadership and the engineering organization. This role is responsible for engineering accountability, project execution, technical oversight, roadmap delivery, and alignment between business objectives and technical implementation. This position oversees engineering execution, validates technical work, manages project delivery, and ensures developers, DevOps engineers, QA engineers, and AI/ML engineers remain accountable for timelines, quality, and outcomes. Primary Responsibilities: • Lead day-to-day engineering operations and project execution. • Manage engineering schedules, priorities, and sprint planning. • Review engineering deliverables for completeness and quality. • Evaluate technical designs and implementation approaches. • Translate business requirements into technical requirements. • Serve as the primary liaison between founders and engineering teams. • Hold engineers and contractors accountable for commitments and deadlines. • Manage offshore and domestic technical resources. • Coordinate work across Software Engineering, DevOps, QA, and AI/ML teams. • Track project risks, dependencies, and milestones. • Establish engineering KPIs and reporting processes. • Support technical due diligence discussions with investors and partners. Required Qualifications: • 8+ years of software engineering experience. • 3+ years leading engineering teams or technical projects. • Strong understanding of AWS, cloud architecture, APIs, DevOps, and modern software development practices. • Experience managing Agile/Scrum development teams. • Experience with Jira, GitHub, Azure DevOps, or similar tools. • Ability to evaluate code quality, technical designs, and engineering estimates. • Experience managing remote and distributed engineering teams. • Excellent communication skills. Preferred Qualifications • Startup leadership experience. • Experience with AI, AI Dev Automation (Claude, Open AI), Machine Learning, and NLP platforms. • Experience supporting government, defense, or regulated industries. • Experience with FedRAMP, CMMC, SOC 2, or NIST environments. • PMP, Scrum Master, or Agile certifications. What Success Looks Like: • Increased engineering accountability. • Improved visibility into project status and delivery timelines. • Better communication between leadership and engineering teams. • Improved release quality and predictability. • Reduced technical debt and project execution risk. • Scalable engineering processes supporting company growth.
- Hourly: $50.00 - $85.00
- Expert
- Est. time: More than 6 months, Hours to be determined
Technical Skills: Languages: PHP, Python, JavaScript, SQL Databases & Tools: MySQL, PostgreSQL, MongoDB DevOps & Infrastructure: AWS, Docker, Kubernetes, Terraform, CloudFormation Version Control & CI/CD: Git, GitHub Job Summary: We are seeking an experienced Senior Software Developer to join our team. In this role, you will design and develop robust integrations with CRM platforms, architect and optimize database solutions, and contribute to our cloud infrastructure as code initiatives. You will work with modern technologies including PHP, Python, SQL, and AWS while managing containerized applications, implementing CI/CD pipelines, and interfacing with third party development teams. This is a full-stack role bridging backend development with DevOps practices. Key Responsibilities: - Design, develop, and maintain CRM integrations with leading platforms such as Salesforce, HubSpot, and Actionstep - Architect and optimize database solutions, including schema design, indexing strategies, performance tuning, and backup strategies - Design and implement Infrastructure as Code (IaC) with AWS - Develop, deploy, and manage Docker containerized applications using Docker Compose and container orchestration tools - Write clean, maintainable code in Javascript, PHP and Python - Develop and execute complex SQL queries for data extraction, transformation, reporting, and ETL pipeline development - Configure and optimize AWS services including EC2, RDS, S3, VPC, security groups, and IAM policies - Implement and maintain CI/CD pipelines for automated testing, building, and deployment - Establish monitoring, logging, and alerting systems for production environments - Conduct code reviews and provide constructive feedback to team members - Troubleshoot and resolve production issues with minimal downtime, implementing reliability improvements Required Qualifications: - 7+ years of professional software development experience - Advanced proficiency in PHP, Javascript, & Python - Expert-level SQL knowledge with experience in relational database design, optimization, and data warehouse architecture - Proven experience developing CRM integrations with REST APIs. - Experience with version control systems (Git) and CI/CD pipelines - Hands-on experience with AWS services including EC2, RDS, S3, VPC, security groups, and IAM - Proficiency with Docker and container orchestration (Docker Compose, Kubernetes experience preferred) - Experience with Infrastructure as Code tools such as Terraform or CloudFormation - Knowledge of monitoring, logging, and alerting solutions (e.g., CloudWatch, ELK, Prometheus) - Preferred Qualifications - Experience with Actionstep - Experience designing and maintaining data warehouse solutions - Kubernetes experience for container orchestration at scale - Experience with serverless architectures (AWS Lambda) - Contribution to open-source projects - Bachelor's degree in Computer Science, Software Engineering, or related field