Experience level filter
Job type filter
Client history filter
Project length filter
Hours per week filter
  • Hourly: $65.00 - $100.00
  • Expert
  • Est. time: 3 to 6 months, 30+ hrs/week

We're an Arizona-based MSP specializing in compliance-driven IT for regulated clients (CMMC, HIPAA, FTC Safeguards). We're looking for a ThreatLocker specialist to help us roll out and tune deployments across client environments. This is hands-on deployment work, not theory. You'll be working in real client tenants, so you need to know how to do this without breaking production. What you'll be doing: Deploying and configuring ThreatLocker across client endpoints and servers Running Allowlisting through Learning Mode, then layering Ringfencing and Elevation correctly Building Storage Control and Network Control policies Tuning policies, working approval requests, and keeping line-of-business apps from breaking Capturing the configuration evidence our compliance clients need You must have: Real, hands-on ThreatLocker deployment experience across multiple environments A clear understanding of the deployment sequence and why the order matters Comfort working in an MSP context The judgment to monitor before enforcing and to roll back cleanly when something breaks Nice to have: CMMC or HIPAA deployment experience Familiarity with the broader stack (RMM, EDR, MFA)

Posted last month
  • Hourly: $57.00 - $77.00
  • Expert
  • Est. time: More than 6 months, 30+ hrs/week

Location: Massachusetts (Hybrid/Remote with Onsite Support as Needed) Employment Type: Full-Time Clearance/Background Requirements: Ability to pass state and federal background investigations About the Opportunity We are seeking a highly skilled and experienced Senior Splunk Engineer to support large-scale security operations, observability, and data analytics initiatives for government and enterprise environments, including critical support for the Commonwealth of Massachusetts Executive Office of Technology Services and Security (EOTSS). This role requires a hands-on technical expert capable of architecting, deploying, optimizing, troubleshooting, and maintaining complex Splunk environments supporting cybersecurity operations, compliance initiatives, incident response activities, and enterprise IT monitoring. The ideal candidate combines deep Splunk expertise with strong infrastructure, cloud, security, and automation skills and can operate effectively within highly regulated environments. Key Responsibilities Splunk Architecture & Administration • Design, deploy, configure, and maintain enterprise Splunk environments. • Manage Splunk Enterprise and Splunk Cloud deployments. • Administer Indexers, Search Heads, Deployment Servers, Heavy Forwarders, Universal Forwarders, and Cluster Managers. • Design and optimize data ingestion pipelines across diverse data sources. • Implement and maintain Splunk clustering and high-availability architectures. • Perform capacity planning and infrastructure optimization. Security Operations Support • Support Security Operations Center (SOC) initiatives. • Develop and maintain SIEM use cases, correlation searches, alerts, and dashboards. • Create and tune Splunk Enterprise Security (ES) content. • Assist with threat hunting and incident investigations. • Support MITRE ATT&CK mapping and threat detection engineering. • Analyze security events and provide actionable recommendations. EOTSS & Government Support • Assist with onboarding state agencies and municipalities into centralized Splunk platforms. • Support compliance initiatives including CJIS, IRS Publication 1075, HIPAA, NIST, and other regulatory frameworks. • Participate in major incident response activities. • Collaborate with agency stakeholders, security teams, and executive leadership. • Develop operational runbooks and technical documentation. Data Engineering & Integration • Integrate logs and telemetry from: o Microsoft 365 o Azure o AWS o Google Cloud o Windows Server o Linux o Network Infrastructure o Firewalls o Endpoint Security Platforms o Identity Providers o SaaS Applications • Develop custom parsers, field extractions, transforms, and CIM mappings. • Support Splunk Data Models and accelerated searches. Automation & Optimization • Develop automation using: o Python o PowerShell o REST APIs o SOAR platforms • Improve operational efficiency through workflow automation. • Optimize search performance and reduce infrastructure costs. • Implement monitoring and health-check frameworks. Required Qualifications Technical Experience • 5+ years of hands-on Splunk engineering experience. • 3+ years supporting enterprise-scale Splunk deployments exceeding 500GB/day ingestion. • Strong experience with: o Splunk Enterprise o Splunk Enterprise Security (ES) o Splunk Cloud o Splunk ITSI (preferred) o Splunk SOAR (preferred) Infrastructure Knowledge • Windows Server Administration • Linux Administration • Active Directory • Microsoft Azure • AWS • Virtualization Platforms • Networking fundamentals • DNS, DHCP, PKI, VPN technologies Security Knowledge • SIEM Operations • Threat Detection Engineering • Incident Response • Vulnerability Management • Security Frameworks: o NIST o CIS o CJIS o HIPAA o IRS 1075 o CMMC (preferred) Scripting & Development • Python • PowerShell • Regex • JSON • XML • REST APIs • Git Preferred Certifications Splunk Certifications • Splunk Certified Architect • Splunk Certified Admin • Splunk Enterprise Security Certified Admin Security Certifications • CISSP • GIAC Certifications • GCIH • GCIA • Security+ • CySA+ Cloud Certifications • Microsoft Azure Administrator • Azure Security Engineer • AWS Solutions Architect Desired Experience Candidates with experience supporting any of the following will receive special consideration: • State Government • EOTSS • Massachusetts Municipalities • Public Safety Agencies • Law Enforcement • Emergency Management • Healthcare • Critical Infrastructure • Managed Security Service Providers (MSSP) • Security Operations Centers (SOC) Personal Characteristics • Strong troubleshooting skills • Excellent communication abilities • Ability to interact with executive leadership • Strong documentation practices • Self-starter capable of working independently • Team-oriented mindset • Ability to remain calm during high-pressure incidents • Passion for cybersecurity and operational excellence What Success Looks Like Within the first 12 months, this individual will: • Improve Splunk search performance and platform stability. • Assist in onboarding additional agencies and data sources. • Enhance threat detection coverage. • Reduce alert fatigue through optimization. • Strengthen compliance reporting capabilities. • Become a trusted technical advisor for EOTSS stakeholders and leadership. Bonus Qualifications • Previous EOTSS experience. • Existing Commonwealth of Massachusetts relationships. • Experience supporting large Splunk deployments exceeding 1TB/day ingest. • Experience with cybersecurity consulting or MSSP environments. For EOTSS specifically, I would strongly recommend targeting candidates with Splunk Architect, Splunk ES, Microsoft Sentinel, and Massachusetts state government experience, because the technical challenges tend to be as much about stakeholder management, compliance, and onboarding agencies as they are about Splunk administration itself. A former EOTSS contractor or someone from Optiv, Deloitte, Accenture, TekStream, or a large MSSP would likely hit the ground running.

Posted yesterday
  • Hourly
  • Expert
  • Est. time: 3 to 6 months, Less than 30 hrs/week

I work with defense contractors that need to get CMMC Level 2 certified. I’m looking for an experienced consultant or firm to help our clients get there using Microsoft GCC or GCC High. In your proposal, please tell me: • Your approach — how you’d get a client CMMC Level 2 certified and what it covers • How long it would take (timeline) • Roughly how many hours it would take you • What do you charge A bit about your experience too. Ongoing work available for the right fit.

Posted 4 days ago
  • Hourly
  • Intermediate
  • Est. time: 3 to 6 months, Less than 30 hrs/week

We are seeking a CyberArk Engineer who will play a centralized role in strengthening an enterprise security posture by supporting the build-out, stabilization, and ongoing management of the organization’s Privileged Access Management (PAM) capabilities. This position is responsible for maintaining the CyberArk platform, expanding its coverage across critical systems and privileged accounts, and ensuring it operates as a reliable, scalable control within a broader Identity & Access Management strategy. Working closely with the IAM Program Manager, the CyberArk Engineer will help establish standardized processes, improve privileged access governance, and enable secure, compliance-account lifecycle operations across the enterprise.

  • Hourly: $50.00 - $80.00
  • Expert
  • Est. time: 3 to 6 months, Less than 30 hrs/week

We are seeking an experienced Subject Matter Expert (SME) to review certification-focused test bank questions for SecAI+ and Linux+ courses. The SME will review assessment questions for technical accuracy, alignment with course objectives, certification relevance, answer key accuracy, and distractor quality. Candidates should hold current or recent SecurityX/CASP+, Linux+, or equivalent advanced cybersecurity and Linux certifications and have hands-on industry experience. This is a short-term, remote contract engagement with work completed asynchronously. We are looking for someone who is available immediately and can begin reviewing materials within the next few days. To Apply, Please Include: Relevant certifications Brief summary of your experience with SecurityX/CASP+ and/or Linux+ Availability over the next week Hourly rate or project rate

  • Fixed price
  • Intermediate
  • Est. budget: $250.00

I need someone to manage job applications online securely and host a laptop 24/7. The ideal candidate will ensure all applications are processed efficiently and securely, maintaining continuous availability. Experience in online application management and security is essential.

  • Hourly
  • Intermediate
  • Est. time: Less than 1 month, Less than 30 hrs/week

I’m working on an early-stage startup concept in the counter-drone / critical infrastructure security space. The product is not drone jamming, takedown, spoofing, or mitigation. The concept is a civilian-compliant drone incident management platform that helps data centers, utilities, ports, stadiums, prisons, refineries, airports, and industrial campuses detect, document, and respond to unauthorized drone activity. I’m looking to connect with a security integrator, physical security consultant, or security technology expert who understands how enterprise security systems are actually sold, installed, and operated. The product vision is a software/workflow layer that can eventually integrate with: CCTV / security camera systems Video management systems Access control systems Security operations centers Incident management tools Perimeter security systems RF/radar/acoustic drone detection sensors Alerting and dispatch workflows The goal is not to ask you to build the whole product. I’m looking for a practical partner/advisor who can help us understand how this would fit into real customer environments and how to eventually sell or pilot it through security integrators. I’d like help answering questions such as: Would data centers, utilities, ports, stadiums, prisons, or refineries care about this? Who inside the customer organization would own the budget? What security systems would this need to integrate with first? What would make this product credible to a security director? What would make this product sound unrealistic or risky? How do security integrators evaluate new software partners? What would a realistic 30-day pilot look like? What deliverables would a customer expect from a paid discovery project? Which industries would be easiest to enter first? What partnership structure would make sense for integrators? Deliverables I’m looking for: 1–2 advisory calls Feedback on target customer segments Feedback on pilot proposal and paid discovery offer Recommended integrations and must-have features Suggested partner strategy for security integrators List of objections customers/integrators may raise Optional written summary after the call Please let me know: Your background in physical security, security integration, SOC tools, CCTV, VMS, access control, perimeter security, or critical infrastructure security Whether you have experience selling to or supporting data centers, utilities, ports, stadiums, prisons, refineries, airports, or industrial sites Your availability for an initial advisory call Your hourly rate or fixed price for a concept review What information you would need from me before the call I’m looking for someone who can be direct and practical. The goal is to understand whether this product can realistically fit into existing security environments, what we should build first, and how to approach potential pilot customers or channel partners.

  • Hourly: $70.00 - $110.00
  • Expert
  • Est. time: More than 6 months, Less than 30 hrs/week

We need an experienced Tenable VM + ASM engineer to support ongoing vulnerability management for a financial‑sector client. Work includes configuring scans, weekly triage, validating findings, and producing monthly reports. Approx. 25 hours for onboarding, then 10–15 hours/month ongoing. Must have strong hands‑on experience with Tenable.io, credentialed scanning, and vulnerability prioritization (VPR). Preference for freelancers in Canada or U.S. Eastern/Central time zones. Please share your Tenable experience and hourly rate.

  • Hourly: $75.00 - $100.00
  • Expert
  • Est. time: 1 to 3 months, Less than 30 hrs/week

Microsoft GCC High and Intune Engineer for CMMC Deployments (US Only) We need a US citizen and US-based contractor to configure Microsoft GCC High tenants and Intune for our defense contractor clients pursuing CMMC Level 2. Ongoing work across multiple client engagements, roughly 10 to 25 hours per client. Scope per client: - Entra ID and Conditional Access: MFA for all users, block legacy auth, device and location policies, break-glass accounts - Intune: compliance policies, configuration profiles, security baselines, enrollment and re-enrollment, Conditional Access integration - Purview: sensitivity labels for CUI, DLP across Exchange, SharePoint, Teams, and OneDrive, audit logging - Hardening for Exchange, SharePoint, OneDrive, and Teams: disable legacy protocols, restrict external sharing and federation, configure DMARC, DKIM, and SPF - Documentation suitable for SSP evidence and CMMC assessment support Requirements: - Hands-on experience with at least one GCC High deployment or migration - Strong Intune and Conditional Access skills, PowerShell and Microsoft Graph in the USGov environment - Working knowledge of CMMC Level 2 and NIST control mapping - US-based and US citizen (CUI and ITAR requirement). No offshore subcontracting. To apply: briefly describe a GCC High tenant you configured, confirm US citizenship, and include your hourly rate.

  • Hourly: $8.00 - $60.00
  • Expert
  • Est. time: More than 6 months, 30+ hrs/week

We are seeking a Network Security engineer with expertise in SASE, Secure Web Gateway (SWG), and VPN technologies. The ideal candidate will have experience in designing and implementing secure network solutions, ensuring the protection of our network infrastructure. Responsibilities include conducting security audits, implementing security protocols, and collaborating with our IT team to enhance network security.

Jobs Per Page: Â