Senior DevSecOps / Cloud Security Engineer Needed to Remediate Penetration Test Findings
I’m looking for a highly skilled, senior-level security engineer to remediate findings from a recent third‑party penetration test on a production web platform.
This is not a basic DevOps or web developer role. I need someone with deep, hands-on experience in application security, infrastructure security, and cloud environments who is comfortable owning remediation end‑to‑end.
Your work will be verified via a repeat penetration test, so fixes must be correct, secure, and properly implemented, no shortcuts.
-Scope of Work-
You will be provided with the full penetration test report. Example findings include (but are not limited to):
• SSH vulnerabilities (authentication, exposure, hardening)
• SQL injection risks and application-layer vulnerabilities
• DNS and network security issues
• Cloud/IAM misconfigurations
• Server and OS hardening
• Security headers, TLS, secrets handling, and access controls
You should be able to:
• Analyze findings and explain root causes clearly
• Implement proper remediations (infra + app as needed)
• Follow least‑privilege and security best practices
• Prepare the platform to pass re-testing
• Document changes made and why
Requirements (Non‑Negotiable)
• Senior experience as a DevSecOps Engineer, Cloud Security Engineer, or Application Security Engineer
• Strong knowledge of SSH, networking, DNS, IAM, and secure server configuration
• Experience fixing real penetration test findings (not theoretical knowledge)
• Comfortable working in production environments
• Clear communication and documentation
• Able to work on a fixed‑price basis
What This Is NOT
• Not a junior role
• Not a “web developer who dabbles in security”
• Not a checklist exercise
• Not an ongoing retainer
I am specifically looking for someone who can own the outcome and stand behind their work.
Engagement Details
• Pricing: Fixed price (open to discussion after reviewing scope)
• Timeline: To be discussed after initial review of findings
• Verification: Work will be validated via repeat penetration testing
To Apply
Please include:
1. Your relevant security experience
2. Examples of penetration test remediation you’ve completed
3. Your cloud/platform background
4. Confirmation that you’re comfortable with work being verified via re-test
If you’re the right person, I’m happy to share more technical details up front.
Apply tot his job
Apply To this Job