Job Title: Cloud Security Engineer (OCI) Type: Freelance, 40 hrs/week Start: July 2025 Length: 1 year contract, with potential to extend Location: Remote (U.S. based) Compensation: Up to $70/hr DOE A fast-growing enterprise platform is seeking a hands-on Cloud Security Engineer with deep Oracle Cloud Infrastructure (OCI) experience. This role will manage security, automation, and compliance across a complex multi-cloud environment, supporting critical infrastructure and cross-functional initiatives. What You’ll Be Doing • Configure and maintain OCI compute, networking (VCNs, subnets, gateways), storage, and load balancers • Enforce traffic-control policies across OCI and multi-cloud environments (e.g., AWS transit, firewalls, NAT gateways) • Implement and manage IAM (policies, compartments, dynamic groups, federation) • Apply CIS Benchmarks and hardening across infrastructure • Manage patching, vulnerability remediation, and secure configuration pipelines • Operate and improve end-to-end monitoring with tools like Datadog, OCI Metrics, PagerDuty • Build and maintain Infrastructure-as-Code using Terraform, GitHub, and GitHub Actions • Orchestrate config and patch management at scale with Ansible • Maintain backups, HA, and DR readiness in OCI • Investigate and remediate security events using OCI-native tools (Cloud Guard, Security Zones, Logging) • Collaborate with security, engineering, and finance teams to optimize cost, security, and scalability • Document processes, controls, and support internal knowledge transfer Must-Haves (Don’t Apply Without These) • 5+ years in cybersecurity or infrastructure security roles • 3+ years hands-on with Oracle Cloud Infrastructure (OCI) • Deep knowledge of IAM, VCNs, compartments, and OCI security tools • Proficiency in Terraform and Ansible • Experience with patching, compliance (e.g., SOC 2, HIPAA), and system hardening • Familiarity with monitoring and alerting tools like Datadog • Scripting ability in Bash or Python for automation and incident response • Experience with tools like Crowdstrike, Tenable, Teleport, SIEM You’ll Stand Out If You… • Hold OCI Security or Architect certifications • Have experience with hybrid (on-prem + OCI) setups • Worked with SIEM integrations (Splunk, QRadar) • Are familiar with DevSecOps practices and GitHub Actions CI/CD • Know logging tools like Cribl Stream • Have AWS networking experience and understand multi-cloud environments This is a 12-month freelance contract (40 hrs/week), fully remote. Performance-based extension possible.