About the RoleNetragard is currently seeking a Cloud Penetration Tester on a Part-Time/Contractor basis to join our team of passionate cybersecurity professionals.This role involves performing in-depth cloud configuration assessments and penetration tests across cloud platforms. A typical engagement will evaluate current environments, identify security and compliance gaps, and provide actionable recommendations to strengthen governance and lower risk.We are looking for an equally passionate individual who thinks differently about problems and looks for new angles in challenging situations.Location:Boston/RemoteResponsibilities- Conduct technical configuration assessments for cloud platforms such as Azure, Microsoft 365, Google Cloud Platform (GCP), Google Workspace, and Amazon Web Services (AWS). *If you specialize in one of these platforms, we still encourage you to apply – expertise in a single environment is just as valuable to our team.- Review and benchmark existing configurations against industry best practices.- Identify misconfigurations, excessive permissions, and compliance risks.- Prepare detailed assessment reports with prioritized recommendations for remediation.- Collaborate with client IT, security, and compliance teams to validate findings and guide remediation efforts.- Provide advisory input for cloud governance and secure architecture improvements.- Maintain awareness of emerging cloud services, risks, and compliance requirements.You must have the following skills and experience:- Proven experience performing cloud security or configuration assessments across any of the following platforms (Azure, M365, GCP, Google Workspace, AWS).- Strong understanding of IAM, networking, data protection, and compliance principles in cloud environments.- Excellent written communication skills with the ability to produce clear, actionable reports.- Certifications such as Azure Security Engineer, AWS Solutions Architect, Google Professional Cloud Security Engineer, Pwned Labs MCRTP, PLACRTP, GCRTP, M-CRTP3, Altered Security CARTP, CARTE, or equivalent are highly desirable.- Good written and verbal communication skills (in English)- Report writing experienceNice to have:- Contribution to open-source projects (i.e., send us your GitHub)- Security related blog- Cybersecurity conference presentations- Participation and/or write-ups of CTFs- Bug Bounty profileNB: No recruitment agencies.