Zero Trust Infrastructure & Device Management Setup (Cloudflare + JumpCloud)
We're an e-commerce company looking for an experienced IT consultant/engineer to help us implement and manage our zero-trust security infrastructure and device management across our organization. Think of this as an MSP-style engagement — we need someone who can own this end-to-end.
**Scope of Work:**
• **Cloudflare Zero Trust** — Configure and deploy Cloudflare Access policies, Gateway DNS/HTTP filtering, and WARP client across all company devices. Manage application-level access controls and troubleshoot connectivity issues (including DNS proxy conflicts with tools like Tailscale).
• **JumpCloud MDM/IAM** — Set up and manage JumpCloud for device management, user provisioning/deprovisioning, and policy enforcement across Mac and Windows endpoints. Configure conditional access policies and ensure compliance baselines.
• **Device Onboarding** — Develop and execute a repeatable onboarding process for enrolling existing devices into the zero-trust stack (WARP client, JumpCloud agent, browser isolation where needed). Create documentation and runbooks for IT staff.
• **Google Workspace Integration** — Ensure SSO/SAML integration between JumpCloud and Google Workspace. Harden Google Workspace security settings in coordination with zero-trust policies.
• **Ongoing Support & Troubleshooting** — Provide ongoing support for access issues, device compliance, policy tuning, and new employee onboarding/offboarding.
**Ideal Candidate:**
• Hands-on experience deploying Cloudflare Zero Trust (Access, Gateway, WARP) at scale
• Strong JumpCloud administration experience (MDM policies, conditional access, directory management)
• Familiarity with Google Workspace admin and security hardening
• Experience creating IT documentation and onboarding runbooks
• Comfortable working with a small IT team and communicating clearly
• MSP or internal IT infrastructure background preferred
**Details:**
• ~50 employees, mix of Mac and Windows
• Ongoing engagement preferred (hourly, part-time to start)
• Must be available for some overlap with US Eastern business hours
Please share relevant experience with Cloudflare Zero Trust and/or JumpCloud deployments in your proposal.
