Workload Identity SPIFFE, SPIRE, HELM Based Deployment

@nadeemkhan7

Hello, I went through your project description and it seems like that I am a great fit for this job. I have an expert team with many years of experience in Cloud Computing, Continuous Integration, Security, Cloud, Kubernetes, Cloud Development, Cloud Security, DevOps, Microservices, Containerization. Lets connect in chat so that we discuss further. Thank You

@cybexsoftadmin

Hi, I can implement secure workload identity in your Kubernetes environment using SPIFFE/SPIRE with mTLS-based service-to-service authentication. I’ll deploy and configure SPIRE Server and Agents, set up node/workload attestation, and issue short-lived SVIDs for secure identity. I’ll integrate mTLS across services and package everything using Helm charts for repeatable, scalable deployment. I’ve worked on Kubernetes security, service identity, and production-grade deployments with a focus on automation and zero-trust principles. I have 15+ years of DevOps experience with Kubernetes, security, and infrastructure automation. Quick questions: 1- Which Kubernetes platform (EKS/AKS/GKE/on-prem)? 2-Any service mesh in use (Istio/Linkerd)? Can deliver quickly and cleanly. Rahul

@MauricioB30

Hi, I’m a DevOps engineer with over 4 years of experience, working with clients such as EY and MercadoLibre (the largest e-commerce platform in Latin America). At EY, I worked on implementing workload identity for a large-scale project, so I’m familiar with the concepts behind secure identity, service authentication, and zero-trust approaches. I’m confident deploying and configuring SPIRE Server and Agents, setting up node/workload attestation, and issuing short-lived identities (SVIDs). I can also integrate mTLS for secure service-to-service communication and package everything using Helm charts for repeatable and scalable deployments. My focus is always on keeping the setup secure, maintainable, and aligned with production best practices. I’m confident I can bring value to your project and help you implement this end to end. Let me know if you’d like to discuss further. Best regards, Mauricio

@kamran2012

Hi there, I will deploy SPIRE Server and Agents on your Kubernetes cluster via Helm charts, configure node and workload attestation, automate SVID issuance, and wire up mTLS between your services — all packaged for repeatable rollouts across environments. One detail worth addressing early: I will configure SPIRE with a nested or federated trust domain structure so that if you later expand to multi-cluster or cross-cloud, your identity framework scales without re-architecture. I will also set SVID TTLs aggressively short and tune the SDS integration with Envoy or your sidecar proxy to handle rotation without connection drops. Questions: 1) How many clusters and trust domains do you need — single cluster now with multi-cluster planned, or multi-cluster from day one? Looking forward to discussing further. Best regards, Kamran

@AsifTech21

Asif Iqbal here, a cloud computing specialist with a knack for automating repetitive tasks and facilitating scalable infrastructures. Your project, centered on implementing secure workload identity using SPIFFE/SPIRE and deploying them via Helm charts, aligns perfectly with my capabilities and experience. Over the years, I have gained an in-depth understanding of managing cloud-based systems efficiently. I have hands-on expertise in deploying SPIRE servers and agents, configuring attestation, issuing secure identities like SVIDs, and integrating mTLS for robust service-to-service authentication. My proficiency in working with automation tools makes me adept at creating a scalable and repeatable infrastructure using Helm charts to streamline your processes. Furthermore, my AI background allows me to perceive problems from multiple angles while designing solutions. This ensures that not only will your infrastructure be running seamlessly but you can also anticipate and mitigate future challenges effectively. If you choose me for this project, you can count on a swift and optimized implementation of secure workload identity solutions on Kubernetes that will ultimately save time and minimize manual efforts for your team. Feel free to get in touch - I'm open to discussing any demos or customizations you might require before we start.