Infrastructure & Email Security Assessment | Vulnerability Testing & Remediation- USD 20k Budget

Posted 4 weeks ago

Worldwide

Summary

looking for an experienced and certified Ethical Hacker / Penetration Tester to perform a comprehensive security assessment of our IT infrastructure and email environment. The primary objective is to identify security weaknesses, validate existing security controls, simulate real-world attack scenarios, and provide a practical remediation roadmap that strengthens our overall security posture. This is not a one-time assessment. We are looking for a security expert who can partner with us through the complete lifecycle of Assessment → Remediation → Validation → Continuous Security Improvement, making this a long-term engagement. Project Budget: Up to USD 20,000 based on experience, approach, and scope. Scope of Work 1. Infrastructure Security Assessment You will be responsible for performing comprehensive infrastructure security testing, including: External and internal penetration testing Assessment of servers, firewalls, VPNs, switches, routers, and network devices Cloud infrastructure security review (Azure, AWS, OCI, or GCP) Identification of vulnerabilities, misconfigurations, and security gaps Authentication and authorization testing Privilege escalation testing Remote access security validation Active Directory / Entra ID security review 2. Email Security Assessment Review and assess enterprise email security, including: Microsoft 365 / Exchange Online Google Workspace On-Premise Exchange (if applicable) Assessment should include: SPF validation DKIM validation DMARC review Email spoofing assessment Phishing resilience testing Business Email Compromise (BEC) risk assessment Email gateway configuration review Anti-spam and anti-malware controls MFA implementation review Conditional Access policy assessment 3. Security Validation & Penetration Testing Perform controlled and authorized security testing, including: Vulnerability scanning Infrastructure penetration testing Public attack surface assessment Exposed services identification Web application testing (where applicable) API security testing SSL/TLS configuration review Security headers validation Password policy assessment Identity and access management review Expected Deliverables The selected consultant will provide: Executive Summary Detailed Vulnerability Assessment Report Risk Classification (Critical / High / Medium / Low) Technical Findings with Evidence Proof of Concept (where applicable) Business Impact Analysis Prioritized Remediation Roadmap Best Practice Recommendations Security Hardening Checklist Final Validation Report after remediation Knowledge Transfer / Walkthrough Session with our technical team Required Skills Minimum 5+ years of hands-on Ethical Hacking or Penetration Testing experience Strong expertise in Infrastructure Security Strong experience with Microsoft 365 / Email Security Experience performing enterprise security assessments Hands-on experience with: Kali Linux Burp Suite Metasploit Nessus Nmap OWASP Testing Methodology Active Directory & Entra ID Security VPN & Firewall Security MFA & Identity Security Cloud Security (Azure / AWS / OCI / GCP) Ability to produce executive-level and technical security reports with actionable remediation recommendations is essential. Preferred Certifications Candidates holding one or more of the following certifications will be preferred: CEH (Certified Ethical Hacker) OSCP GPEN CISSP CompTIA PenTest+ Security+ Technical Evaluation To evaluate practical expertise, shortlisted candidates may be requested to participate in a live technical discussion or demonstration. This may include: Demonstrating a real-time infrastructure security assessment approach Identifying email security vulnerabilities in a controlled environment Explaining attack methodologies and remediation strategies Reviewing sample penetration testing scenarios Discussing previous enterprise engagements This evaluation is intended to verify practical experience and technical depth. Engagement Details Project Type: Fixed Price with Long-Term Opportunity Budget: Up to USD 20,000 Experience Level: Expert Regular progress meetings and technical walkthroughs Potential for ongoing security assessments and remediation projects NDA and Confidentiality Agreement required before project commencement Proposal Requirements Please include the following in your proposal: Brief introduction and relevant experience Similar infrastructure and email security assessments completed Security certifications Sample or redacted assessment report (if available) Testing methodology and tools you will use Estimated project duration Fixed project cost and milestones Availability to start Why you are the right fit for this engagement Important Notes This engagement is strictly for authorized and ethical security testing. All assessments will be performed only against systems for which written authorization has been provided. The successful consultant should be capable of identifying vulnerabilities, recommending practical remediations, assisting with implementation, and validating that remediation activities effectively strengthen the organization's security posture. If you have a proven track record in enterprise infrastructure security, email security, penetration testing, and remediation, we would like to hear from you.

  • Less than 30 hrs/week
    Hourly
  • 3-6 months
    Duration
  • Expert
    Experience Level
  • $40.00

    -

    $70.00

    Hourly
  • Remote Job
  • Ongoing project
    Project Type
Skills and Expertise
Mandatory skills
Vulnerability Assessment
Activity on this job
  • Proposals:20 to 50
  • Last viewed by client:3 weeks ago
  • Interviewing:
    18
  • Invites sent:
    0
  • Unanswered invites:
    0
About the client
Member since Feb 3, 2022
  • United Arab Emirates
    Abu Dhabi6:04 AM
  • $570 total spent
    11 hires, 4 active
  • 8 hours

Explore similar jobs on Upwork

Security and Compliance SpecialistFixed-price‐ Posted 2 weeks ago
Network Security
Information Security
Penetration Testing
Security Analysis
B2B Sales Partner for CybersecurityHourly‐ Posted 1 week ago
B2B Marketing
Sales
Outbound Sales
Telemarketing

How it works

  • Post a job icon
    Create your free profile
    Highlight your skills and experience, show your portfolio, and set your ideal pay rate.
  • Talent comes to you icon
    Work the way you want
    Apply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
  • Payment simplified icon
    Get paid securely
    From contract to payment, we help you work safely and get paid securely.
Want to get started? Create a profile

About Upwork

  • Rating is 4.9 out of 5.
    4.9/5
    (Average rating of clients by professionals)
  • G2 2021
    #1 freelance platform
  • 49,000+
    Signed contract every week
  • $2.3B
    Freelancers earned on Upwork in 2020

Find the best freelance jobs

Growing your career is as easy as creating a free profile and finding work like this that fits your skills.

Trusted by

  • Microsoft Logo
  • Airbnb Logo
  • Bissell Logo
  • GoDaddy Logo