Supabase/Lovable Security Specialist — RLS Hardening for App Handling Student PII

Posted 3 days ago

Worldwide

Summary

**Overview** We run an education company with an app built on Lovable (React + Supabase/Postgres) that handles university student data. We need an experienced security engineer to audit and harden it so it can pass university vendor security reviews (FERPA / GDPR / POPIA contexts). This is hands-on remediation work, not a written report. **What you'll do** - Audit Row Level Security (RLS) across all Postgres tables and Supabase Storage buckets, and identify every place student PII is exposed (especially via the anon/public key) - Write and test per-operation RLS policies (select/insert/update/delete) with proper using + with check clauses - Verify role-based access is tamper-resistant (no privilege escalation via self-editable role columns) - Confirm the service-role key is server-side only and move any privileged operations into Supabase Edge Functions - Lock down Storage buckets holding student documents - Deliver a repeatable test procedure (curl/SQL) we can re-run after every app change **You must have** - Demonstrable Supabase + Postgres RLS experience (please cite specific projects) - Familiarity with Lovable or similar AI app builders and their common security gaps - Understanding of how client-side React apps expose keys and data - Bonus: experience with FERPA/GDPR/POPIA or university/edtech vendor reviews **To apply** In your first line, tell me the single most common RLS misconfiguration you find in AI-generated Supabase apps and how you test for it. Generic proposals will be ignored. **Scope:** Fixed-price for initial audit + remediation, with potential for ongoing retainer as we add features. Please include an estimate of hours and your approach.

  • Less than 30 hrs/week
    Hourly
  • 1-3 months
    Duration
  • Intermediate
    Experience Level
  • $20.00

    -

    $40.00

    Hourly
  • Remote Job
  • Ongoing project
    Project Type
Skills and Expertise
Mandatory skills
Cybersecurity Management
Activity on this job
  • Proposals:10 to 15
  • Last viewed by client:2 days ago
  • Interviewing:
    1
  • Invites sent:
    3
  • Unanswered invites:
    2
About the client
Member since May 30, 2021
  • USA
    La Cresenta 12:58 AM
  • $768 total spent
    3 hires, 3 active
  • 122 hours

Explore similar jobs on Upwork

UK Cybersecurity Sales ProfessionalHourly‐ Posted 2 weeks ago
Sales
Phone Communication
Telemarketing
Cold Calling
Help with cyber security photoshopHourly‐ Posted 9 months ago
Penetration Testing
System Security
Cybersecurity Management
Vulnerability Assessment
Security Assessment & Testing
Network Penetration Testing
Testing
Software Testing
Ethical Hacking
Threat Detection

How it works

  • Post a job icon
    Create your free profile
    Highlight your skills and experience, show your portfolio, and set your ideal pay rate.
  • Talent comes to you icon
    Work the way you want
    Apply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
  • Payment simplified icon
    Get paid securely
    From contract to payment, we help you work safely and get paid securely.
Want to get started? Create a profile

About Upwork

  • Rating is 4.9 out of 5.
    4.9/5
    (Average rating of clients by professionals)
  • G2 2021
    #1 freelance platform
  • 49,000+
    Signed contract every week
  • $2.3B
    Freelancers earned on Upwork in 2020

Find the best freelance jobs

Growing your career is as easy as creating a free profile and finding work like this that fits your skills.

Trusted by

  • Microsoft Logo
  • Airbnb Logo
  • Bissell Logo
  • GoDaddy Logo