Supabase/Lovable Security Specialist — RLS Hardening for App Handling Student PII
Worldwide
**Overview** We run an education company with an app built on Lovable (React + Supabase/Postgres) that handles university student data. We need an experienced security engineer to audit and harden it so it can pass university vendor security reviews (FERPA / GDPR / POPIA contexts). This is hands-on remediation work, not a written report. **What you'll do** - Audit Row Level Security (RLS) across all Postgres tables and Supabase Storage buckets, and identify every place student PII is exposed (especially via the anon/public key) - Write and test per-operation RLS policies (select/insert/update/delete) with proper using + with check clauses - Verify role-based access is tamper-resistant (no privilege escalation via self-editable role columns) - Confirm the service-role key is server-side only and move any privileged operations into Supabase Edge Functions - Lock down Storage buckets holding student documents - Deliver a repeatable test procedure (curl/SQL) we can re-run after every app change **You must have** - Demonstrable Supabase + Postgres RLS experience (please cite specific projects) - Familiarity with Lovable or similar AI app builders and their common security gaps - Understanding of how client-side React apps expose keys and data - Bonus: experience with FERPA/GDPR/POPIA or university/edtech vendor reviews **To apply** In your first line, tell me the single most common RLS misconfiguration you find in AI-generated Supabase apps and how you test for it. Generic proposals will be ignored. **Scope:** Fixed-price for initial audit + remediation, with potential for ongoing retainer as we add features. Please include an estimate of hours and your approach.
- Less than 30 hrs/weekHourly
- 1-3 monthsDuration
- IntermediateExperience Level
$20.00
-
$40.00
Hourly- Remote Job
- Ongoing projectProject Type
Skills and Expertise
Activity on this job
- Proposals:10 to 15
- Last viewed by client:2 days ago
- Interviewing:1
- Invites sent:3
- Unanswered invites:2
About the client
- USALa Cresenta 12:58 AM
- $768 total spent3 hires, 3 active
- 122 hours
Explore similar jobs on Upwork
How it works
Create your free profileHighlight your skills and experience, show your portfolio, and set your ideal pay rate.
Work the way you wantApply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
Get paid securelyFrom contract to payment, we help you work safely and get paid securely.
About Upwork
- 4.9/5(Average rating of clients by professionals)
- G2 2021#1 freelance platform
- 49,000+Signed contract every week
- $2.3BFreelancers earned on Upwork in 2020
Find the best freelance jobs
Growing your career is as easy as creating a free profile and finding work like this that fits your skills.
Trusted by