Hire the Best Certified Information Systems Security Professional (CISSP)
in India
Chennai, India
Profile Summary Seasoned Information Security Professional with 22+ years of experience across, Application Security, VAPT, Cloud Security, Email Security and Risk Governance. I specialize in designing secure, compliant and automated environments that protect enterprise assets from the code level to the cloud. From hardening AI infrastructure to mastering email deliverability, I ensure every layer of the digital stack is resilient. Offensive Security: VAPT, Red Teaming, and OWASP Top 10 mitigation. Infrastructure: Expert-level Linux/Windows migration and AI model pipeline security. Governance: Certified (CISSP, CISA, CISM, CRISC, CGEIT) leader in ISO 27001, PCI DSS, and NIST frameworks. Network Security Architecture: Design and implementation of firewalls (NGFW), IPS/IDS, VPNs, VLAN segmentation, and zero-trust models for enterprise and data center environments. Expertise in deep-packet inspection, application-layer filtering, and threat intelligence integration to detect, prevent, and respond to advanced threats. MFA, SSO, JML workflows, passwordless authentication, IDOR, privilege escalation and governance-driven IAM programmes Code security, data protection, and vulnerability management standards Threat modeling and risk rating using STRIDE/DREAD or CVSS SonicWall TZ 500, 600, SOHOW Plesk & WHM Panel expert, Tomcat, Apache, Ngnix & IIS Database Security hardening MySQL, Mariadb, MSSQL & Oracle HTTP Security Header, Server Side include, XXE, XSLT, CSRF. PKI, SSL TLS 1.2 &1.3 http 1.1, http2, http3 Network Security IPv6/IPv4, ZTNA CrowdStrike/ Sentinel/ Trend Micro Endpoint Security, Microsoft Purview & Symantec DLP Solution SIEM - QRadar, DNIF Google Chronicle & Mandiant SOAR Regular risk assessments and control validation AppSec risk register maintenance Shift Everywhere Security SAST, DAST, IAST, RAP, and SCA tools (Nessus, Qualys Guard, SonarQube, Fortify, Checkmarx, Veracode, Burp Suite, OWASP ZAP, MobSF, Postman) Image vulnerability scanning (Trivy, Clair) DNS Security Kubernetes/Docker configuration hardening Runtime protection for containers Mode Security , Cloudflare WAF Threat Modeling & Attack Surface Reduction MFA, SSO, JML workflows, password less authentication, and governance-driven IAM programmes Security Automation & Infrastructure as Code (IaC) Compliance & Risk Governance (ISO 27002, SOC 2, HIPAA, PCI DSS) Security Operations ( IAM, EDR/MDR SIEM/SOAR, Incident Response) Application, Database & Systems Security Wordpress/Magento/Drupal Security Hardening Cloud-Native & Container Security Cloud Security & AI Platform Expertise Implemented CASB, CSPM, CWPP & CNAPP Amazon Web Services (AWS): Secured workloads leveraging EC2, S3, IAM, VPC, CloudFront, RDS, and Route 53 with enterprise controls. Deployed AWS WAF & Shield, GuardDuty, Inspector, Security Hub, and Audit Manager for compliance automation. Container Security - AWS ECS, EKS, ECR, Fargate Integrated Amazon Bedrock Microsoft Azure: Extensive experience with Azure OpenAI, AI Studio, Azure ML, Sentinel, RDP, VPN, Intune Defender for Cloud, and Purview. Deployed Confidential Computing, Data Lake, Cosmos DB, and AKS using secure-by-design principles, encryption-at-rest, and real-time compliance monitoring. Google Cloud Platform (GCP): Implemented Sensitive Data Protection, IAM, VPC, SCC, Confidential Computing, Cloud Armor, and KMS for resilient data governance. Applied AI/ML security frameworks (SAIF, Model Armor, Guardrails) to safeguard sensitive workloads and mitigate model-level risks. Email Security SPF, DKIM, DMARC, BIMI, RBL, Blocklist check , Microsoft Exchange/ O365/Google Workspace/Power MTA, Qmail, Postfix, Smartermail etc, Email phishing Simulation & campaign AI Infrastructure Security N8N and OpenClaw AI workflow configuration. My work includes protecting data pipelines, securing model training and deployment environments, enforcing IAM controls, and hardening GPU/compute clusters. I assess risks in model storage, APIs, and inference endpoints, implement monitoring for data integrity and model misuse, and ensure compliance with security and governance frameworks. I provide actionable recommendations to strengthen resilience, privacy, and the overall security posture of AI systems. Security Audit, Risk Assessment and Audit Compliance, with a strong track record in securing enterprise systems, networks, applications and multi-cloud environments. My professional journey includes leading ISO 27002, ISO42001, HIPAA, PCI DSS, SOX, ITGC, CIS, NIST, NIS2, GDPR, CCPA, HIPPA and SOC 2 audits, implementing GRC frameworks, and ensuring regulatory alignment and risk mitigation across complex organizations. BCP/DR, RPO, RTO, MTTD, MTTR Business Impact Assessment and Privacy Impact assessment GRC Tools - Security Score Card, BitSite, Auditboard, OneTrust, RSA Archer, ServiceNow GRC, Drata & Vanta
- Information Security
- IT Compliance Audit
- Risk Assessment
- Penetration Testing
- Web Application Security
- OWASP
- AI Security
- Cloud Security
- Application Security
- Vulnerability Assessment
- Web Application Audit
- Email Security
- Plesk
- Governance, Risk Management & Compliance
- DevOps
Ahmedabad, India
TOP-Rated Plus Upwork Member. (Top 3%) We are a Cyber Security Consulting firm operated by former government and Fortune 500 hackers. Our team has been inside networks big and small, from electrical grids to water facilities. No network is too complex for us. We have expertise helping and securing SaaS organizations. Our Services: - Penetration Testing: - ISO27001 - SOC2 - GDPR - HIPAA - Phishing Engagements - External Assessments Why Choose Us? Unmatched Expertise: Our team comprises international banks, SaaS applications and Fortune 500 clients who bring unparalleled skills and insights to every project. With hands-on experience in securing some of the most complex networks in the world, we possess a deep understanding of the cyber threat landscape and the tactics used by attackers. Results-Focused: We are dedicated to delivering actionable results. Our assessments and tests are designed to provide you with clear, practical recommendations that can be implemented to enhance your security posture. Our focus is on ensuring that your network is not only secure but also resilient against evolving threats. Our Certifications: Our team holds industry-leading certifications that validate our expertise and commitment to excellence: CEH: Certified Ethical Hacking CRTO (Certified Red Team Operator): Demonstrates our proficiency in performing advanced red team operations to identify and exploit vulnerabilities. CRTL (Certified Red Team Leader): Reflects our ability to lead and manage complex red team engagements with custom and secure infrastructure. Not even EDR will inhibit our performance so that way we can provide even greater impact. OSCP (Offensive Security Certified Professional): Highlights our skill in conducting thorough penetration tests and developing creative solutions to security challenges. At Ownux Global, we cater to enterprise but also to the startups, web application developers, offering a professional yet relaxed approach to cyber security. Our mission is to safeguard your digital assets with the highest level of expertise and dedication, providing you with peace of mind in an increasingly digital world. Ready to secure your network? Let’s get started. Contact us today to discuss how we can help protect your business from cyber threats.
- Network Penetration Testing
- OWASP
- Cloud Security
- Web Application Security
- Vulnerability Assessment
- Penetration Testing
- SOC 2
- ISO 27001
- HIPAA
- Compliance Consultation
- Governance, Risk Management & Compliance
Mumbai, India
TOP RATED Freelancer | 10+ Years of Experience | Your Trusted Compliance Partner 75+ clients served all with 5 * ratings They call me "Mr. Compliance"—and for good reason. While you focus on growing your business, I take care of everything compliance-related, ensuring you meet industry standards and win more deals with confidence. Whether it's SOC 2, ISO 27001, HIPAA, PCI DSS, CMMC, or FedRAMP, I make compliance effortless so you can unlock new opportunities without the hassle. Why Clients Trust Me: - Seamless Compliance: I simplify audits, security assessments, and certifications—no stress, no delays. - Growth-Driven Compliance: Compliance isn’t just a checkbox; it’s a competitive advantage. I help shorten sales cycles by getting you audit-ready fast. - End-to-End Support: From policies to risk assessments, vendor due diligence, and security questionnaires—I handle it all. - vCISO Services: Need expert guidance but not ready for a full-time CISO? I offer affordable virtual CISO (vCISO) solutions tailored to your business. - Security Strategy & TPRM: Managing third-party risks? Struggling with cloud or endpoint security? I’ve got you covered. - Maximizing Compliance Tools: Already using Vanta, Drata, Hyperproof, or Scrut but unsure what’s next? Let’s optimize your investment. Proactive, not reactive. I don’t just tick boxes—I future-proof your security and compliance programs. ** Tools & Frameworks: 🔹 Tools Expertise: JIRA, Vanta, Hyperproof, Drata, ServiceNow, AWS, Confluence, Archer, Scrut Automation 🔹 Compliance Frameworks: ISO 27001, SOC 2, FedRAMP, NIST, HIPAA, PCI-DSS, CMMC, TPRM, and more 📢 Ready to Make Compliance Work for You? Click "Invite" to connect, and let's build a stronger, more secure, and audit-ready business together. ⚠️ Note: If you're not fully committed to compliance or tend to be unresponsive, I may not be the right fit. I prioritize working with businesses serious about security and compliance success.
- Information Security
- Application Security
- Risk Assessment
- NIST Cybersecurity Framework
- Jira
- ISO 27001
- SOC 2
- CMMC
- SOC 2 Report
- Governance, Risk Management & Compliance
- Application Audit
- Sarbanes-Oxley Act
- NIST SP 800-53
- Mobility Work CMMS
Chandigarh, India
Microsoft Azure/365 Platform Consultant has more than 24 years of serving customers using Microsoft technologies including Azure Infra and Security, Defender for Cloud, AD Assessment, Sentinel, Purview, Compliance, MS365, AWS, Google. Assisting for CMMC, HIPAA and NIST; Microsoft Certifications: ✔ Microsoft Certified: Azure Solutions Architect Expert ✔ Microsoft Certified: Identity and Access Administrator Associate ✔ Microsoft Certified: Azure Security Engineer Associate ✔ Microsoft Certified: Cybersecurity Architect Expert ✔ Microsoft Certified: Information Protection and Compliance Administrator Associate ✔ Microsoft Certified: Security Operations Analyst Associate ✔ Microsoft 365 Certified: Administrator Expert ✔ Microsoft Certified: Azure for SAP Workloads Specialty Other Certifications and Trainings: ✔ Certified Information Systems Security Professional (CISSP) – ISC2 ✔ Certified in Cyber Security (CC) – ISC2 ✔ ISO/IEC 22301:2019 Business Continuity Lead Auditor ✔ ISO/IEC 27001:2022 Information Security Lead Auditor ✔ ISO/IEC 27701:2019 Privacy Information Lead Auditor ✔ Trained in “Certified Information Security Manager” (CISM) ✔ Trained in “Certified Information Systems Auditor” (CISA) Azure Cloud Security Skills: • Microsoft Azure Security Services • M365 Environment Security • Microsoft Defender Suite (Cloud, Identity, Office 365) • Microsoft 365 Copilot Enablement • Cloud Adoption and Migration • Identity and Access Management (IAM) • Cloud Security Posture Management (CSPM) • Security Information and Event Management (SIEM) • Cloud Access Security Broker (CASB) • VPN, Segmentation, WAF, Access Control • Encryption Technologies • SOAR Concepts and Toolsets • Microsoft 365 Copilot Enablement & Prompt Engineering • Microsoft Copilot Studio (Custom Agent & Workflow Design) • Microsoft Purview & Copilot Data Governance Core Competencies: • Threat and Vulnerability Management • Penetration Testing & Red Teaming • System Hardening & Compliance • Application and API Security • Third-Party Risk Management • Team Leadership & Mentorship • Security Frameworks (NIST, ISO 27001, OWASP) • Cloud and Container Security (AWS, Azure, Kubernetes) • DevSecOps Integration • Persona-Based AI Training & Instructional Design • AI Adoption Roadmaps & Change Management • Cross-Functional Business Process Mapping (Legal, Finance, Operations) Thank you for your time and consideration. Yours truly, Manmeet Singh
- System Administration
- Configuration Management
- Amazon EC2
- VMware Administration
- Windows Administration
- DevOps
- Microsoft SQL Server Administration
- Cloud Computing
- Information Security Consultation
- Microsoft Azure
New Delhi, India
I am an accomplished risk management professional with extensive experience managing Third Party risk management (TPRM) from onboarding to offboarding of all vendors, Vendor risk management covering Cyber Security, Data Privacy and Information security, Risk management, Risk assessment, Designing TPRM framework, Third Party, Risk Assurance, Contract Review/Due Diligence, Procurement Governance/Assurance Review, Project Management, Stakeholder management, My expertise spans across designing and implementing comprehensive TPRM frameworks, overseeing risk assessments, and managing vendor-related activities. Core Competencies: a) Third-Party Risk Management (TPRM): I lead and oversee the entire risk assessment and due diligence process for third-party vendors. This includes managing the onboarding processes and checklists to ensure thorough risk evaluations. I design and implement detailed TPRM project plans, outlining tasks, timelines, and milestones to ensure effective risk management. b) Vendor and Contract Management: My role involves handling contract management processes for hardware and software, including new contracts, amendments, and renewals. I coordinate with external vendors, internal stakeholders, and legal teams to ensure timely contract execution and issue resolution. c) Stakeholder Engagement: I engage with key stakeholders from various departments and external vendors to ensure smooth communication and collaboration throughout the risk management process. I manage expectations and provide direction on risk assessments and non-compliance issues. d) Risk Assessment and Audits: I conduct comprehensive risk assessments and audits focusing on people, processes, and technology. My work includes identifying gaps, risks, and opportunities for improvement, and providing recommendations for enhancing policies and standards. e) Reporting and Process Improvement: I create regular reports on the status of third-party assessments, highlighting roadblocks and key issues to management and stakeholders. I have successfully implemented process improvements, such as transitioning quarterly scorecard activities from manual processes to Google Forms to minimize errors and enhance efficiency. f) Team Leadership and Development: I lead and develop teams of TPRM specialists and consultants, providing knowledge sharing, training, and motivation. I manage projects, stakeholder presentations, and client relationships to drive successful outcomes.
- Information Security
- Compliance
- Contract Management
- Vendor Management
- Risk Assessment
- Governance, Risk & Compliance Software
- ISO 27001
- IT Compliance Audit
- GDPR Compliance Review
- Cybersecurity Management
- Cybersecurity Monitoring
- Network Security
- Risk Management
- Enterprise Risk Management
- Information Security Consultation
Palwal, India
I am an 7 experienced Cyber Security Specialist with a strong focus on protecting digital assets, securing networks, and identifying vulnerabilities before attackers do. I help businesses safeguard their systems, applications, and data against cyber threats while ensuring compliance with industry security standards. With hands-on experience across network security, application security, and cloud environments, I deliver practical and scalable security solutions tailored to business needs. ✅ What I Can Help You With 🔹 Vulnerability Assessment & Penetration Testing (VAPT): ============================================== Web & network vulnerability assessments Manual and automated penetration testing OWASP Top 10 security issues remediation 🔹 Network & Infrastructure Security: ============================== Firewall configuration & hardening IDS/IPS setup and monitoring Secure network architecture design 🔹 Web Application Security: ======================== Website & API security testing Secure authentication & access control Fixing SQL Injection, XSS, CSRF, and other vulnerabilities 🔹 Cloud & DevSecOps Security: ========================== AWS, Azure, GCP security best practices Cloud misconfiguration audits Secure CI/CD pipelines 🔹 Security Compliance & Risk Management: ==================================== ISO 27001, SOC 2, HIPAA, PCI DSS guidance Risk assessment and security gap analysis Security policies, SOPs, and documentation 🛠 Tools & Technologies: ==================== Burp Suite, Metasploit, Nessus, Nmap, Wireshark SIEM & log analysis Linux, Windows Security OWASP ZAP, Kali Linux Cloud security tools (AWS Security Hub, Azure Security Center) 💡 Why Clients Choose Me: ======================= ✔ Clear and actionable security reports ✔ Strong communication & quick response time ✔ Focus on real-world, business-friendly security solutions ✔ 100% confidentiality and ethical standards 🎯 How I Work : -------------------- 1.Understand your system, business, and risk level 2.Perform thorough security testing and analysis 3.Provide a detailed vulnerability report with fixes 4.Support remediation and re-testing If you’re looking for a reliable Cyber Security expert who takes security seriously and delivers real value let’s connect. 📩 Message me to discuss your project and secure your business today.
- SQL
- Cyber Threat Intelligence
- OWASP
- NIST SP 800-53
- PCI DSS
- ISO 27001
- Vulnerability Assessment
- SQL Injection Mitigation
- HIPAA
- SOC 2
- GDPR
- Nessus
- Metasploit
- API Testing
- Cybersecurity Tool
- NIST Cybersecurity Framework
- AT&T Cybersecurity
- Cybersecurity Management
- Blockchain
- Penetration Testing
How it works
Post a job for free Post a job
Tell us what you need. Create your own job post or generate one with AI then filter talent matches.
Hire top talent fast
Consult, interview, and hire quickly, so you can meet the freelancers you're excited about.
Collaborate easily
Use Upwork to chat or video call, share files, and track project progress right from the app.
Payment simplified
Manage payments in one place with flexible billing options. Only pay for approved work, hourly or by milestone.
Don't just take our word for it
“Upwork provides an umbrella-level of security. I can see a talent’s work history and ratings. I can hold payments in escrow. I can communicate through Upwork Messages instead of working through my email address.”
Kim Darling
Emerald Tiger
“Upwork is the best platform to hire skilled professionals when we're not looking for a full-time employee. All the companies in our portfolio use Upwork to find talent across a wide range of fields.”
David Merry
Kinetic Investments
“Our very specific requirements can be a challenge—With Upwork, we’re able to access a bigger community to ensure the success of our projects.”
Katja Krohn
Summa Linguae
How do I hire a Certified Information Systems Security Professional (CISSP) in India on Upwork?
You can hire a Certified Information Systems Security Professional (CISSP) in India on Upwork in four simple steps:
- Create a job post tailored to your Certified Information Systems Security Professional (CISSP) project scope. We'll walk you through the process step by step.
- Browse top Certified Information Systems Security Professional (CISSP) talent on Upwork and invite them to your project.
- Once the proposals start flowing in, create a shortlist of top Certified Information Systems Security Professional (CISSP) profiles and interview.
- Hire the right Certified Information Systems Security Professional (CISSP) for your project from Upwork, the world's largest work marketplace.
At Upwork, we believe talent staffing should be easy.
How much does it cost to hire a Certified Information Systems Security Professional (CISSP)?
Rates charged by Certified Information Systems Security Professionals (CISSP) on Upwork can vary with a number of factors including experience, location, and market conditions. See hourly rates for in-demand skills on Upwork.
Why hire a Certified Information Systems Security Professional (CISSP) in India on Upwork?
As the world's work marketplace, we connect highly-skilled freelance Certified Information Systems Security Professionals (CISSP) and businesses and help them build trusted, long-term relationships so they can achieve more together. Let us help you build the dream Certified Information Systems Security Professional (CISSP) team you need to succeed.
Can I hire a Certified Information Systems Security Professional (CISSP) in India within 24 hours on Upwork?
Depending on availability and the quality of your job post, it's entirely possible to sign up for Upwork and receive Certified Information Systems Security Professional (CISSP) proposals within 24 hours of posting a job description.
Find more freelancers
Top cities for Certified Information Systems Security Professional (CISSP) in India
- Certified Ethical Hackers in Bengaluru, IN
- Auditors in Hyderabad, IN
- Auditors in Chennai, IN
- Auditors in Bengaluru, IN
- Auditors in Mumbai, IN
- Network Designers in Kolkata, IN
- Network Designers in Surat, IN
- Network Analysts in Mumbai, IN
- Network Analysts in Bengaluru, IN
- Network Analysts in Lucknow, IN
- Risk Management Specialists in Greater Noida, IN
- Lighting Experts in Chennai, IN
- Network Engineers in Pune, IN
- Network Engineers in Kolkata, IN
- Network Engineers in Mumbai, IN
- Network Engineers in Bengaluru, IN
More top skills in India
- Information Security Analysts in India
- Certified Ethical Hackers in India
- Information Security Audit Freelancers in India
- Network Security Engineers in India
- Internet Security Specialists in India
- Cisco ASA Specialists in India
- Mac OSX Administrators in India
- Firewall Developers in India
- Cloud Security Framework Specialists in India
- Privacy Specialists in India
- Network Pentesters in India
- Penetration Testers in India
- Kali Linux Freelancers in India
- Application Security Freelancers in India
- OpenVPN Specialists in India
- Cisco Certified Network Associate (CCNA) in India
Similar Certified Information Systems Security Professional (CISSP) Skills
- Certified Information Systems Security Professionals (CISSP)
- Certified Systems Security Practitioners
- Information Security Analysts
- Certified Information Systems Security Professionals
- Security Consultants
- Wireless Security Specialists
- Certified Ethical Hackers
- Information Security Audit Professionals
- White Hat Hackers
- Certified AWS Security Specialists
- Network Security Engineers
- Cybersecurity Experts