Hire the best Information Security Audit professionals

Name: Information Security Audit professionals
Brand: Upwork
Rating: 4.6 (205 reviews)

Check out Information Security Audit professionals with the skills you need for your next job.

Hire freelancers

Clients rate Information Security Audit professionals

4.6/5

based on 205 client reviews

$80 hourly
Victoria G.
- 5.0/5
- (69 jobs)
Transforming Information Security into a Competitive Advantage! I have the ability to translate complex compliance requirements into clear and concise language that resonates with the business. I'm a certified senior professional specializing in implementing and managing diverse security frameworks, including ISO 27000 family, SOC 2, PCI, GDPR, HIPAA, FedRAMP and CMMC. With a proven track record of guiding businesses to successful certification, I can help you achieve compliance while mitigating risks. Don't wait until it's too late! Contact me now and avoid drowning in compliance requirements. I'm well-versed in compliance platforms like Thoropass, Drata, StrikeGraph, and TrustCloud. Explore how I can assist you and inquire about my 10% referral discount.

Information Security Audit
CMMC
Risk Management
Microsoft SQL Server
Security Framework
NIST Cybersecurity Framework
HIPAA
GDPR
NIST SP 800-53
Data Privacy
Compliance
Governance, Risk Management & Compliance
ISO 27001
SOC 2 Report
Information Security
$30 hourly
Emanuel P.
- 5.0/5
- (143 jobs)
Looking for a penetration test? We'll give you access to our next-generation penetration testing solution. By combining the power of manual and automated penetration tests, we deliver the real-time insights companies need to remediate risk quickly. Through our Pentest as a Service (PTaaS) platform our clients receive comprehensive assessments. Our methodology follows the National Institute of Standards and Technology Special Publication (NIST SP 800-115), along with the latest techniques, tactics and tools used by hackers to compromise systems and applications. Providing real-time findings and unlimited retests to ensure gaps are closed is our key differentiator. Please check my Upwork work history and client feedbacks. I look forward to hearing from you!

Information Security Audit
Website Security
OWASP
Web Application Security
Certified Information Systems Security Professional
Information Security
Vulnerability Assessment
Security Testing
Network Security
Penetration Testing
$90 hourly
Dylan C.
- 5.0/5
- (45 jobs)
I’m a Certified Information Systems Auditor (CISA) and seasoned compliance advisor providing fractional Head of Compliance support to high-growth startups and SaaS companies. I specialize in leading end-to-end audit readiness and governance for: SOC 2 (Type I & II) ISO 27001, HIPAA, and HiTrust Internal controls, risk, and security governance Whether you're: 1) Preparing for your first audit 2) Scaling fast under investor pressure Or building trust with enterprise customers I help you implement lean, right-sized controls that meet audit standards without slowing your team down. 🔧 What I Deliver: ✅ Strategic gap assessments ✅ Policy & control development ✅ Audit support & evidence collection ✅ Risk register design ✅ Vendor due diligence workflows ✅ Long-term compliance roadmaps I’ve helped venture-backed startups, Cloud 100 firms, and teams starting from zero pass their audits and build repeatable compliance programs. I work closely with founders, security leads, and ops teams as an embedded compliance partner, not just a vendor. Let’s work together if you: Want to pass your audit the first time Need to scale compliance without bureaucracy Value a proactive partner who knows both startup speed and enterprise-grade standards Let’s simplify compliance, build trust, and get you audit-ready — fast.

Information Security Audit
Business Continuity Plan
Security Infrastructure
Regulatory Compliance
Information Security Governance
Policy Writing
Compliance
GDPR Compliance Review
SaaS
SOC 1 Report
HIPAA
Compliance Consultation
IT Compliance Audit
Risk Assessment
Sarbanes-Oxley Act
$115 hourly
Attila H.
- 4.9/5
- (371 jobs)
𝗬𝗼𝘂 𝗳𝗼𝗰𝘂𝘀 𝗼𝗻 𝘆𝗼𝘂𝗿 𝗕𝗨𝗦𝗜𝗡𝗘𝗦𝗦, and leave the rest to me! Sell to Disney, Amazon, Pfizer, Uber, Siemens, Google, PWC, and unlock business opportunities and growth (💲millions) by being secure and compliant by working together. 100+ SOC 2, ISO 27001, CMMC, GDPR, and HIPAA projects on Upwork. CEO selling to Morgan Stanley: 🥂"The certification is enabling us to strike a deal with a Fortune 100 client." CEO selling to Philips: 🍾 "We have achieved the ISO 27001:2022 certification in record time." CEO selling to Pepsi:🎉 "Attila supported the growth of our business into Fortune 100 accounts." COO selling to Fannie Mae:👏 "We achieved a successful SOC 2 Type II attestation with no exceptions." One-stop shop for all your needs: risk assessments, policies, and technical implementation, including AV, EDR, endpoint device management and secure configuration, DLP, cloud hardening (AWS, Azure, GCP), vulnerability scans, and penetration testing with continuous operation! As the founder of 𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆-𝗰𝗼𝗻𝘀𝘂𝗹𝘁𝗮𝗻𝘁.𝗰𝗼𝗺 I know that in the B2B space, you need Security, Privacy, and Compliance to sell to Enterprises! Sleep well overnight because you know you are in good hands with the 🥇 Upwork virtual CISO, Security, Privacy, and Compliance consultant (1 M+ earnings, 20+ years of enterprise experience)! 💭Securing your business, passing security assessments by clients or prospects, and achieving a security certification 𝙨𝙝𝙤𝙪𝙡𝙙 𝙣𝙤𝙩 𝙗𝙚 𝙖 𝙘𝙪𝙢𝙗𝙚𝙧𝙨𝙤𝙢𝙚 𝙖𝙣𝙙 𝙥𝙖𝙞𝙣𝙛𝙪𝙡 𝙚𝙭𝙚𝙧𝙘𝙞𝙨𝙚. 👌 All you need to do is ping me on Upwork, bring your problem, and after a 15-minute scoping call, I will provide you with a detailed Scope of Work, including pricing! Specializing in business-to-business clients, providing 💸money-back guaranteed💸 ISO 27001, SOC 2, GDPR, HIPAA, PCI-DSS, CMMC, and FedRAMP projects and affordable virtual CISO (vCISO) services. ----> If you don’t get certified, all my fees will be refunded! <---- 𝙒𝙚 𝙖𝙧𝙚 𝙖 𝙜𝙤𝙤𝙙 𝙢𝙖𝙩𝙘𝙝 𝙞𝙛 𝙮𝙤𝙪 𝙖𝙧𝙚: 🤔 Want to understand the 𝙖𝙘𝙩𝙪𝙖𝙡 𝙘𝙤𝙨𝙩 for implementation and maintenance of the security controls? 😢Busy developing your product or business and not having time and resources to be consumed by compliance efforts and endless meetings, halting your production for months. 🤔Already purchased a DIY compliance tool (Drata, Vanta, Thoropass/HeyLaika, Sprinto, Tugboat Logic, SecureFrame, Strike Graph, Audit Board, Trust Cloud, and so on) but 𝙙𝙤𝙣’𝙩 𝙠𝙣𝙤𝙬 𝙩𝙝𝙚 𝙣𝙚𝙭𝙩 𝙨𝙩𝙚𝙥 𝙤𝙧 𝙙𝙤𝙣’𝙩 𝙝𝙖𝙫𝙚 𝙩𝙞𝙢𝙚. 😢You quickly need quick security or privacy awareness training, cloud security posture assessment (AWS, GCP, Azure), endpoint security (MS 365 - Intune, Jumpcloud, Google Workspace), or penetration testing? 💪Facing challenges with the security and privacy implications of AI products? 💪Want continuous access to a certified, credible security, compliance, and privacy professional to manage your security framework? -> Continuous virtual CISO (vCISO / fractional CISO) service with affordable weekly/monthly payments! 😟Need world-class, battle-proof security and privacy policies, and you need it quickly? These are the ones that have passed audits by KPMG, Deloitte, E&Y, Pepsi, Uber, Verizon, Philips, Facebook, and many others. Working with me, you will: ● Stop struggling with compliance requirements, security questionnaires, or useless document templates. ● Make the first steps on the journey to selling Enterprises ● Receive turnkey, Enterprise-grade security operation framework ensuring long-term effectiveness ● Work with an experienced senior team (architects, pen testers, endpoint engineers, developers, auditors, consultants) that regularly helps clients score Enterprise accounts. My stats are: ✅Saved tens of thousands $$$$$ for clients, advising them on the right security tools, solutions, and approach ✅#1 in Information Security and IT compliance categories (1 M+ earned) ✅Supporting all time zones ✅Long-term engagements ✅Professional certifications (CISA, CISSP, ISO 27001 IA) QUALITY over QUANTITY is our ethos. Excellent quality, on time, always. Security questionnaire and vendor assessment tools: CyberGRX, Panorays, KY3P (S&P, PWC), RSM, CyberVadis, SIG, SIG Lite, CAIQ, VAS, HECVAT, OneTrust, Graphite Connect, Centrl, Whistic, Process Unity Security/Compliance frameworks: ISO 27001, SOC 2, FedRAMP, NIST 800-53, NIST 800-171, NIST CSF, TISAX, HIPAA, HITRUST CSF, GDPR, NERC, ISO 27017, ISO 27018, CMMC, CMMI, TX-RAMP, StateRAMP, AZ-RAMP, NY DFS 23 / NYCRR Part 500, PCI-DSS, FFIEC, C5, ENISA, Center of Information Security (CIS) CSAT, IRAP, PIPEDA, ISO 42001

Information Security Audit
AI Compliance
Penetration Testing
IT Compliance Audit
Governance, Risk & Compliance Software
NIST Cybersecurity Framework
Information Security Consultation
GDPR
ISO 27001
SOC 2
AI Security
SOC 2 Report
Certified Information Systems Security Professional
Information Security
Cybersecurity Management
$60 hourly
Dmitriy P.
- 5.0/5
- (85 jobs)
I am a Certified Compliance and Ethics Professional - International (provided by SCCE). I have an Advanced Diploma in Accounting and Business (provided by ACCA). I am ACCA certified. I have 15 years of experience in Compliance, Internal Audit, and Risk Management in Fortune 500 companies in diverse industries (Information Technology, Financial Services, Pharmaceuticals, FMCG, Telecom, and others). I am an experienced professional with a proven track record of delivering profitability, sustainable business growth, operational optimization, and driving innovation. My areas of focus: 1. Information Security (ISO 27001, SOC2, NIST). 2. Data Privacy (GDPR, HIPAA, CCPA, PECR, etc). 3. PCI:DSS Compliance. 4. Risk Management (ERM). 5. Internal Audit. 6. Contracts and Policies writing. 7. MSA and ADA compliance. 8. FCPA, UKBA Compliance. 9. AML/CTF. 10. KYC (Due Diligence). Feel free to contact me whenever it will be convenient for you. Looking forward to hearing from you and hope for our productive cooperation. Regards,

Information Security Audit
ISO 27001
ISO 9001
PCI
Policy Writing
GDPR
Anti-Money Laundering
IT Compliance Audit
Due Diligence
Internal Control
$150 hourly
Montie B.
- 5.0/5
- (12 jobs)
I focus on providing cybersecurity compliance, cyber risk assessment, and cybersecurity consulting services to small businesses specializing on the implementation of and compliance with CMMC, DFARS 252.204-7012, and NIST 800-171 requirements. I have worked with NIST 800-171 since 2019 providing guidance to small businesses on meeting the requirements of NIST-171. This includes System Security Plan (SSP) development, Plan of Actions and Milestones (POA&M) creation, Policy and Procedure Development, and technical control implementation. There is more to CMMC compliance than buying a set of pre-made policy and procedure templates. As recent government legal action shows, the Department of Defense is pursuing legal action against companies not meeting CMMC and DFARS requirements after claiming to meet the requirements to win DoD contracts. Let me help your organization meet compliance and more importantly - stay compliant! I provide recommendations to small business owners that are cost-effective to meet cybersecurity compliance requirements and lessen cybersecurity risk. Specialties: cyber risk assessments, security gap analysis, policy and procedure development, system security plan (SSP) development, Plan of Action and Milestones (POA&M) creation Frameworks: CMMC, NIST 800-171, NIST Cybersecurity Framework Education: Doctorate - Cybersecurity (in-progress), Masters – Administration, Masters – Computer Science, Bachelors – IT Management Certifications: CMMC Certified Professional (CCP), CISSP, PMP, CRISC, CCSP, HCISPP, AWS Cloud Practitioner

Information Security Audit
Policy Analysis
Security Analysis
Information Security Governance
Certified Information Systems Security Professional
Cybersecurity Management
Information Security
Information Security Consultation
NIST SP 800-53
CMMC
$55 hourly
Rob S.
- 4.9/5
- (318 jobs)
IT Professional with over 30 years experience. 15+ years experience in web development. 8+ Years experience in PCI-DSS Consultation, including level 1 companies, working with QSA's to swiftly obtain compliance. For the past five years, I have been providing GDPR consultation to many small to medium-sized companies. Three years experience with ISO 27001 helping clients get and maintain ISO 27001 accredited certification. I spent 20 years working in various IT roles, mainly support, engineering, and web development, within one of the largest companies in the world. I was awarded Charted IT Professional status from the British Computer Society in July 2008. Since then, I have run my own company with a small team producing web-based platforms and services and offering freelance compliance consultation to small businesses. I have also worked as a CTO on several start-up projects managing their entire IT infrastructure and gaining valuable PCI compliance experience, essential to all e-commerce projects. Due to my experience and varied IT roles, I have a good knowledge of web design, programming, databases, security, SEO, troubleshooting, technical writing & more. I am a highly organised and reliable individual, utilising existing knowledge and experiences to find practical solutions to even the most complex project.

Information Security Audit
Compliance Consultation
Data Privacy
Vulnerability Assessment
Information Security
PCI DSS
Data Protection
Website Security
PCI
Compliance
ISO 27001
Risk Assessment
GDPR
Web Content Accessibility Guidelines
Security Analysis
$150 hourly
Luciana O.
- 5.0/5
- (200 jobs)
I am the founder of BetterCyber Consulting, a cybersecurity consulting and managed services firm specializing in startups, small businesses, and mid-sized companies. As an Upwork Expert-Vetted Cybersecurity Consultant, I help businesses identify risks, implement security controls, and meet compliance requirements without unnecessary costs or complexity. My experience in cybersecurity includes positions at Fortune 100 companies like PayPal and Marathon Petroleum. I hold several security certifications and earned a master’s degree in Information Security Engineering from The SANS Technology Institute. I offer the following cybersecurity services: ● Technical Security Assessments – Security reviews for AWS, Azure, Google Cloud, Microsoft 365, Google Workspace, Slack, and more. ● Penetration Testing – Web, cloud, mobile, and on-premises security testing. ● Compliance Assessments – NIST 800-171 & 800-53, FedRAMP, ISO 27001, CIS Controls, CMMC, HIPAA, and SOC 2. ● Security Strategy & Architecture – Build scalable security programs. ● Incident Response & Threat Mitigation – Detect and respond to threats. ● Managed Security Services – Ongoing security monitoring and advisory. ● Virtual CISO (vCISO) Services – Security leadership for businesses without a full-time CISO.

Information Security Audit
PCI DSS
NIST SP 800-53
CMMC
Risk Assessment
Cloud Security
Internet Security
Information Security Awareness
Security Engineering
Security Analysis
Email Security
Penetration Testing
Information Security
Security Policies & Procedures Documentation
Cybersecurity Management
$120 hourly
Taha O.
- 5.0/5
- (49 jobs)
I will help you reach your security compliance goals. Whether SOC 2, ISO 27001, or maintaining your security as a fractional CISO, you are dealing with an Expert-Vetted consultant (less than 1% of Upwork talents). Ex-Big 4 senior consultant with 10+ years of experience in assisting clients in cybersecurity, IT compliance, AI security management and security risk assessment projects. ❗You have lost contracts because you were not certified? ❗Your clients pressure you to provide them with an information security certification (PCI-DSS, SOC 2, ISO 27001, HIPAA, FedRAMP, CMMC, ISO 42001) ? ❗You don't know what to answer to the security assessment questionnaire you recently received from your biggest client & it's taking too much time ? ❗You don't have time and resources to be consumed by compliance efforts and endless meetings? ❗You are struggling to understand the certification process, the related cost, and the timelines? ❗You just purchased a compliance tool (Drata, Vanta, Thoropass, Sprinto, OneTrust/Tugboat, SecureFrame, Strike Graph, Audit Board, TrustCloud) but don't know the next step or don't have time for it? Services provided: 📝 Policies & Procedure writing & review 📝 Security gap analysis (based on frameworks on your choice, ISO 27001, NIST, SOC 2, etc.) 📝 IT and Compliance Audits 📝 Performing Risk Assessments, risk treatments, and establishing actions plans & roadmaps. 📝 Evaluation of the existing IT security state of maturity against established standards & regulatory requirements. 📝 Organization-wide security strategy 📝 Support in Governance, Risk & Compliance (GRC) projects 📝 Cloud security governance, management and strategy 📝 Security Operations 📝 DPO service: I can provide you with assistance with regards to GDPR/CCPA compliance, policy writing/reviewing, GDPR gap assessment analysis, and accompanying you in your GDPR compliance journey and Data Privacy requirements. 📝 CISO service: I can provide you with assistance and support in defining your security strategy, putting in place action plans and following up implementation over the long run. 💥WHY ME AND NOT ANOTHER FREELANCER?💥 ✅ Big 4 consultant expertise. End-to-end managed security services. ✅ All work is completed by myself, with constant communication with you and taking into account your every remark & need. ✅ Excellent Client Reviews: I focus on providing you with VALUE and earning your TRUST. ✅ Over-Delivering: I focus on GIVING you more than what I expect to RECEIVE. I am happy when my client's expectations are exceeded. ✅ Responsiveness: All lines of communications are open, and I can be reached very easily. ✅ Kindness & Ethics: As security and compliance professional, we hold ourselves to high ethical values, treating everyone with respect, understanding and genuinely IMPROVING my client's situation. Let's get in touch. (The hourly rate shown is indicative only, as I adapt depending on the project and client's budget) Security questionnaire and vendor assessment tools: CyberGRX, Panorays, KY3P (S&P, PWC), RSM, CyberVadis, SIG, CAIQ, VAS, HECVAT, OneTrust, Graphite Connect, Centrl, Whistic, Compliance management tools: Drata, Vanta, Onetrust Compliance Automatization - Tugboat Logic, Sprinto, SecureFrame, Thoropass (HeyLaika), Trust Cloud, Strike Graph, Audit Board, ISMS.online, Instant27001 Security/Compliance frameworks: ISO 27001, SOC 2, FedRAMP, NIST 800-53, NIST 800-171, NIST CSF, TISAX, HIPAA, HITRUST CSF, GDPR, NERC, ISO 27017, ISO 27018, CMMC, CMMI, TX-RAMP, StateRAMP, AZ-RAMP, NY DFS 23 / NYCRR Part 500, PCI-DSS, FFIEC, C5, ENISA, Center of Information Security (CIS), IRAP, ISO 42001

Information Security Audit
Certified Information Systems Security Professional
Cloud Security
Governance, Risk & Compliance Software
Security Management
Data Privacy
SOC 2 Report
GDPR
IT Compliance Audit
Risk Assessment
ISO 27001
Information Security
Security Policies & Procedures Documentation
Vulnerability Assessment
Information Security Consultation
$100 hourly
Adeel J.
- 5.0/5
- (29 jobs)
As a Chartered IT Professional, I bring over 15 years of global experience delivering strategic advisory and implementation services across cybersecurity, GRC, and digital transformation. I hold certifications including EC-Council C|CISO, CISSA, ISO 27001 Lead Implementer & Auditor, and Google Cybersecurity Certificate, complemented by advanced credentials in identity management, privacy, and data protection. My track record spans management roles with global firms like KPMG and Grant Thornton, and project delivery for clients such as HouseCall MD, Syntervision, Loggi, and DNX VC. I specialize in ISO 27001, SOC 2, C5, ENS, HDS, NIS2, NIST, FedRAMP and cloud security frameworks, delivering actionable insights and compliance solutions that improve resilience, reduce risk, and drive operational excellence. In addition to my technical acumen, I have served as Head of Product Design and Senior Consultant on initiatives totaling over $1M in budget, successfully aligning cybersecurity with product strategy and user-centric design. I have led cross-functional teams through Agile and Scrum methodologies to build secure, scalable solutions that solve complex customer pain points. My deep consulting background includes strategic market research, data analytics, investment due diligence, and process improvement across sectors such as healthcare, life sciences, TMT, logistics, and public sector projects funded by ADB, WHO, and UNESCO. I bring a unique blend of strategic consulting expertise and hands-on technical project execution, making me a reliable partner for clients seeking impactful, results-driven solutions in compliance, digital transformation, and operational excellence. Key Achievements: ✅ Successfully led 8 companies through the SOC 2 Type 2 attestation process, meeting stringent requirements and passing all audits in the first attempt. This achievement significantly enhanced their reputation for data privacy and security. ✅ Guided 4 clients through the rigorous process of achieving ISO 27001 and NIS2 Directive Certificate, ensuring that all security controls and management processes were robust, auditable, and internationally recognized. ✅ Guided 2 clients through HDS and C5 certifications, ensuring that their security posture was aligned with the requirements of both compliance frameworks. ✅ Reduced the costs of IT infrastructure maintenance by 5% for 3 consulted clients ✅ Analyzed business conditions, market/industry trends, competitive influences and demographic factors to identify opportunities of business growth for 5 consulted clients ✅ Created advanced analytics for both internal and marketing use using Tableau, SQL and other BI tools for 4 consulted clients ✅ Managed $400 million donor funded projects as PMO and Project Lead ✅ Performed business process re-engineering for 3 consulted clients ✅ Consulted as lead revenue data analyst on a team responsible for collecting $60M receivables ✅ Repeatedly delivered cost reductions through the implementation of Lean principles, improved scheduling via resource loads and volume analysis ✅ Evaluated and increased operational effectiveness of organizations through the implementation of Continuous Improvement methods and Training/Coaching programs ✅ Identified opportunities within the client organization for improving productivity and operational efficiencies by installing a system by which the client can measure and realize improvement ✅ Analyzed existing processes and applied methodologies to eliminate wasted resources and time for 3 consulted clients

Information Security Audit
Medical Informatics
Risk Analysis
System Security
Data Protection
Vulnerability Assessment
Ransomware Mitigation
Insurance & Risk Management
User Authentication
Linux System Administration
Information Security
Network Security
ISO 27001
Amazon Web Services
SOC 2 Report
Python
$40 hourly
Mukarram K.
- 5.0/5
- (291 jobs)
I'm an OSCP (Offensive Security Certified Professional), OSWE (Offensive Security Web Expert), CREST CRT, and CEH (Certified Ethical Hacker) certified penetration tester. I can conduct vulnerability assessments and penetration testing for your web applications, mobile applications, and cloud infrastructures. I can also audit the code of your PHP / Python / JS (NodeJS) applications and fix code-level vulnerabilities. My day to day work includes: -- Research on bleeding edge technologies -- PHP/Python/JavaScript development -- Code auditing -- Database management -- APIs development & integration -- AWS services (EC2, SES, SNS, SQS, Route53, S3, Lambda, API gateway) -- Penetration testing -- Data scraping -- and a lot more

Information Security Audit
Network Security
Security Testing
Network Penetration Testing
PHP
JavaScript
Laravel
Penetration Testing
Information Security
Cloud Security
Web App Penetration Testing
Web Application Security
Website Security
Linux System Administration
Amazon Web Services
$25 hourly
Md.Repon H.
- 5.0/5
- (78 jobs)
I am a highly skilled and experienced professional with dual expertise in ✅Penetration Testing ✅Digital Forensic. As a ✅penetration testing and Vulnerability Scanning expert. I will do a deep scan of your website and application and provide a professional✅ pen-testing report . This service will help you assess your web application for any ✅vulnerabilities which a real attacker may exploit, and provide you with a professionally written report including;✅ vulnerability descriptions, ✅exploitation steps ,✅recommendations, ✅root causes and more. As a ✅Digital Forensic Investigation to collect evidence of ✅cybercrime, ✅analyze data, ✅data recovery, and ✅provide professional reports to help clients detection of cybercrime and data breaches. As an expert on ✅WordPress malware removal fast with an attention to detail my customers rave about. ✅ Fix Hacked WordPress and do ✅ WordPress Malware Removal! ✅Malware removal Penetration testing Services: *********************************** ✅Testing any kind of SQL Injection, XSS, OWASP Top 10, 4000 other vulnerabilities ✅Automated test, Manual text with code review ✅Network Penetration Testing ✅API penetration testing ✅Vulnerability Scanning and Manual assessments to cover all bases ✅Recommendations to fix issues in a timely manner My Digital Forensics Services: ********************************* ✅Cybercrime Investigations ✅Data Recovery and Analysis ✅ Corporate Cybersecurity Consultation ✅Malware Analysis ✅Analysis of Forensics Evidence ✅ Writing a Forensic Report ✅ Recover Deleted Files & Corrupted Files ✅ .exe, .img, .E01, .ova,.raw etc & any other file types analysis ✅ Log Analysis & Report Issues ✅ Security Incident Response ✅ Network Forensic and Monitoring ✅Email fraud and spam email Analysis ✅ Vulnerability Analysis on OS & Risk Assessment ✅ Online Tracking and monitoring of fraud activities My WordPress Malware Removal Services: ************************************************ ✅Fix WP fast, even custom coded sites. ✅Install Custom Security and Harden against Future Attacks. ✅Remove WordPress malware, malicious codes, backdoors, and Trojans. ✅Repair the Japanese keyword hack! ✅Fix redirecting WordPress sites! ✅Fix the "This site may be hacked" message on Google, etc. ✅Clean up all the mess and remove rogue files. ✅Prevent you from getting reinfected. ✅Work manually so you don't lose data. Have any Question ping me inbox?

Information Security Audit
Security Analysis
WordPress Malware Removal
Vulnerability Assessment
Cybersecurity Tool
System Security
Kali Linux
Digital Forensics
Malware Removal
Web Application Security
Information Security
Penetration Testing
Virus Removal
WordPress
Network Security
$25 hourly
Marcus J.
- 4.6/5
- (24 jobs)
NotTheFed is a cyber security consulting company specializing in low cost penetration testing for start-ups and dotcoms. We are a U.S.-based company with 100% native English speakers. We work on a fixed-rate basis to ensure quick project delivery and prevent any budget surprises. Our team of seasoned professionals includes: Marcus Johnson - Project Manager / Phishing Expert - PMP CSM ITILv4 CISSP Bill Breen - Technical Lead / Lead Pentester - CISSP ENCE CEH IAM CPT Rus Nesse - Mobile Security Expert / iOS and Android Our certified security professionals provide thorough assessments, complete with risk scores, detailed explanations, screenshots, and links to technical resources to ensure clarity. Once an NDA is signed, we’ll collaborate with you to understand your requirements and develop a tailored Statement of Work (SOW). Our minimum project size is $1,000. We are a HIPAA-certified organization. We look forward to helping you meet your security goals!

Information Security Audit
Web App Penetration Testing
Network Penetration Testing
Cloud Security
OWASP
Ethical Hacking
Web Testing
Certified Information Systems Security Professional
Security Testing
Penetration Testing
Information Security
Vulnerability Assessment
$20 hourly
Ishan S.
- 4.7/5
- (6 jobs)
📄📝CAIQ, SIG, NIST CRF, HECVAT Hello, I am Ishan Shrestha, a Senior Security Research Analyst with over 5+ years of experience in solving 𝑆𝐼𝐺-𝐿𝑖𝑡𝑒, 𝐶𝐴𝐼𝑄, HECVAT, and other custom sets of Client Security Questionnaires. I can assist you in solving the security assessment questionnaire sent by the client about the information security framework and controls implemented in your company and the app you sell. I will : • collect information about company's current security stance • identify and mitigate any gaps • explain, discuss and advise on how to overcome the gaps • revise the solution making sure the client will be satisfied by the answers Core Expertise: - In-depth knowledge of GDPR, CCPA, and NIST frameworks. - Strong understanding of SOC 2 Type 2 and ISO 27001 standards. - Proficiency with vendor assessment platforms such as OneTrust, Panorays, Upguard, and Aravo. If your sales team is struggling with client security questionnaires, causing delays in closing deals, let’s connect! I specialize in handling these assessments, allowing your team to focus on what they do best—selling. Let me take the stress off their plate so they can close deals faster and more efficiently.

Information Security Audit
Vendor Management
Risk Assessment
Information Security
GDPR Compliance Review
GDPR
Question Answering
AI Development
AI Bot
Web Development
Web Design
Compliance Testing
IT Compliance Audit
Security Assessment & Testing
Security Policies & Procedures Documentation
$45 hourly
Marinissa R.
- 4.8/5
- (4 jobs)
I am a certified practicing management consultant in Singapore. I am doing consultancy projects on different ISO Standards including ISO/IEC 27001, ISO/IEC 27701, ISO/IEC 20000, ISO 22301, ISO 9001, ISO 45001, ISO 14001 among others. Currently, I am focusing on information security and data protection. I am a certified ISO 27001 Lead Auditor, ISO 42001 Lead Auditor, BCM Continuity Implementer, Privacy Information Manager and Data Protection Practitioner. The projects I am handling cover providing trainings, drafting documentations, checking implementations, conducting internal audits, certification/surveillance audit support and post-audit support.

Information Security Audit
Business Continuity Plan
Data Privacy
Data Protection
Risk Assessment
Process Improvement
Business Process Reengineering
$205 hourly
Caleb M.
- 5.0/5
- (12 jobs)
Secure Your Business with Expert Compliance and Security Services In B2B, proving your organization is Secure, Compliant, and Privacy-law abiding is crucial to doing business with enterprises. Join 30+ satisfied clients in accessing thousands of new business opportunities worth millions by working with this UpWork-featured virtual CISO and Privacy expert (100% Job Success, $100k+ earnings). Client Testimonials CEO, Park National Bank: "Caleb knows Security and DevSecOps extremely well and he's an absolute pleasure to work with. I would definitely recommend his services. We couldn't have gotten our SOC2 Type 2 nearly as fast without him." CEO, US Army Corp of Engineers: "Working with Caleb was great! He is very knowledgeable about cybersecurity and was always willing to go the extra mile to complete the assigned tasks. Will definitely use his services in the future." CEO, Major Hospital Network: "Working with Caleb has been an outstanding experience from start to finish. His commitment to excellent communication, both proactive and responsive, truly sets him apart. Caleb was not only professional but also genuinely pleasant to work with. He is a great resource for teams that value speed and precision. We recommend Caleb to anyone seeking reliable and effective compliance and cybersecurity solutions.” Specializations: • SOC2 • HIPAA • ISO27001 • GDPR • CCPA/USDP • CMMC If you don't get the certification, you'll get a full refund! How to Get Started Ping me here on UpWork, bring your problem, and after a 15-minute scoping call, you will receive a detailed Scope of Work. Services Offered: • Cloud Security Posture Assessment: AWS, GCP, Azure • Penetration Test Report: Rapid turnaround to meet client demands • Endpoint Security Enhancement: Kandji, Jumpcloud, Intune, Google Workspace • Continuous Support: Get a virtual CISO/fractional CISO for an affordable monthly rate • DIY Compliance Tools Assistance: Drata, Vanta, SecureFrame, etc. Benefits of Working with Me: • Focus on your product with your security posture managed professionally • Receive a fully-managed, reliable service • Experience a tailored approach with an ownership mentality, prioritizing your best interests • Enjoy long-term security support at a fraction of the cost of a full-time security employee Invitation and Contact: Click on the green invite button at the top right corner to invite or message me. Important Notes: 🚫 No hacking service! Don't ask to hack, crack, or gain access to any accounts, systems, social media, etc. All invitations for such requests will be declined. 🚫 I only serve businesses, no service for private individuals! 🚫 Ready to secure your business and accelerate your compliance efforts? Contact me today to discuss how I can help.

Information Security Audit
Cloud Management
Security Engineering
Bash
Terraform
Amazon Web Services
Software Testing
Ansible
GitLab
Security Infrastructure
JavaScript
Python
Cloud Architecture
Docker
Kubernetes
Security Testing
Business with 100-999 Employees
$275 hourly
Courtney J.
- 5.0/5
- (17 jobs)
*2023 Tampa Business Woman of the Year* *2023 Tampa Small Business of the Year CEO* *Global 2022 Cybersecurity Woman Entrepreneur of the Year* As a Top Rated Upwork Professional with a 100% success rate on multiple projects and CEO of an award winning business, rest assured that I execute at a high level of experience and professionalism. I have 20+ years of certified experience in Information Security and Assurance, Information Technology (IT), Project Management, Training, and Leadership. Master of Science Degree in Information Security and Assurance (MSISA), a Bachelor of Science Degree in Business / IT Management, and multiple active industry certifications. Prior active duty military (Navy veteran) with extensive experience as Chief Executive Officer (CEO) and Chief Security Officer (CSO) for a Government contractor and in the private sector. I have successfully led and executed dozens of security audits and accreditation efforts all leading to Authorizations to Operate (ATOs) and ISO 27001 preparation that led to zero non-conformities. My area of expertise includes but is not limited to: Cybersecurity Maturity Model Certification (CMMC), DFARS (NIST 800-171), NIST Cybersecurity Framework (CSF), NIST Risk Management Framework (RMF), Independent Verification & Validation (IV&V), ISMS, ISO 27001, Corporate Security Policies & Procedures, Security Awareness, Acceptable Use Policies (AUPs), Remote Access / VPN, Third Party Access and Compliance, System Security Plans (SSPs), Security Test Plans (STPs), Security Control Traceability Matrices (SCTMs), and Plans of Action & Milestones (POA&M). My team, Paragon Cyber Solutions, has in-depth experience with security assessments / audits, penetration testing, ethical hacking, secure code review and development, and workforce enhancement (training and certifications). We are an authorized CMMC C3PAO with the following designations / certifications: 8(a), EDWOSB, DM/DWBE, MBE, veteran, minority owned small business. Contact me for any of your information security needs.

Information Security Audit
Procedure Development
GDPR
ISO 27001
Information Security Governance
Certified Information Systems Security Professional
Cloud Security Framework
Information Security Awareness
Internet Security
Certified Information Security Manager
Security Assessment & Testing
Information Security
Network Security
$175 hourly
Derrich P.
- 5.0/5
- (33 jobs)
As a Top Rated vCISO with a 100% job success rate, rest assured that I execute at a high level of expertise, integrity, and professionalism. I am the President & Founder of Aspire Cyber, a full-service consulting firm that rapidly delivers privacy and cybersecurity compliance solutions to help small and medium-sized businesses satisfy their legal, regulatory, and contractual requirements. Aspire Cyber was founded on the core belief that every business should have access to world-class cybersecurity talent, regardless of budget or security needs. I have over 20 years of experience managing information security projects and implementing strategic cybersecurity controls for the United States Army, Bank of America, and numerous Fortune 100 companies. We offer entirely “Done For You” solutions that help your business rapidly achieve compliance while we manage everything. Don’t waste 6-18 months trying to figure this out yourself. Regulatory and industry cybersecurity frameworks have hundreds of different controls you must comply with and require knowledge of IT, Cybersecurity, HR, Legal, and more. Aspire Cyber is a leading provider of comprehensive cybersecurity compliance solutions. Our team of experts has a proven track record of implementing NIST SP 800-171 practices to help defense contractors achieve Cybersecurity Maturity Model Certification (CMMC). We make it easy for your business to prove it's a safe choice for handling Federal Contract Information (FCI) and Controlled Unclassified Information (CUI). Schedule a free call with me to learn how our team of dedicated cybersecurity experts can help save you months of time and, in many cases, five or even six figures in excessive spending trying to become compliant without expert guidance. ★High Profile Clients ✔ I worked for the United States Army, Lockheed Martin, Bank of America, Hewlett-Packard Enterprise, and many others. Aspire Cyber specializes in the following areas: ★ Risk Assessment and Auditing - We have conducted over 200 Information Security, Business Continuity, and Cloud assessments. -Compliance (NIST, PCI, HIPAA, ISO 27001, GDPR, CCPA, COPPA, FedRAMP) - Cybersecurity Advisor -Cloud Secure Design -Data Privacy Officer (DPO) -Cloud Security -Policy Writing -Penetration Testing -Application Security -Incident Response -Vulnerability Management -Third-Party Risk Management -Security Awareness Training ★ I hold the following degrees and certifications: ✅ Certified CMMC Assessor (CCA) ✅ Certified CMMC Professional (CCP) ✅ CMMC Provisional Instructor ✅ Certified Information Systems Security Professional (CISSP) ✅ Certified Cloud Security Professional (CCSP) ✅ Certified Information Security Manager (CISM) ✅ Certified Risk and Information Systems Control (CRISC) ✅ CMMC Registered Practitioner ✅ CompTIA Security+ ✅ CompTIA A+ ✅ Master of Business Administration (MBA) ✅ Graduate Certificate Cybersecurity Technology WHY CHOOSE ASPIRE CYBER? -Professionalism: We treat all clients respectfully and adhere to the highest ethical standards. -Fast: We always aim to deliver your project ahead of schedule. -Expertise: We have vast experience across various cybersecurity and compliance areas. -Responsiveness: Constant and effective communication is the key to a successful engagement. 🙋🏼‍♂️Our team is eager to partner with your organization to deliver cybersecurity compliance solutions rapidly. Contact Aspire Cyber today to learn how we can fulfill your cybersecurity needs.

Information Security Audit
Cloud Security Framework
NIST SP 800-53
Policy Writing
Information Security Governance
FedRAMP
Information Security Awareness
Risk Assessment
NIST Cybersecurity Framework
Business Continuity Plan
Information Security
Incident Response Plan
Security Testing
Vulnerability Assessment
$150 hourly
Larry T.
- 5.0/5
- (50 jobs)
Hello! I help funded startups, midsize, and fortune 500 companies in the healthcare, technology, and government contracting industries. I do this by implementing cybersecurity frameworks that address compliance and protect data, thereby enhancing your marketability and trustworthiness. My expertise includes 20 years of experience, knowledge from real world experience, and industry certifications (i.e. CISSP, CISM, ISO 27001.) My clients have included healthcare EHR, telemedicine, mobile, medical device, and behavioral health organizations. Other clients have been within the fintech, retail, and non-profit industries. These dynamic ecosystems have equipped me with the ability to provide tailored solutions for your unique needs. Compliance Expertise: HIPAA: I am a healthcare information security and privacy practitioner. I have successfully guided several healthcare organizations in effectively handling sensitive patient data. Notably, I orchestrated a full-scale HIPAA compliance overhaul for a 500+ employee healthcare Non-Profit, mitigating potential risks and ensuring continuous adherence to standards. SOC 2: I have been instrumental in developing and executing successful SOC 2 compliance strategies for SaaS, technology, and healthcare companies. My comprehensive understanding of the Trust Service Criteria has allowed SaaS providers obtain favorable SOC 2 Type II reports. ISO 27001: Specializing in risk management, I led the ISO 27001 certification process for multiple organizations. My systematic approach to implementing the ISMS framework has ensured ongoing conformity to this international standard, reducing information security risks and promoting a security-aware organizational culture. CMMC: With a thorough grasp of the Cybersecurity Maturity Model Certification (CMMC), I have assisted defense contractors in preparation to maintain their contracts by helping them achieve and maintain the required CMMC levels. I spearheaded a project to bring a mid-sized defense contractor up to CMMC Level 2, a significant undertaking that involved both technical and policy modifications. PCI-DSS: I conducted PCI assessments and collaborated with IT Teams for technology companies and payment gateway service providers to ensure a PCI Compliance environment. Additional services included writing policies, conducting risk assessments, managed penetration tests, collect AOCs from vendors, and filled out SAQ forms annually. Certifications: CISSP, CISM, ISO 27001 LEAD IMPLEMENTER, GCIA, ECSA, CEHv7 My Services: - vCISO Management - Policies & Procedures Development - Privacy Management - Compliance Implementation - Security Assessments - Risk Assessments - Third-party Security Questionnaires - SSP Development - Cybersecurity Strategy Testimonials: Imagined Cloud | CEO: "Larry exceeded our expectations with their comprehensive SOC 2 services. They not only helped us navigate complex compliance requirements but also provided valuable insights that improved our overall security posture. Highly recommended!" Johnson & Johnson | MedTech Product Security Manager: "Larry was instrumental in guiding our medical device company through our HIPAA assessments with his digital health expertise, significantly easing our compliance process. I highly recommend him for his cybersecurity expertise in the medical device sector." Keywords: cybersecurity expert, compliance, HIPAA, NIST, SOC 2, ISO 27001, CMMC, ISO 27001, policies and procedures , vCISO, risk assessment, compliance software, security assessments, healthcare

Information Security Audit
Medical Device
NIST Cybersecurity Framework
Cybersecurity Management
Health & Fitness
Healthcare Software
Compliance
Healthcare
Telemedicine
Healthcare IT
SOC 2
ISO 27001
Governance, Risk Management & Compliance
HIPAA
IT Compliance Audit
Security Policies & Procedures Documentation
$50 hourly
Iulian I.
- 5.0/5
- (47 jobs)
I'm a senior offensive security engineer conducting and leading penetration testing engagements. I have conducted and led security audits, penetration tests, and red team engagements for a variety of companies, ranging from enterprise level with thousands of hosts in scope to startups or small clients that want to have an edge over their competition security-wise. Daily activities include, but are not limited to: - Client meetings - Scoping - Hands-on activities (pentesting, etc) - Researching new vulnerabilities - Report writing My skillsets include: - Penetration Testing (web applications, APIs, internal/external networks, mobile (android) applications, server security review) - Vulnerability Assessments - Red Teaming Exercises - Phishing Simulation Owner of: CVE-2023-4843 CVE-2024-45873 CVE-2024-45874 Volunteer at Hackout (a project/platform having collaboration with CERT) where I responsibly disclose vulnerabilities. Former contributor member/content creator at Try Hack Me. Certificates owned: [+] Certified Professional Penetration Tester (eCPPT) from eLearnSecurity [+] Network Defense Professional (eNDP/PND) from eLearnSecurity [+] Certified Red Team Professional (CRTP) from Pentester Academy [+] Certified Red Team Expert (CRTE) from Pentester Academy [+] Web Application Penetration Tester from eLearnSecurity [+] Red Team Operations - Windows Privilege Escalation from Sektor7 [+] Certified Enterprise Security Specialist (PACES) from Pentester Academy [+] Certified Penetration Tester Extreme - eLearnSecurity [+] Certified Red Team Operator - Zero Point Security [+] Offensive Security Experienced Pentester (OSEP) - Offensive Security [+] Certified Azure Red Team Professional (CARTP) - Altered Security

Information Security Audit
Ethical Hacking
Web Application Security
Linux
OWASP
Security Testing
Information Security Consultation
Security Assessment & Testing
Application Security
Network Penetration Testing
Penetration Testing
Web App Penetration Testing
Vulnerability Assessment
Information Security
Network Security
$50 hourly
Priya P.
- 5.0/5
- (7 jobs)
An experienced cyber-security specialist & quality assurance & regulatory professional with a proven track record in governance, risk & compliance. I bring a wealth of hands-on experience in Information Security audits, Risk Management, Risk Assessment, Vendor Risk Assessment, Information Security Policy and procedures formulation, compliance with various security standards for several global clients and also performed cyber-security compliance assessments using NIST 800-53, NIST CSF based controls and supports remediation and mitigation activities. I also have experience in managing Quality Management System (single-handedly), drafting Standard Operating Procedures (SOP), managing Corrective & Preventive Action (CAPA) & Non-conformances/deviations, Training & Development, Document Management, KPI Management, Audit (Internal/External) Management in adherence to MDSAP, EU MDR 2017/745 & ISO 13485:2016 with deep understanding of these laws and standards. I have a deep understanding of various laws such as HIPAA. GDPR, Data Protection Act, MDSAP, EU MDR 2017/745 and standards such as ISO 27001:2013, PCI-DSS, SOC2, ISO 13485:2016 etc.

Information Security Audit
Financial Audit
PCI
Cybersecurity Management
GDPR
IT Compliance Audit
PCI DSS
Data Privacy
Risk Assessment
ISO 27001
$30 hourly
Anushka S.
- 5.0/5
- (114 jobs)
Currently based in east coast USA, I am a seasoned IT professional with over 15 years of experience in multiple domains in IT such as Information Security and auditing, IT Project Management, IT Infrastructure Management, IT Operations, Business Analysis, Business Continuity and DR planning etc. Last worked as the Head of IT for five years in the Sri Lankan business of AIA Group, which is the largest insurance company in the world. I am now working as a freelance Consultant and accolade with the status 'TOP RATED' in Upwork. My skills are supported by industry leading professional and academic qualifications:- - Master of Science in Project Management from AeU - Malaysia - Certified Information Security Manager (CISM) from ISACA - USA - Certified Information Systems Auditor (CISA) from ISACA - USA - Certified in Risk & Information Systems Controls (CRISC) from ISACA - USA - Certified Data Privacy Solutions Engineer(CDPSE) from ISACA - USA - Certified Information Systems Security Professional (CISSP) from ISC2 - USA - HealthCare Information Security and Privacy Practitioner (HCISPP) from ISC2 - USA - GIAC Certified Intrusion Analyst (GCIA) from SANs USA - GIAC Continuous Monitoring Certification (GMON} from SANs USA - Project Management Professional (PMP) from PMI - USA - Working knowledge in ITIL V3 I have expert knowledge in multiple disciplines: **Information Security** - Development of Information Security Policies/ Procedures and Standards aligned to ISO27001/2 or NIST standards. - Development of Security Baseline Documents - Vulnerability Assessments and Penetration Testing (VAPT) - Assist in responding to Security Questionnaires - Risk Management Documentation - Business Continuity and Disaster Recovery Plans (DRP) - Cloud Security Enhancements - Good working knowledge on HIPAA, PCI DSS, ISO, GDPR, NY CRR500, FERPA etc. - Any other Information Security Related Tasks **Project Management** - Development of Business cases, Project Plans, Project Initiation Documents, Project Risk Logs and any other projects related documents and templates. - Developing Project Management Frameworks - Implementation assistance on Project Management tools such as Wrike or Asana - Project Management Support **Information Systems (IS) Auditing** - Develop Audit Programs - Conduct IS Audits (General Controls) - Conduct Specialized Audits (Cloud computing/Active Directory/ MS SQL etc) - Regulatory Compliance Reviews **IT Technical & Academic Writing** - User manuals both graphical/ text based and animated (simulations) - Undertake IT technical and academic writing on Information Security, Project Management or any other suitable topic. Passion and commitment keeps me fully engaged with clients to always deliver more value. Please get in touch and looking forward to work with you. Fluent in English and contactable through Upwork, Skype or WhatsApp Thank you

Information Security Audit
Splunk
Academic Writing
Project Management Professional
Information Technology Operations
Technical Writing
System Administration
IT Management
Information Security
Network Security
Security Policies & Procedures Documentation
Security Assessment & Testing
$35 hourly
Muhammad Majid Bin M.
- 3.9/5
- (36 jobs)
Greetings, As a seasoned professional with 14+ years of experience in in Corporate Governance, Enterprise Risk Management, Business Continuity, and Information/Cyber Security, I specialize in aligning strategy and objectives across business functions to achieve principled performance. By preparing organizations to adopt a risk-based approach, I strengthen governance and compliance practices while driving continuous improvements and enhancing quality. But what does this mean for you? It means having a partner who understands your unique challenges and is dedicated to delivering tailored solutions that exceed your expectations. Someone who can navigate complex frameworks and regulations with ease, ensuring your organization remains secure, compliant, and ahead of the curve. With certifications including Certified Information Security Manager (CISM), Certified Cybersecurity (CC), Governance, Risk Management, and Compliance Professional (GRC-P), Project Management Professional (PMP), and ISO 27001:2013 Lead Auditor (Qualified), I bring a wealth of domain-specific knowledge to every project. But more than that, I bring a passion for helping clients like you succeed. Throughout my career, I've leveraged my skills to help clients maintain strategic alignment, strengthen cybersecurity, governance, risk, and compliance practices, and drive continuous improvement. And I'm committed to doing the same for you, delivering high-quality work within budget and deadlines. So, What's next ? .... Let's connect !! to learn how my expertise can benefit your organization on the path to business excellence. Reach out today, and let's start building a more secure, compliant, and successful future for your business!

Information Security Audit
Business Process Automation
Change Management
Governance, Risk Management & Compliance
Information Security Governance
Management Consulting
IT Consultation
Technical Documentation
Risk Management
Business Process Modeling
Technical Project Management
Cybersecurity Management
Security Policies & Procedures Documentation
Information Security Consultation
$125 hourly
Terry M.
- 5.0/5
- (8 jobs)
Information Security, Governance, Risk, and Compliance (GRC) professional. • HITRUST CCSFP, CISSP, PCI ISA, ITIL • 15+ years in Information Security (Governance, Risk, and Compliance) • 15+ years in highly regulated environments (PCI, HIPAA, FISMA) • 15+ years implementing/managing ISO 27001, NIST 800-53, NIST-CSF, PCI-DSS • 10+ years of policy and procedure development and management • 10+ years of process optimization, streamlining • 15+ years in IT (design, development, implementation, and management) • Bachelor of Business Administration - Finance

Information Security Audit
Company Policy
Risk Assessment
HITRUST Common Security Framework
Governance, Risk Management & Compliance
Certified Information Systems Security Professional
HIPAA
PCI
ServiceNow
NIST SP 800-53
$125 hourly
William P.
- 5.0/5
- (34 jobs)
UpWork Recognition: Expert-Vetted | Top-Rated Plus | 100% Job Success Score I provide affordable cyber security solutions to startups, small and medium-sized businesses, non-profits, and other organizations. I organizations that need improved security but don't have the budget to support an enterprise level. I work with these companies to create a security solution that is both affordable and effective. In today's world of ever-increasing cyber threats where small businesses are targeted more frequently, it is vital that these companies have IT Security systems in place. Statistics show that nearly half of small companies that suffer a cyber breach never recover. SPECIALITES: • Vulnerability Analysis • Penetration Testing • Compliance Assessment • Network Security Planning • Consultation • Managed Security Services • Risk Assessment & Management CMMC, HIPAA, SOC2, GDPR,

Information Security Audit
Data Privacy
Vendor Management
Information Security
Security Analysis
Penetration Testing
Risk Assessment
Regulatory Compliance
Cybersecurity Management
Ethical Hacking
$150 hourly
Sam W.
- 4.5/5
- (25 jobs)
Secure, Scale, and Sell Faster with a Top 1% Cybersecurity Expert. 🔒 Compliance That Unlocks Business Growth Enterprise clients demand security, privacy, and compliance before they sign deals. With 17+ years of experience, a Ph.D. in cybersecurity, and a proven track record with SOC 2, PCI DSS, ISO 27001, GDPR, and FedRAMP, I help companies: - Achieve compliance and close high-value deals (SOC 2, ISO 27001, PCI DSS, FedRAMP) - Secure cloud and SaaS platforms (AWS, Azure, GCP, AI-driven products) - Strengthen cybersecurity and risk posture without slowing business growth Why Work With Me? - Upwork Expert-Vetted | Ph.D. in Cybersecurity | 17+ Years Experience - Fractional CISO & Compliance Advisor – Executive-level security leadership at a fraction of the cost - Enterprise-Level Success – Clients have secured $1M+ contracts by implementing my compliance frameworks - Proven ROI – I optimize security processes, saving companies thousands in compliance costs What Clients Say - 🏆 Enterprise Deal Closed: "The certification enabled us to finalize a contract with a Fortune 100 company!" - 🚀 Tech Startup Scaling Globally: "We achieved ISO 27001 certification 2x faster than expected, unlocking major opportunities." - 💡 SaaS CEO Expanding into B2B: "Our SOC 2 compliance process was seamless, allowing us to secure enterprise clients faster." Are These Security Challenges Slowing Your Growth? - Overwhelmed by security assessments and compliance requirements? - Need to accelerate sales by becoming audit-ready? - Using Drata, Vanta, or Sprinto but unsure of the next steps? - Need a fast penetration test, security review, or cloud security assessment (AWS, GCP, Azure)? - Facing compliance challenges for AI-driven products? - Looking for an ongoing vCISO service for long-term security leadership? My Core Services - Fractional CISO (vCISO) Services – Ongoing cybersecurity leadership to strengthen security & compliance - SOC 2, ISO 27001, PCI DSS, GDPR, HIPAA, FedRAMP Compliance – Done right, fast, and audit-ready - Penetration Testing & Security Assessments – Find and fix vulnerabilities before attackers do - Security Questionnaires & Vendor Risk Assessments – Pass enterprise security reviews quickly - AI Security & Compliance – Ensure AI-driven products meet security and regulatory standards Why Clients Choose Me Over Others - ✅ Guaranteed Results – Helped clients secure millions in revenue by eliminating security roadblocks - ✅ Money-Back Guarantee – If you don’t achieve compliance, I’ll refund my fees - ✅ Enterprise-Level Expertise – Trusted by Fortune 500 companies and fast-growing SaaS startups - ✅ Scalable, Efficient Solutions – My frameworks are audit-proof and built for long-term success Let’s Turn Security Into a Business Growth Enabler Message me now to discuss securing your business, accelerating compliance, and winning enterprise clients! Compliance & Security Expertise - Compliance Frameworks: ISO 27001, SOC 2, FedRAMP, PCI-DSS, NIST 800-53, HITRUST, GDPR, HIPAA, CMMC - Security Tools: CyberGRX, Panorays, KY3P (S&P, PWC), OneTrust, Whistic, Graphite Connect - Cloud Security: AWS, Azure, GCP, SIEM, Endpoint Security, IAM, Zero Trust Ready to Secure Your Business? Click "Invite" or Message Me Now for a Free Consultation! 🛡️ Dr. Sam Wertheim | Upwork Expert-Vetted | Cybersecurity & Compliance Leader CISO | Cybersecurity Expert | Security Engineer | Compliance & Risk | Governance

Information Security Audit
Security Management
NIST SP 800-53
Rust
Cybersecurity Tool
Compliance
Project Management
Python
NIST Cybersecurity Framework
Cybersecurity Monitoring
Cloud Engineering
Cyber Threat Intelligence
Business
Cybersecurity Management
$10 hourly
Abdul W.
- 5.0/5
- (442 jobs)
**I only bid on that project which I can deliver with complete satisfaction.** If your Instagram got HACKED or Locked and your Email or Number was Changed and Facing 2FA you are in the right place. *For Hacked Instagram or Facebook Accounts Recovery I Take Fix Price Which I Discuss before starting the project* I can provide solutions with the followings: ✅ Social media accounts set up and integration ✅ Social Media Management ✅ Social Media Optimization ✅ Social Media Error Fixing ✅ Hacked Instagram Recovery ✅ Assistance with your Instagram or Facebook removal ✅ Assistance with hacked Instagram account ✅ Assitance with stolen Facebook account ✅ Facebook business page recovery ✅ unauthorized ads payment on ads manager recovery ✅ Accounting ✅ Social media account recovery ✅ 2FA solution ✅ Google My Business ✅ Virtual Assitance ✅ All kinds of Social accounts Retrieve and All sorts of Error Fixing and name a few & I will let you know my experience. I am always eager to learn new skills. Also, please invite me for an interview if your's: Facebook account is hacked. Instagram account is hacked. Facebook account is locked. Instagram account is locked. Facebook account is compromised. Instagram account is compromised. Facebook account is lost. Instagram account is lost. Virtual assistance if your Instagram got disabled or restricted Facebook Business Suite hacked or compromised Facebook ads account recovery. Or if you are looking assistance for help: Recover hacked Instagram account Facebook Recovery Instagram restoration Social media Verification Facebook Business Suite verification Instagram & Facebook Integration Recovery of account in case of lost credentials Recovery from technical issues, bugs, and glitches Virtual Assitance Removal of old lost Instagram or Facebook profiles. assistance in Google My Business profile retrieval. Email accounts assistance. I Provide virtual assistance in all that and the result depends on them. Feel free to discuss the project before starting a contract. In response to your expectations: 1. I have expertise in the area required by you. 2. I can start the project immediately and complete your milestone as per your timeline. I believe communication is key to any successful project, and I'd like to start things off on the right foot, but I suggest we schedule a call to discuss the project further. This will enable us to make sure that we communicate well and are completely comfortable with the scope of the project. Please let me know the time that works best for you and I will make sure that I make myself available. Thank you for your time and consideration.

Information Security Audit
Internet Security
Data Recovery
Instagram Reels
Facebook
WordPress Malware Removal
Malware Removal
Facebook Page
Ethical Hacking
Social Media Management
Social Media Marketing
Digital Marketing
Instagram
Information Security
Technical Support
Accounting
Want to browse more freelancers?
Sign up

Last updated: May 21, 2025

How it works

1. Post a job

Tell us what you need. Provide as many details as possible, but don’t worry about getting it perfect.

2. Talent comes to you

Get qualified proposals within 24 hours, and meet the candidates you’re excited about. Hire as soon as you’re ready.

3. Collaborate easily

Use Upwork to chat or video call, share files, and track project progress right from the app.

4. Payment simplified

Receive invoices and make payments through Upwork. Only pay for work you authorize.

Trusted by

How do I hire a Information Security Audit Freelancer on Upwork?

You can hire a Information Security Audit Freelancer on Upwork in four simple steps:

Create a job post tailored to your Information Security Audit Freelancer project scope. We’ll walk you through the process step by step.
Browse top Information Security Audit Freelancer talent on Upwork and invite them to your project.
Once the proposals start flowing in, create a shortlist of top Information Security Audit Freelancer profiles and interview.
Hire the right Information Security Audit Freelancer for your project from Upwork, the world’s largest work marketplace.

At Upwork, we believe talent staffing should be easy.

How much does it cost to hire a Information Security Audit Freelancer?

Rates charged by Information Security Audit Freelancers on Upwork can vary with a number of factors including experience, location, and market conditions. See hourly rates for in-demand skills on Upwork.

Why hire a Information Security Audit Freelancer on Upwork?

As the world’s work marketplace, we connect highly-skilled freelance Information Security Audit Freelancers and businesses and help them build trusted, long-term relationships so they can achieve more together. Let us help you build the dream Information Security Audit Freelancer team you need to succeed.

Can I hire a Information Security Audit Freelancer within 24 hours on Upwork?

Depending on availability and the quality of your job post, it’s entirely possible to sign up for Upwork and receive Information Security Audit Freelancer proposals within 24 hours of posting a job description.

A talent edge for your entire organization

Enterprise Suite has you covered for hiring, managing, and scaling talent more strategically.

Schedule a call