Hire the best Information Security Audit Freelancers in California
Check out Information Security Audit Freelancers in California with the skills you need for your next job.
- $99 hourly
- 5.0/5
- (41 jobs)
I help organizations build and manage a strong cybersecurity program. I have established resilient cybersecurity in Fortune 100 companies —Warner Bros., EA Sports, Pfizer, State Farm Insurance, and Goldman Sachs and can do the same for your business.
Information Security Audit
Cloud SecurityNetwork SecurityCybersecurity MonitoringSOC 2HIPAAPCICertified Information Systems Security ProfessionalISO 27001Security InfrastructureCompliance ConsultationWeb Application SecurityVulnerability AssessmentPenetration TestingSecurity Policies & Procedures Documentation - $150 hourly
- 4.6/5
- (2 jobs)
Education: 10+ years accounting, audit, business, forensics and information: administration, assurance, security and technology education resulting in two bachelor and two master degrees as well as ten graduate certificates and/or certifications at the University of South Florida, Harvard University and Capitol Technical University. Experience: 25+ years of information: audit, compliance, freelance, governance, policy, risk management, security operations, technical writing and/or technology experience at nine entities in six roles as a security: analyst, auditor, consultant, freelancer, instructor and programmer in six industries in banking, health, GOV, non-profit education, technology and telecom. Accomplishments: * Authored 250+ policies & procedures.. * Conducted 50+ audits & assessments. * Utilized 25+ frameworks & standards. * Managed 25+ security projects. * Defended 100+ incident attack types. * Conducted 10+ PCI compliance Awarded: * Achieved top 1% and earned "Innovative Solution" award in vulnerability management recognized by EDUCAUSE in non-profit education. * Safeguarded police & fire station safety systems. * Secured critical U.S. infrastructure. *Founded two IT security programs and achieved the City of San Antonio's first PCI compliance. Website: vciso.biz Regards, Raymond (Scott) Miller MBA MSIA CISA CIA CGAP CFE R.Scott.Miller@usa.com
Information Security Audit
Technical WritingInformation Security Threat MitigationPCI DSSNIST Cybersecurity FrameworkNIST SP 800-53ISO 27001HIPAAInformation Security AwarenessInformation Security GovernanceInformation Security ConsultationVulnerability AssessmentRapid7 NexposeSecurity Policies & Procedures DocumentationInformation Security - $120 hourly
- 5.0/5
- (1 job)
Visionary CIO with a proven track record of driving digital transformations, unlocking strategic agility, and capitalizing on cutting-edge technology projects to leapfrog competition and deliver outstanding business results. I expertly align technology investments with corporate objectives to accelerate: growth, operational efficiency, and compliance. My transformational leadership creates high-performance teams that foster innovation, continuous improvement, and problem-solving with data-driven decisions. Serving as a trusted advisor to C-level executives, I shape the future of organizations by implementing innovative technology solutions to generate exceptional value and dominate global markets. Let's forge a tech edge!
Information Security Audit
ScrumConversion Rate OptimizationIT Asset ManagementVendor ManagementPrompt EngineeringBrand NamingBrand StrategyBrand PositioningContent CreationContent StrategyAI ConsultingBusiness StrategyProduct StrategyArtificial Intelligence - $150 hourly
- 5.0/5
- (1 job)
I am an experienced technology executive with over 20 years of experience in security, cloud, data centers, and managed services. I co-founded and served as CTO for VPLS, an MSSP and private cloud service provider with 150 employees, thousands of servers, and petabytes of storage across three global NOCs. At VPLS, I implemented the cybersecurity program, achieving SOC 2, HIPAA, and PCI certifications for all our services. We grew the business profitably until October 2019, when we sold the business to Evocative Data Centers. I then served as VP of Operations at Zenlayer, a global edge cloud service provider with 275+ global data centers and over 650 employees. I led Zenlayer's security transformation initiatives and ISO 27001 and SOC 2 compliance efforts. While at Zenlayer, I scaled operational efficiencies with the security of our customer’s data as the number one priority. I am now co-founder and CEO of Bright Defense, which offers continuous cybersecurity compliance. Our offering includes: - Managed continuous cybersecurity compliance - Compliance automation - Implementation of Information Security / Cybersecurity Programs - Gap Analysis, Assessment, Remediation, Certification and Assurance reports - vCISO services - Managed security awareness and phishing
Information Security Audit
HIPAACMMCCertified Information Privacy TechnologistCertified Information Security ManagerInformation Security GovernanceSecurity EngineeringSOC 1SOC 2 ReportSOC 2NIST SP 800-53NIST Cybersecurity FrameworkInformation Security ConsultationCybersecurity ManagementInformation Security - $151 hourly
- 5.0/5
- (3 jobs)
- I am a Senior Security Engineer with expertise in application, product security, vulnerability management, and security automation. - I have over a decade of experience in software development processes and security engineering. - I hold a master’s degree in Cybersecurity from Georgia Institute of Technology. - I am proficient in Python, Node.js, and Bash. - Fluent in English, Russian, and Armenian.
Information Security Audit
Bash ProgrammingJavaScriptPython ScriptNIST Cybersecurity FrameworkWebsite SecurityCloud SecuritySecure SDLCSecurity EngineeringApplication SecurityThreat DetectionVulnerability AssessmentInformation Security Threat MitigationInformation SecurityCompliance - $85 hourly
- 5.0/5
- (1 job)
With over 15 years of invaluable experience in the IT industry, I bring a wealth of expertise to the table. Specifically, I have dedicated 8 years of my career to specializing in compliance standards such as HIPAA, HITECH, NERC, ISO 27001, and ADA. My approach involves a meticulous step-by-step process that enables me to thoroughly analyze and address the unique needs of your organization. Having successfully dealt with HIPAA security breaches in the past, I am well-equipped to handle time-sensitive matters with utmost dedication. My primary goal is to ensure that my clients avoid substantial fines and penalties by promptly remedying any compliance issues. If you are in search of a comprehensive risk assessment, I am pleased to offer my services detailed below.: Security Risk Analysis o Annual Risk Assessment o Business Associate Agreement (BAA) o IT Security Documentation o IT Policy and Procedures o Report Analysis o Remediation Recommendations Website Compliance o Review website for ADA, CCPA, and GDPR compliance o HIPAA compliance is by scope only. o Security screenings o Monitoring o Backups o Remediation Strategies Network Vulnerability Assessment o Scoping o Threat Assessment o Setup & Configuration o Vulnerability Report Analysis o Remediation Recommendations Monthly Monitoring o Monthly Security Monitoring and Alerts o HIPAA compliance and alerts against malicious events o Website monitoring, compliance, monthly reports.
Information Security Audit
FirewallNetwork EngineeringCiscoFortiGate FirewallFortinetInformation Technology StrategyNetwork MonitoringSecurity AnalysisVulnerability AssessmentNetwork SecurityIT Compliance AuditISO 27001HIPAARisk Assessment - $80 hourly
- 5.0/5
- (7 jobs)
Over 25+ years of real-world IT experience with heavy exposure to security, vulnerability & risk assessments, penetration testing, ERP systems and Microsoft SQL Server. Experienced with the following tools/processes: CrowdStrike, penetration testing, OSINT, Burpsuite, Greenbone vulnerability scanner, Kali Linux, Metasploit Framework, OWASP Zap, MITRE Attack Framework, GRC, BCP/DR, Google Cloud, ELK Stack, Python, C# Well-versed in security assessments based on NIST 800-53 security controls, vendor risk analysis & SOC 2 reviews, creating security awareness training & phishing campaigns, and policy/procedure writing. Specializing in: - Information Security - Project management - System administration - Database & system design - ERP systems (Financials, HR, and Budgeting)
Information Security Audit
NIST Cybersecurity FrameworkWebsite SecurityInternet SecurityInformation Security AwarenessInformation Security GovernanceMicrosoft SQL Server AdministrationEnterprise Resource PlanningProject ManagementSystem SecurityInformation SecurityCybersecurity Management - $150 hourly
- 5.0/5
- (1 job)
Big 4 CYBERSECURITY Consultant - CISSP Accomplished IT Professional with 20 years of experience fostering forward-thinking Cybersecurity solutions to high-profile companies on large-scale and mission-critical projects. Advised organizations on risk management and strategic projects to prevent cyber-attacks and meet operational goals. Exceptionally skilled in providing tactical technological direction, directing risk management initiatives, implementing key information security strategies, and leading teams to resolve technical issues. Result-oriented leader with a track record of achieving unparalleled results while bridging the gap between technical experts and company executives. Articulate communicator, capable of multitasking in a dynamic environment. Areas of Proficiency Cybersecurity Strategy | Gap Identification & Remediation | NIST CSF | NIST 800-53 | |CISO Dashboard | Data Analytics | App & Interface Security | Audit Assurance & Compliance | Data Security | Information Lifecycle Management | Security Incident Management | Risk Mitigation & Analysis | Cloud & Network Security | Secure Software Development | Vulnerability Assessment & Management | Cyber Defense | Information Security Management | Threat Management | Firewalls & Malware Analysis | Information Technology | Intrusion Detection | Identity & Access Management
Information Security Audit
Risk AssessmentCIS Control AssessmentNIST SP 800-53GDPR Compliance ReviewCybersecurity ToolNIST Cybersecurity FrameworkISO 27001Data ProtectionGDPRInformation Security GovernanceInformation Security ConsultationCybersecurity Management - $100 hourly
- 0.0/5
- (0 jobs)
I am a cybersecurity and privacy leader with a strong background in risk management, compliance, and governance. I lead cybersecurity and privacy initiatives across the organization to ensure compliance with industry standards and regulatory requirements. My expertise lies in developing risk models, frameworks, and policies that enhance security postures and enable data-driven decision-making. With experience spanning Fortune 50 companies, I have successfully designed and implemented Third-Party Risk Management (TPRM) programs, cloud security strategies (AWS, Azure, GCP), and information security assessments aligned with NIST, ISO 27001, PCI, GDPR, HIPAA, and more. I have also spearheaded critical infrastructure risk and compliance efforts, reducing security risks and improving risk prioritization strategies. I thrive in complex, high-stakes environments, collaborating with cross-functional teams to drive security initiatives that protect organizations and their stakeholders. Whether advising senior leadership, managing global risk programs, or fostering a culture of security awareness, my goal is to make cybersecurity and compliance seamless, scalable, and effective. Let’s connect if you’re looking for an experienced security and risk professional who can help strengthen your organization’s security and compliance posture!
Information Security Audit
ISO 27001NIST Cybersecurity FrameworkInformation Security Threat MitigationCertified Information Security ManagerFederal Information Security Management Act of 2002Information Security GovernanceInformation Security ConsultationPrivacyPrivacy Impact AssessmentCybersecurity ToolCybersecurity ManagementInformation SecurityGovernment Reporting ComplianceCompliance - $50 hourly
- 0.0/5
- (0 jobs)
I work directly with clients to solve complex problems and enhance their information security. I have over a decade of experience in cybersecurity, risk management, and project management, and hold the CISSP, CRISC, and Security+ certifications. My mission is to help organizations protect their assets and data from cyber threats and comply with the latest policies and standards.
Information Security Audit
Risk AssessmentGovernance, Risk Management & ComplianceProject ManagementTechnical WritingIT Compliance AuditSecurity Policies & Procedures DocumentationInformation Security GovernanceInformation Security ConsultationNIST SP 800-53NIST Cybersecurity FrameworkCybersecurity ManagementInformation Security - $50 hourly
- 0.0/5
- (0 jobs)
Security professional with a proven track record in risk management program development, process streamlining, and driving compliance initiatives (PCI DSS, SOC 2, ISO 27001/27701, FedRAMP, C5, BSI) in fast-paced and innovative environments. Skilled in security risk assessments, vendor management, and cross-departmental collaboration to achieve security and compliance goals.
Information Security Audit
Information Security ConsultationInformation Security GovernanceInformation Security AwarenessSecurity Policies & Procedures DocumentationSecurity Assessment & TestingSOC 2Network Access ControlGDPR Compliance ReviewGDPRNIST SP 800-53NIST Cybersecurity FrameworkISO 27001 Want to browse more freelancers?
Sign up
How hiring on Upwork works
1. Post a job
Tell us what you need. Provide as many details as possible, but don’t worry about getting it perfect.
2. Talent comes to you
Get qualified proposals within 24 hours, and meet the candidates you’re excited about. Hire as soon as you’re ready.
3. Collaborate easily
Use Upwork to chat or video call, share files, and track project progress right from the app.
4. Payment simplified
Receive invoices and make payments through Upwork. Only pay for work you authorize.
