Hire the Best Internet Security Developers

More than 3,000 reviews on G2
Rating is 4.5 out of 5.
4.5/5
of Upwork by G2 peer reviewers
David M.

Tonbridge, United Kingdom

$50/hr
5.0
3 jobs

๐Ÿ”’ You need security that actually works โ€” not a report that says it does. The organisations I work with want to find the vulnerabilities that matter, fix them with confidence, and get on with growing their business without security becoming the thing that stops them. I have delivered over 1,000 commercial penetration tests across 27 years. Not side projects. Not internal assessments. Full mission-critical engagements for high street and investment banks, hedge funds, insurance firms, government departments, police, military, national infrastructure, retailers, law firms, airports and more. I led the security architecture for the Athens 2004 Olympics internet-facing systems. I was lead architect on the UK Cyber Essentials scheme at launch. I have published in commercial security press and guest lectured at universities. There is a difference between someone who does penetration testing and someone who has seen every flavour of environment, every attack pattern, and every way organisations deceive themselves about their security posture. That difference is what you are hiring. ๐ŸŽฏ Where can I help: ๐Ÿ—ก๏ธ Network & Infrastructure Penetration Testing โ€” adversarial testing of internal and external infrastructure, finding exploitable exposures before an attacker does. ๐ŸŒ Application Penetration Testing โ€” web application and API security testing against real attack patterns: authentication, authorisation, input handling and business logic flaws. โ˜๏ธ Microsoft 365 Security Assessment โ€” Entra ID, Conditional Access, PIM, Intune, DLP, sensitivity labelling, Exchange Online and Defender for Office 365. ๐Ÿ”ท Azure Security Assessment โ€” identity and access management, network controls, storage and key management, Defender for Cloud posture, and monitoring coverage. ๐ŸŸข Google Workspace, GCP & AWS Security Assessments โ€” configuration and access control assessments across Google and Amazon cloud environments. ๐Ÿ›๏ธ Security Architecture and Risk Advisory โ€” senior technical input on architecture decisions, control design and risk without a full engagement commitment. ๐Ÿ‘ค Every engagement is delivered directly by me โ€” David Morgan, founder of Metis Security. No account management layer, no junior handoffs, no templated output. You work with the person conducting the analysis and writing the report. ๐Ÿ“‹ How I work is as important as what I find Every finding in my reports is one I will defend as genuinely material to your environment. No padding, no low-hanging fruit included to justify the fee, no default risk ratings copied from a scanner. If your context changes the risk, the rating reflects that. What you receive: โœ… A visually structured report with clear separation between executive summary, findings and remediation roadmap โ€” written to be read by people who are not security specialists โœ… Risk ratings adjusted to your specific environment and context, not defaulted from a tool โœ… A prioritised remediation roadmap so your team knows exactly what to fix first and why it matters commercially โœ… Immediate escalation of any high-risk finding or schedule-affecting issue during the engagement โ€” you are never waiting until the end to hear something important โœ… Daily status updates so you always know where the engagement stands โœ… A debrief call at close to walk through findings, answer questions and finalise the report before it is delivered CISSP | ISSAP | Microsoft Security certifications | 27 years If you need to know whether your environment is genuinely secure โ€” not whether it looks configured โ€” I am worth a conversation.

  • Internet Security
  • Penetration Testing
  • Web Application Security
  • Network Penetration Testing
  • Office 365
  • Microsoft Azure
  • Cloud Security
  • Network Security
  • Vulnerability Assessment
  • Security Assessment & Testing
  • Cybersecurity Management
  • Zero Trust Architecture
  • Security Analysis
  • Google Cloud Platform
  • Google Workspace
  • Amazon Web Services
  • NIST Cybersecurity Framework
  • Microsoft 365 Copilot
  • Information Security Audit
  • Information Security Consultation
Abdallah H.

Suez, Egypt

$50/hr
5.0
6 jobs

๐™ˆ๐™ค๐™จ๐™ฉ ๐™จ๐™š๐™˜๐™ช๐™ง๐™ž๐™ฉ๐™ฎ ๐™›๐™ง๐™š๐™š๐™ก๐™–๐™ฃ๐™˜๐™š๐™ง๐™จ ๐™š๐™ž๐™ฉ๐™๐™š๐™ง ๐™—๐™ง๐™š๐™–๐™  ๐™ฉ๐™๐™ž๐™ฃ๐™œ๐™จ ๐™ค๐™ง ๐™—๐™ช๐™ž๐™ก๐™™ ๐™ฉ๐™๐™ž๐™ฃ๐™œ๐™จ. ๐™„ ๐™™๐™ค ๐™—๐™ค๐™ฉ๐™, ๐™ฌ๐™๐™ž๐™˜๐™ ๐™ž๐™จ ๐™ฌ๐™๐™ฎ ๐™›๐™ค๐™ช๐™ฃ๐™™๐™š๐™ง๐™จ ๐™—๐™ง๐™ž๐™ฃ๐™œ ๐™ข๐™š ๐™ž๐™ฃ ๐™—๐™š๐™›๐™ค๐™ง๐™š ๐™–๐™ฃ๐™™ ๐™–๐™›๐™ฉ๐™š๐™ง ๐™ก๐™–๐™ช๐™ฃ๐™˜๐™. You usually find me at one of these moments: an enterprise customer sent a security questionnaire you can't fully answer, investor due diligence flagged your security, a SOC 2 or HIPAA requirement is blocking a deal, or you shipped fast with AI tools and you're no longer sure what's exposed. If any of those is you, you're in the right place. ๐‘พ๐’‰๐’‚๐’• ๐‘ฐ ๐’…๐’: โœ… Application & API penetration testing: web apps, APIs, auth/access control, OWASP Top 10, and the AI-generated-code failure patterns (hardcoded secrets, broken authz, injection) โœ… SaaS security & pre-launch hardening: find and fix what's exploitable before you scale, fundraise, or sign that enterprise customer โœ… Compliance & GRC: SOC 2 readiness, HIPAA/HITECH, security questionnaires, and controls mapped to frameworks like NIST and ISO 27001 so audits stop being a fire drill โœ… Fractional security ownership: threat modeling, API contracts, zero-trust architecture, penetration tests, logs analysis, and the security playbooks your team actually follows Across my engagements I've reduced measured security risk by ~80% on average, eliminated injection and access-control flaws, and secured 7+ startups with zero breaches since. Whether it's a regulator, an auditor, an investor, or an enterprise customer asking the hard questions, send me the scope and I'll tell you straight where you stand and what I'd fix first.

  • Internet Security
  • Website Security
  • Penetration Testing
  • Vulnerability Assessment
  • Network Security
  • Security Analysis
  • Information Security
  • Ethical Hacking
  • Web App Penetration Testing
  • Web Testing
  • Security Testing
  • Web Application Security
  • OWASP
  • Cybersecurity Management
  • Information Security Audit
Kashif M.

Islamabad, Pakistan

$30/hr
5.0
79 jobs

Are you tired of WordPress developers who disappear after delivery? You have found someone different. My clients don't just hire me once โ€” they keep me for months and years because I treat their site like my own. โœ”๏ธ WordPress and WooCommerce developer with 15+ years of experience โœ”๏ธ 100% Job Success Score What I help with: โœช Wordpress Website Development โœช WordPress Maintenance & Ongoing Support โœช Website Security and Email Setup Specialist. โœช Technical Support [Website Errors Fixes] โœช Server Maintenance [Cloud/Azure/Google/AWS] โœช Domain & Data Migration I become your dedicated WordPress partner. Updates, backups, monitoring, performance checks, and anything that comes up โ€” handled proactively before it becomes a problem. Bug Fixing & Troubleshooting White screen of death, plugin conflicts, WooCommerce checkout errors, broken layouts after updates, PHP fatal errors โ€” I diagnose fast and fix clean. No patching over problems. Security Hardening & Malware Removal Hacked site, Google blacklist warning, suspicious redirects โ€” I handle full cleanup, firewall setup, and ongoing protection so it never happens again. Site Migration Moving hosts, changing domains, or switching from Shopify to WordPress โ€” zero downtime, zero data loss. Speed Optimization & Core Web Vitals GTmetrix and PageSpeed scores to 90+ through caching, image optimization, CDN setup, and code minification. My Toolkit: WordPress, WooCommerce, Elementor, Gutenberg, ACF, PHP, JavaScript, jQuery, REST API, Cloudflare, Wordfence, Sucuri, WP-CLI, Yoast SEO, Git, Kinsta I can assure my client for the best quality work. Client satisfaction is my first priority and I offer cost-effective services. I work during standard USA and UK business hours โ€” Eastern Time, Central Time, and GMT. You will always reach me during your working day. Send me your project details โ€” I typically respond within an hour.

  • Internet Security
  • WordPress
  • Elementor
  • WordPress Malware Removal
  • Domain Migration
  • WordPress Plugin
  • Website Customization
  • PHP
  • AWS Server Migration
  • SSL
  • WooCommerce
  • CSS
  • Linux System Administration
  • Web Development
  • WordPress Consultation
  • WordPress Bug Fix
  • Cloudflare
  • WordPress Migration
  • WordPress Security
  • Advanced Custom Fields Plugin
Muhammad S.

Karachi, Pakistan

$25/hr
5.0
87 jobs

๐Ÿ” Helping Startups & Enterprises Eliminate Critical Security Risksโ€”Before Hackers Exploit Them Iโ€™m a Certified Penetration Tester with 7+ years of offensive security experience. I specialize in securing web apps, mobile apps, APIs, and cloud infrastructure to help you prevent breaches, stay compliant, and protect your users. ๐Ÿงฐ My Security Expertise: Web App Pentesting โ€“ OWASP Top 10, SQLi, XSS, CSRF, SSRF, logic flaws Mobile App Security โ€“ iOS/Android reverse engineering, insecure storage, API exposures API & Cloud Security โ€“ REST, SOAP, GraphQL; AWS/Azure/GCP misconfigurations Manual Testing & Reporting โ€“ Clear, developer-friendly bug reports (JIRA, Trello, Agile teams) ๐Ÿ† Success Stories: โš ๏ธ Identified 50+ critical vulnerabilities in a fintech app, preventing a $500K breach ๐Ÿ”’ Secured 100+ applications used by 500K+ users, reducing risk by 80% post-audit ๐Ÿ“„ Delivered 100+ penetration testing reports with prioritized, actionable fixes ๐Ÿ“œ Certifications: ๐Ÿ›ก๏ธ OSCP โ€“ Offensive Security Certified Professional ๐Ÿ•ต๏ธ CEH โ€“ Certified Ethical Hacker ๐Ÿ” CompTIA Security+ ๐Ÿ’ก Why Clients Choose Me: โœ… Actionable Reporting โ€“ Prioritized issues + clear developer guidance โšก Fast Turnaround โ€“ Critical bugs reported within 24 hours ๐Ÿ›ก๏ธ Confidential & Compliant โ€“ Full NDA, encrypted communications, secure tool usage ๐ŸŒ Trusted by โ€“ YC-backed startups, Fortune 500s, global security firms ๐Ÿš€ Ready to Secure Your App? Click โ€œInvite to Jobโ€ and get: โœ… A free 15-min consultation โœ… A sample penetration testing report โœ… Critical issues reported in just 24 hours

  • Internet Security
  • Cloud Security
  • Vulnerability Assessment
  • Penetration Testing
  • Security Analysis
  • Security Engineering
  • Security Assessment & Testing
  • Information Security Audit
  • NIST Cybersecurity Framework
  • Web App Penetration Testing
  • Network Penetration Testing
  • Red Team Assessment
  • Cybersecurity Monitoring
  • Certified Information Systems Security Professional
  • Security Testing
  • AI Security
  • Security Policies & Procedures Documentation
  • Blockchain Security
  • Information Security Consultation
  • Information Security
Joan C.

Calafell, Spain

$65/hr
5.0
149 jobs

Has your Linux server crashed? Or with CPU spikes? Or under DDoS attacks? I've been solving system crises 24/7 for over 25 years. Linux server/VPS management, performance, monitoring, and hardening; DDoS mitigation with ModSecurity and CSF firewall protection; email deliverability. #4 contributor worldwide on Spamhaus Threat Intelligence (100K+ threat monthly reports) and AbuseIPDB (1000K+ reports since 2025) - I identify cyber threats before they hit your servers, and I maintain real-time threat intelligence for global networks. #1 developer ranking on Stack Overflow Spanish (16K+ reputation) in 2022 with solutions trusted by thousands of developers. Skills: Linux Sysadmin, WHM/CPanel, HestiaCP, VestaCP, LAMP, LEMP, Varnish, Cloudflare, WordPress protection, hosting, PHP, MySQL, malware, webmaster, Apache, Exim, ModSecurity, CSF Firewall, networking, and security. Problems Solver and so on... My clients networks: OVH, Digital Ocean, Bluehost, Interserver, AWS, Linode, Google Cloud, GoDaddy, Hetzner, Hostinger, Contabo, Azure Microsoft, NetCup, NameCheap, AsmallOrange, BudgetVM, Comvive, DotBlock, FastHost, HostRocket, Liquidweb, and a long so on. Long experience. Since 1993 I've been working with computers for companies like IBM (12 years).

  • Internet Security
  • Website Security
  • Linux System Administration
  • LAMP Stack
  • LAMP Administration
  • LEMP Stack
  • Web Hosting
  • Cloudflare
  • WordPress Security
  • System Security
  • Network Security
  • Email Deliverability
  • DNS
  • PHP
  • cPanel
  • Email Security
  • Twitter/X Bootstrap
  • Bash Programming
  • System Administration
  • Web Service
Rush M.

Dinapur, Bangladesh

$10/hr
4.8
102 jobs

I will remove WordPress website malware and fix all errors. And advanced malware removal from hacked WordPress websites and install security, firewall setup If your full server or web site got hacked & affected by malware and Blacklisted? Dont Worry. You have come to the right place. I'm a professional Malware Removal Expert and fixed the malware problem on countless hacked websites. I have removed malware from Namecheap, Bluehost, HostGator, Godaddy, Siteground, Hostinger, WP Engine, Cloudways, OVH, etc Hosting server companies. I can remove malware from any kind of site including WordPress, Drupal, Joomla, Magento, Prestashop, Shopify, etc. I can also remove Web shells, remove all malware, rootkits, viruses, spyware, and adware from your server and all sites and databases. I aim to provide the best service to you by removing malware from your website or full server. Service Includes: 1. Backup site files and database 2. Deep malware Scan of all Files 3. Manually remove malware from Full Server or Cpanel 4. Hosting suspension removal 5. Fix redirecting issues 6. Blacklist removal (Google, Norton, McAfee, etc) 7. Google Japanese spam link removal 8. Fix google ads disapproving of malicious software 9. Plugins update 10. Fix website errors 11. SSL Installation 12. Any issue or bug Fixed. What you'll get; 1. Professional malware removal service without losing any data. 2. Maximize WordPress site security. 3. Blacklist removal 4. Fix redirecting Issue. 5. Complete backup and recovery. 6. Spam protection. 7. Vulnerability testing. 8. Core file checking. 9. Brute force protection 10. Login failure attempts limit 11. Forgot password attempts limit 12. Failure time limit 13. Page request per minute from one Ip limit 14. SQL Injection protection 15. dzs-videogallery 8.80 XSS HTML injection in inline JavaScript protection 16. XXE: External Entity Expansion protection 17. LFI: Local File Inclusion protection 18. Directory Traversal Protection 19. Malicious File Upload protection. 20. XSS: Cross Site Scripting protection. Why Us? Certified Security experts Dedicated to protecting your WordPress website and data/information. Highly trained professional experience. 24X7 support team. Development and coding knowledge. Message us to get more information. What do you need to get started? We need your Hosting/Cpanel and Wp-admin login information to get started.

  • Internet Security
  • Website Security
  • Search Engine Optimization
  • Elementor
  • Virus Removal
  • Website Optimization
  • PSD to WordPress
  • Shopify
  • WordPress Malware Removal
  • Wordpress Thrive Themes
  • WordPress
  • WordPress Plugin
  • Android App Development
  • Security Analysis

How it works

Post a job for free Post a job

Tell us what you need. Create your own job post or generate one with AI then filter talent matches.

Hire top talent fast

Consult, interview, and hire quickly, so you can meet the freelancers you're excited about.

Collaborate easily

Use Upwork to chat or video call, share files, and track project progress right from the app.

Payment simplified

Manage payments in one place with flexible billing options. Only pay for approved work, hourly or by milestone.

Don't just take our word for it

How do I hire a Internet Security Developer on Upwork?

You can hire a Internet Security Developer on Upwork in four simple steps:

  • Create a job post tailored to your Internet Security Developer project scope. Weโ€™ll walk you through the process step by step.
  • Browse top Internet Security Developer talent on Upwork and invite them to your project.
  • Once the proposals start flowing in, create a shortlist of top Internet Security Developer profiles and interview.
  • Hire the right Internet Security Developer for your project from Upwork, the worldโ€™s largest work marketplace.

At Upwork, we believe talent staffing should be easy.

How much does it cost to hire a Internet Security Developer?

Rates charged by Internet Security Developers on Upwork can vary with a number of factors including experience, location, and market conditions. See hourly rates for in-demand skills on Upwork.

Why hire a Internet Security Developer on Upwork?

As the worldโ€™s work marketplace, we connect highly-skilled freelance Internet Security Developers and businesses and help them build trusted, long-term relationships so they can achieve more together. Let us help you build the dream Internet Security Developer team you need to succeed.

Can I hire a Internet Security Developer within 24 hours on Upwork?

Depending on availability and the quality of your job post, itโ€™s entirely possible to sign up for Upwork and receive Internet Security Developer proposals within 24 hours of posting a job description.