TOP RATED Freelancer | 10+ Years of Experience | Your Trusted Compliance Partner
75+ clients served all with 5 * ratings
They call me "Mr. Compliance"—and for good reason.
While you focus on growing your business, I take care of everything compliance-related, ensuring you meet industry standards and win more deals with confidence. Whether it's SOC 2, ISO 27001, HIPAA, PCI DSS, CMMC, or FedRAMP, I make compliance effortless so you can unlock new opportunities without the hassle.
Why Clients Trust Me:
- Seamless Compliance: I simplify audits, security assessments, and certifications—no stress, no delays.
- Growth-Driven Compliance: Compliance isn’t just a checkbox; it’s a competitive advantage. I help shorten sales cycles by getting you audit-ready fast.
- End-to-End Support: From policies to risk assessments, vendor due diligence, and security questionnaires—I handle it all.
- vCISO Services: Need expert guidance but not ready for a full-time CISO? I offer affordable virtual CISO (vCISO) solutions tailored to your business.
- Security Strategy & TPRM: Managing third-party risks? Struggling with cloud or endpoint security? I’ve got you covered.
- Maximizing Compliance Tools: Already using Vanta, Drata, Hyperproof, or Scrut but unsure what’s next? Let’s optimize your investment.
Proactive, not reactive. I don’t just tick boxes—I future-proof your security and compliance programs.
** Tools & Frameworks:
🔹 Tools Expertise: JIRA, Vanta, Hyperproof, Drata, ServiceNow, AWS, Confluence, Archer, Scrut Automation
🔹 Compliance Frameworks: ISO 27001, SOC 2, FedRAMP, NIST, HIPAA, PCI-DSS, CMMC, TPRM, and more
📢 Ready to Make Compliance Work for You?
Click "Invite" to connect, and let's build a stronger, more secure, and audit-ready business together.
⚠️ Note: If you're not fully committed to compliance or tend to be unresponsive, I may not be the right fit. I prioritize working with businesses serious about security and compliance success.
Mobility Work CMMS
Application Security
Information Security
Risk Assessment
NIST Cybersecurity Framework
Jira
ISO 27001
SOC 2
CMMC
SOC 2 Report
Governance, Risk Management & Compliance
Application Audit
Sarbanes-Oxley Act
NIST SP 800-53
Dmytro K.
Kalush, Ukraine
$50/hr
5.0
3 jobs
Virtual CISO (vCISO) and Information Security Consultation for startups, scale-ups, and enterprise teams operating in regulated environments. 10+ years across Information Security and Information & Communications Technology, with clients certified on the first attempt against ISO 27001, SOC 2, HIPAA, GDPR and ISO 9001.
I turn security from a checkbox into a competitive advantage — practical Information Security programs that pass audits, win enterprise deals, and don't slow down delivery.
Recent outcomes:
- Yalantis (IT services) — ISO 27001 certified on the first attempt, 6 months, zero major non-conformities
- Trader Evolution (fintech / trading platform) — ISO 27001 certified in 5 months
- US EV charging network (automotive / IoT) — SOC 2 Type II passed end-to-end
- EU healthtech product — ISO 27001 surveillance audit passed after major scope expansion (new PII categories, GDPR-aligned)
Core Information Security Consultation services:
- ISO 27001 implementation, readiness, certification, and surveillance audit support
- SOC 2 Type I & SOC 2 Type II readiness, control framework design, and ongoing SOC 2 evidence collection
- HIPAA compliance for healthcare and healthtech — HIPAA Privacy Rule, HIPAA Security Rule, BAAs, and PHI handling
- ISO 9001 alignment — integrating ISO 9001 quality management with ISO 27001 into a unified ISMS, plus ISO 9001 internal audits and management reviews
- GRC program design and execution — risk register, control library, control testing, GRC tooling (Vanta, Drata, OneTrust), and GRC operating model
- Regulatory Compliance roadmaps for SaaS, fintech, healthtech, IoT, and Information & Communications Technology firms
- ISMS development — Statement of Applicability, policies, procedures, and Information Security awareness training
- Risk assessments, gap analysis, MITRE ATT&CK threat modeling, and remediation roadmaps
Vendor risk and third-party Information Security reviews
- SIEM, detection engineering, vulnerability management, and security operations
What I deliver:
- End-to-end Information Security strategy and execution — not just paperwork
- Audit-ready environments across ISO 27001, SOC 2, HIPAA, and ISO 9001
- Practical Regulatory Compliance programs matched to your stage, stack, and risk profile
- Clear, structured roadmaps with measurable milestones
- Hands-on Information Security Consultation without the cost of a full-time CISO
- Ongoing GRC and Regulatory Compliance operations — surveillance audits, recertification, scope changes
Approach:
I combine GRC best practices with hands-on delivery experience in Information & Communications Technology — every control is implemented, measurable, and auditable. I work the way auditors think, so when external assessors arrive your Information Security program already speaks their language. No off-the-shelf templates, no theatre — just practical Regulatory Compliance and Information Security Consultation that holds up under scrutiny.
Industries I serve:
- SaaS, fintech, and trading platforms — ISO 27001 + SOC 2 + Regulatory Compliance
- Healthtech and healthcare — HIPAA + ISO 27001 + GDPR + HIPAA risk assessments and BAA reviews
- Automotive, IoT, and connected products — SOC 2 + ISO 27001 + Regulatory Compliance for cross-border data flows
- Information & Communications Technology services firms — ISO 27001 + ISO 9001 integration, GRC operating model build-out
Best fit:
- SaaS, fintech, healthtech, and Information & Communications Technology companies preparing for SOC 2, ISO 27001, HIPAA, or ISO 9001
- Growing teams needing structured Information Security Consultation, GRC leadership, and - Information Security program ownership
- Organizations needing ongoing vCISO leadership and Regulatory Compliance support without a full-time hire
- Companies integrating ISO 9001 + ISO 27001 into a unified management system
- Product teams expanding scope (new features, new PII categories, new markets) needing Information Security Consultation, GRC re-scoping, and surveillance audit support
- US and EU buyers needing HIPAA, SOC 2, and Information & Communications Technology sector expertise in one engagement
If you're a SaaS, fintech, healthtech, or Information & Communications Technology firm needing Information Security Consultation, let's talk. Share your target audit date or compliance goal, and I'll outline a Regulatory Compliance and Information Security Consultation roadmap on our first call.
Information Security
ISO 27001
Information Security Consultation
ISO 9001
HIPAA
Regulatory Compliance
Information & Communications Technology
SOC 2
IT Compliance Audit
Compliance
Risk Assessment
Penetration Testing
Project Management
Technical Writing
Policy Writing
GDPR
NIST Cybersecurity Framework
OWASP
Vulnerability Assessment
Application Security
Bilal Z.
Lahore, Pakistan
$35/hr
4.7
79 jobs
💪 Top Rated Plus | 🚀 10+ Years of Leadership in Cybersecurity, Goverance, Compliance & Risk Management | 7000+ Hours on Upwork
As a Cybersecurity, Risk, and Compliance Leader, I help organizations build, lead, and scale security management programs that align with global standards - protecting businesses from evolving threats while ensuring compliance and operational excellence.
With 10+ years of proven leadership, I’ve guided global enterprises to achieve, maintain, and mature certifications and frameworks such as SOC2 Type 1, SOC2 Type 2, ISO27001, ISO27701, ISO42001 (AI Management System), NIST CSF 2.0, CMMC Level 1, CMMC Level 2, CMMI, FISMA, FedRAMP, GDPR, PDPL, SAMA, PCI-DSS, and HIPAA.
🔐 Leadership & Technical Expertise
📊 Governance, Risk & Compliance (GRC):
Driving end-to-end enterprise compliance programs across SOC2 Type 1, SOC2 Type 2, ISO27001, ISO27701, ISO42001 (AI Management System), NIST CSF 2.0, CMMC Level 1, CMMC Level 2, CMMI, FISMA, FedRAMP, GDPR, PDPL, SAMA, PCI-DSS, and HIPAA.
🧩 CMMI & ISO42001 Implementation:
Establishing maturity models and AI governance frameworks to enhance organizational process efficiency and responsible AI compliance.
📝 Policy & Framework Development:
Designing and implementing enterprise-grade security policies, standards, and procedures covering access control, risk management, vendor due diligence, data protection, and incident response.
👨💼 vCISO Leadership:
Providing Virtual CISO services for executive-level direction, audit readiness, and strategic oversight aligned with board governance.
☁️ Cloud, Endpoint & AI Security:
Delivering MDM, MAM, and endpoint security strategies that ensure secure digital transformation across Microsoft 365, Google Workspace, AWS, and Azure.
📡 Advanced Security Operations:
Overseeing SIEM design, configuration, and monitoring (Splunk, QRadar, Exabeam) to enhance detection and response maturity.
⚙️ Compliance Automation:
Leveraging modern platforms like Drata, Vanta, TrustCloud, Scrut Automation, and JIRA to simplify control mapping, streamline evidence collection, and accelerate audits.
🚀 Impact as a Cybersecurity & Compliance Leader
✔️ Guided multiple organizations from 0% to 100% compliance readiness for SOC2 Type 1, SOC2 Type 2, ISO27001, ISO27701, ISO42001 (AI Management System), NIST CSF 2.0, CMMC Level 1, CMMC Level 2, CMMI, FISMA, FedRAMP, GDPR, PDPL, SAMA, PCI-DSS, and HIPAA.
✔️ Reduced audit fatigue and compliance complexity through automated workflows and risk-based prioritization.
✔️ Built scalable and sustainable cybersecurity programs that improve resilience, maturity, and business continuity.
✔️ Delivered strategic security governance that balances compliance, innovation, and operational efficiency.
🧠 Core Skill Set
Information Security Governance & Risk Management
SOC2 Type 1 / SOC2 Type 2 / ISO27001 / ISO27701 / ISO42001 Implementation
CMMC, CMMI, FedRAMP, and HIPAA Compliance Readiness
NIST CSF 2.0, NIST 800-53, and Privacy Framework Alignment
Policy, Procedure & Control Development
Third-Party Risk & Vendor Management
SIEM, MDM, MAM, DLP, and Endpoint Security
Security Awareness, Training, and Phishing Simulations
Compliance Automation (Drata, Vanta, TrustCloud, Scrut, JIRA)
Gap Assessments, Internal Audits, and Remediation Planning
📩 Let’s Work Together
If your business needs a proven Cybersecurity & Compliance Leader to build a governance program, achieve certifications, or deliver vCISO guidance, let’s connect.
My mission is to help your organization stay secure , compliant , and resilient - while driving continuous improvement and operational maturity.
Information Security Consultation
Cybersecurity Management
Penetration Testing
Risk Assessment
GDPR
ISO 27001
NIST SP 800-53
Governance, Risk Management & Compliance
HIPAA
SOC 2 Report
CMMC
Gap Analysis
Certified Information Security Manager
Privacy Impact Assessment
SOC 2
Karim K.
Islamabad, Pakistan
$6/hr
5.0
6 jobs
I help healthcare providers, clinics, group practices, mental health professionals, and medical organizations improve reimbursements, reduce denials, and stabilize revenue cycle operations.
With 7+ years of experience in US healthcare administration, I specialize in Medical Billing, Revenue Cycle Management (RCM), Provider Credentialing, Accounts Receivable (AR) Recovery, Denial Management, Insurance Verification, and Payment Reconciliation.
My focus is not just claim submission, it is building clean, financially efficient billing workflows that improve cash flow and reduce reimbursement delays.
Core Services:
✔ Medical Billing & Coding
✔ Revenue Cycle Management (RCM)
✔ Accounts Receivable (AR) Follow-Up
✔ Denial Management & Appeals
✔ Provider Credentialing & Enrollment
✔ Medicare & Medicaid Enrollment
✔ Insurance Eligibility & Verification
✔ Claim Scrubbing & Submission
✔ ERA / EFT / ACH Setup
✔ Payment Posting & Reconciliation
✔ Clearinghouse Management
✔ Prior Authorization Support
✔ Fee Schedule Review
✔ Billing Workflow Optimization
I have hands-on experience with multiple EHR/EMR and billing systems including:
• AdvancedMD
• Athenahealth
• Office Ally
• Tebra/Kareo
• TherapyNotes
• eClinicalWorks
• SimplePractice
• NextGen
• Qualifacts
• Insync
I work with:
→ Mental Health Practices
→ Physical Therapy Clinics
→ Behavioral Health Providers
→ Primary Care Providers
→ Internal Medicine
→ Cardiology
→ Chiropractic Clinics
→ Urgent Care Centers
→ Multi-Specialty Practices
My approach combines HIPAA-compliant operations, payer communication expertise, denial reduction strategies, and AR recovery systems designed to improve reimbursement performance.
If your practice is experiencing:
► Increasing AR aging
► Delayed reimbursements
► Credentialing bottlenecks
► High denial rates
► payment inconsistencies
I can help identify workflow gaps and implement practical billing solutions that improve operational efficiency and collections.
Reliable communication, accuracy, and long-term support are central to how I work with clients.
Medical Billing
Medical Billing & Coding
Medical Mastermind Medical Billing Services
Medical Condition Coding
Medical Report
Medical Procedure Coding
Revenue Cycle Management
ICD Coding
Insurance Claim Submission
Payment Processing
Electronic Health Record
Insurance Verification
Customer Service
Cognitive Behavioral Therapy
Mental Health
Mujahid R.
Kohat, Pakistan
$9/hr
5.0
47 jobs
If your claims keep getting denied, your AR is aging past 90 days, or your providers are still waiting on insruance credentialing and enrollment, you are losing revenue that is already yours. I recover it. I do not just submit claims and move on. I build systems, document workflows, train staff where needed, and stay accountable with regular reporting.
I am Mujahid, a Top Rated Medical Billing and Credentialing Specialist with 7+ years of hands-on US healthcare RCM experience. My setup is fully HIPAA-compliant, I work US business hours, and I bring end-to-end ownership to every engagement: from eligibility verification and prior auth all the way through denial appeals, payer enrollment, EMR configuration, and monthly KPI reporting.
My clients have increased revenue by up to 30% after optimizing their billing workflows with me. On average, I bring denial rates below 3%, clean claim rates above 98%, and Days in AR into the 18 to 34 day range.
I follow CMS and commercial payer guidelines closely, apply NCCI edits correctly, and use the right CPT, HCPCS, ICD, modifier, add-on, drug administration codes, and MUEs to ensure every claim is clean and payable on first submission.
I am currently co-developing an EHR system as the healthcare domain expert, which means I understand how billing, clinical workflow, and technology connect at a level most billers do not.
Medical Billing and Coding
CPT, ICD-10, HCPCS, and modifier accuracy with claim scrubbing before submission
Eligibility verification and benefits checks
Prior authorization and referral coordination
Telehealth billing: POS 02/10, modifier 95 and GT
NCCI edits, MUE compliance, and bundling rules
Complex denial management: root-cause analysis, trend identification, and appeals including peer-to-peer review support
AR management by aging buckets: 0 to 30, 31 to 60, 61 to 90, and 90 to 120+ days
Credentialing and Provider Enrollment
Individual and group enrollment: Medicare, Medicaid, Tricare, and all major commercial payers
CAQH registration, attestation, and ongoing maintenance
NPPES/NPI setup and updates
Primary Source Verification (PSV) and recredentialing
License and malpractice expiration tracking and renewal coordination
ERA/EFT/ACH enrollment and bank/PMS linking
Clearinghouse setup and configuration: Change Healthcare, Waystar, ClaimMD, Trizetto, Availity, and others
EHR and EMR Setup and Optimization
Full EMR configuration: payer setup, fee schedules, CPT/ICD/modifier entry, and encounter templates
Clearinghouse EDI setup and ERA linking
Workflow automation for claims submission, remittance posting, and daily operations
Front Desk and Pre-Authorization Support
Verification of Benefits (VOB) and eligibility checks
Prior authorization and referral coordination
Patient statements, invoicing, and follow-up communication
Practice Financials and Reporting
Weekly and monthly KPI dashboards: denial rate, clean claim rate, days in AR, adjustments, and payment reconciliation
Fee schedule review and payer rate negotiation support
Cash flow improvement planning
HIPAA and payer compliance checks
SOP documentation for all RCM workflows
Project and task management via ClickUp, Monday, Trello, or Asana
EMR and EHR Platforms I Work In:
eClinicalWorks (eCW), DrChrono, ModMed, Tebra/Kareo, CollaborateMD, Athena Health, AdvancedMD, SimplePractice, TherapyNotes, Insync/Qualifacts, OfficeAlly, Apollo, EmpowerEMR, KanTime, SessionHealth, Lauris Online, and several others. If your system is not listed, ask me directly.
Specialties I Serve:
Urgent Care, Emergency Medicine, Primary Care, Mental Health and Physical Therapy, Dermatology, Birthcenter, Plastic Surgeon, Cardiology, Pain Management, Pediatrics, Wound Care and Grafting, Nurse Practitioners, and more. I have billed for both outpatient practices and hospital settings, which gives me a broader understanding of payer behavior across care settings.
Why clients keep working with me:
I do not just submit claims and move on. I build systems, document workflows, train staff where needed, and stay accountable with regular reporting. My remote setup is HIPAA-compliant, my communication is clear, and my turnaround times are fast. I treat every practice's revenue as if it is my own problem to solve, because that is what gets results.
Let's connect over Zoom or Google Meet to talk through your specific situation and figure out where to start.
Medical Billing
Medical Billing & Coding
Insurance Verification
Insurance Claim Submission
EMR Data Entry
Revenue Cycle Management
Medical Records
Medical Terminology
Medical Mastermind Medical Billing Services
HIPAA
Electronic Medical Record
Insurance Consulting
Electronic Health Record
Virtual Assistance
Appointment Scheduling
Abid N.
Gilgit, Pakistan
$10/hr
5.0
25 jobs
Medical Billing & RCM Specialist | Mental Health, PT, ST, OT | 6+ Yrs | Top 3%
Stop losing revenue to denials and delayed claims, I help healthcare providers get paid faster with accurate, HIPAA-compliant Medical Billing, RCM, and Credentialing services.
With over 6+ years of hands-on experience supporting clinics, facilities, and individual providers, especially in mental health, allied specialties, and physical therapy. We streamline billing workflows, reduce claim denials, recover unpaid claims, and maximize revenue.
🔹 Services I Offer
🔹 Medical Billing & RCM:
Medical Billing & Coding (ICD-10, CPT, HCPCS)
Verification of Benefits (VOBs)
Claims Submission & Rejection Resolution
Accounts Receivable (AR) Follow-Up & Unpaid Claims Recovery
Denial Management & Appeals
Aging Report Analysis
Prior & Retro Authorizations
Patient Billing & Customer Service
QuickBooks Bookkeeping, Payroll, and Reconciliation
🔹 Credentialing Services:
New Practice Setup / Enrollment / EIN Linkage
CAQH, NPPES/NPI Profile Creation & Maintenance
Credentialing, Contracting & Payer Enrollment
Demographic Updates & Address Changes
ERA, EDI & EFT Enrollment
🔹 Software & Portal Expertise
SimplePractice, Athenahealth, eClinicalWorks, NextGen, AdvancedMD, Kareo/Tebra, Practice Fusion, Office Ally, TherapyNotes, and Prompt EMR, RXNT, WebPT, ChiroHD, RapidPM, ModMed (Modernizing Medicine – EMA), CareCloud, TheraNest, ICANotes, ChARM EHR
Clearinghouse, and payment portals such as Availity, Change Healthcare, Waystar, Optum/Provider Express, Navinet, Passport (Experian Health), Claim.MD, UnitedHealthcare, Aetna, Cigna, Humana, Blue Cross Blue Shield portals, Medicare and Medicaid MAC portals, PaySpan, ECHO Health, and Zelis.
🔹 Provider Specialties I Support
Mental Health & Substance Abuse
Psychological & Neuropsych Testing
Physical, Occupational & Speech Therapy
Chiropractic & Acupuncture
Surgical Services
DME & Dental / Sleep Apnea Treatment
Non-Emergency Medical Transportation (NEMT)
Allergy Testing & Immunotherapy
Housing Coordinators
Laboratory services
Home Health Personal Care and Medical services
Inpatient and Outpatient Hospital Services
🔹 Insurance & Payer Expertise
Government: Medicare, Medicaid, TRICARE
Private: HMO, PPO, IPA Plans
Major Payers: UnitedHealthcare (UHC), Optum, BCBS, Aetna, Cigna, Humana, Anthem, Regence, Providence, Medicare Advantage, Medicaid MCOs, Empire, and more
Why Hire me?
I provide end-to-end billing, RCM, and credentialing solutions tailored to your practice. From cleaning up AR and recovering unpaid claims to setting up new providers and ensuring payer compliance, we deliver measurable results and transparent reporting every step of the way.
📩 Let’s connect!
If you’re looking for a detail-oriented, reliable professionals to manage your medical billing, RCM, or credentialing I can help your practice get paid faster and grow efficiently.
Looking forward to contributing to your succes
Professionally,
Abid N
Medical Billing
Revenue Cycle Management
Accounts Receivable
Mental Health
Medical Billing & Coding
Insurance Verification
Insurance Claim Submission
ICD Coding
HIPAA
Preauthorization
Electronic Health Record
Virtual Assistance
Data Entry
EMR Data Entry
Administrative Support
Customer Service
Microsoft Excel
Email Support
Scheduling
eClinicalWorks
How it works
Post a job for freePost a job
Tell us what you need. Create your own job post or generate one with AI then filter talent matches.
Hire top talent fast
Consult, interview, and hire quickly, so you can meet the freelancers you're excited about.
Collaborate easily
Use Upwork to chat or video call, share files, and track project progress right from the app.
Payment simplified
Manage payments in one place with flexible billing options. Only pay for approved work, hourly or by milestone.
Don't just take our word for it
“Upwork provides an umbrella-level of security. I can see a talent’s work history and ratings. I can hold payments in escrow. I can communicate through Upwork Messages instead of working through my email address.”
KD
Kim Darling
Emerald Tiger
“Upwork is the best platform to hire skilled professionals when we're not looking for a full-time employee. All the companies in our portfolio use Upwork to find talent across a wide range of fields.”
DM
David Merry
Kinetic Investments
“Our very specific requirements can be a challenge—With Upwork, we’re able to access a bigger community to ensure the success of our projects.”
KK
Katja Krohn
Summa Linguae
How do I hire a Mobility Work CMMS Specialist on Upwork?
You can hire a Mobility Work CMMS Specialist on Upwork in four simple steps:
Create a job post tailored to your Mobility Work CMMS Specialist project scope. We’ll walk you through the process step by step.
Browse top Mobility Work CMMS Specialist talent on Upwork and invite them to your project.
Once the proposals start flowing in, create a shortlist of top Mobility Work CMMS Specialist profiles and interview.
Hire the right Mobility Work CMMS Specialist for your project from Upwork, the world’s largest work marketplace.
At Upwork, we believe talent staffing should be easy.
How much does it cost to hire a Mobility Work CMMS Specialist?
Rates charged by Mobility Work CMMS Specialists on Upwork can vary with a number of factors including experience, location, and market conditions. See hourly rates for in-demand skills on Upwork.
Why hire a Mobility Work CMMS Specialist on Upwork?
As the world’s work marketplace, we connect highly-skilled freelance Mobility Work CMMS Specialists and businesses and help them build trusted, long-term relationships so they can achieve more together. Let us help you build the dream Mobility Work CMMS Specialist team you need to succeed.
Can I hire a Mobility Work CMMS Specialist within 24 hours on Upwork?
Depending on availability and the quality of your job post, it’s entirely possible to sign up for Upwork and receive Mobility Work CMMS Specialist proposals within 24 hours of posting a job description.