Senior Penetration Tester (Cloud Infrastructure & Edge Routing)
Only freelancers located in the U.S. may apply.U.S. located freelancers only
Apex Vault Inc. (a Delaware C-Corp) is seeking a highly technical penetration tester and cloud security engineer to evaluate our Phase 1 data-routing infrastructure. You will be working directly under the supervision of our acting vCISO and compliance firm. Your objective is to conduct a targeted technical audit and perimeter penetration test. Your final vulnerability report and technical findings will be used by our vCISO to draft our formal Enterprise Security Attestation. The Environment (High-Level): Our architecture utilizes a custom cloud-based proxy layer to intercept web traffic, sanitize data payloads (stripping specific parameters and PII/PHI), and securely route the sanitized events to authorized endpoints. Project Scope & Deliverables: 1. Architecture & Data Filtration Verification Review our custom edge-routing logic and cloud deployment. Key Objective: Technically verify and document that the architecture successfully intercepts and drops specific, targeted URL parameters and IP addresses prior to downstream transmission. Verify the cloud infrastructure utilizes best practices for network isolation, perimeter defense, and encryption at rest/transit. 2. Perimeter Penetration Test / Vulnerability Assessment Perform a targeted vulnerability assessment on the external-facing proxy layer and application endpoints. Check for OWASP Top 10 vulnerabilities, TLS configuration flaws, and ensure internal compute resources are properly shielded from public access. 3. The Deliverable: Technical Vulnerability Report Provide a comprehensive technical report detailing your methodology, findings, severity levels, and specific remediation guidance. Note: You are not required to write the final compliance attestation; you are providing the raw technical validation to our vCISO. Requirements: Proven experience conducting penetration tests on enterprise cloud environments (specifically AWS). Deep understanding of reverse proxies, edge routing, and web traffic manipulation (e.g., header manipulation, intercepting payloads). Ability to write clean, reproducible technical reports for an executive security team. Note: Specific architectural details, technology stacks, and codebase access will only be provided after the execution of a unilateral NDA and an Upstream Business Associate Agreement (BAA).
- Less than 30 hrs/weekHourly
- 1-3 monthsDuration
- IntermediateExperience Level
$20.00
-
$65.00
Hourly- Remote Job
- Ongoing projectProject Type
Skills and Expertise
Activity on this job
- Proposals:Less than 5
- Last viewed by client:4 weeks ago
- Hires:1
- Interviewing:0
- Invites sent:22
- Unanswered invites:11
About the client
- USADover2:37 PM
- $2.5K total spent2 hires, 2 active
- 16 hours
Explore similar jobs on Upwork
How it works
Create your free profileHighlight your skills and experience, show your portfolio, and set your ideal pay rate.
Work the way you wantApply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
Get paid securelyFrom contract to payment, we help you work safely and get paid securely.
About Upwork
- 4.9/5(Average rating of clients by professionals)
- G2 2021#1 freelance platform
- 49,000+Signed contract every week
- $2.3BFreelancers earned on Upwork in 2020
Find the best freelance jobs
Growing your career is as easy as creating a free profile and finding work like this that fits your skills.
Trusted by