- Hourly: $100.00 - $100.00
- Expert
- Est. time: Less than 1 month, Less than 30 hrs/week
We are seeking an expert, hands-on Corporate Trainer to deliver a highly interactive, advanced online training course on Open Source Intelligence (OSINT). The curriculum closely follows an advanced framework designed to take security professionals, analysts, and investigators to the next level of public data harvesting, analysis, and threat intelligence. This is a remote, online, live instructor-led engagement. The ideal candidate isn't just an academic; you are a practitioner who knows how to navigate real-world investigative constraints, maintain strict operational security (OPSEC), and teach others how to transform raw big data into highly actionable intelligence reports. Key Responsibilities: Deliver 21 hours of live, interactive online training (split across logical multi-day sessions). Facilitate hands-on lab exercises, guiding participants through tool configuration, data mining, and live simulations. Clearly explain the balance between technical execution and the strategic "Intelligence Cycle" framework. Core Modules to Cover: Environment Setup & OPSEC: Configuring advanced toolkits, obfuscating activities, using proxies, and protecting identity while researching third parties. Deep Data Mining: Legitimate scraping practices, big data analysis, and securely/safely mining the Dark Web. AI Integration: Utilizing artificial intelligence tools for predictive analysis, facial recognition, and sentiment analysis. Targeting & Profiling: Advanced strategies for mapping out corporate structures/hierarchies, investigating individuals, and tracking consequential actors (threat assessment/criminal profiling). Financial Investigations: OSINT techniques for tracking money, black markets, credit card transactions, and cryptocurrency ledger tracking. Required Qualifications & Experience: Proven Training Experience: Must have a strong track record of delivering technical training to professional corporate, law enforcement, or cybersecurity audiences. Deep Technical Domain Expertise: Exhaustive familiarity with modern OSINT toolkits, advanced scraping methodologies, crypto-tracking tools, and Dark Web navigation. Engaging Delivery Style: Ability to avoid "death by PowerPoint." We require someone who leads via interactive discussions, live-lab troubleshooting, and highly practical exercises. Professionalism: High standards for corporate compliance, ethical data boundaries, and clear communication. Course Format: Type: Live, instructor-led online training. Duration: 21 total hours of instructional time. Audience: Security analysts, corporate researchers, and investigators.
- Hourly: $50.00 - $150.00
- Expert
- Est. time: More than 6 months, 30+ hrs/week
We are a fast-growing technology advisory firm that helps mid-sized companies evaluate and select the best IT vendors for projects like: • Cloud infrastructure • Backup & disaster recovery • Cybersecurity • Network / SD-WAN • VoIP / UCaaS • Data center / colocation We do not deliver the services ourselves. We act as the client’s technical advisor and procurement concierge, helping them understand their requirements and selecting the best vendors. We are looking for a Solutions Architect / Technical Consultant who can lead technical discovery with clients. Your role will be to run requirements calls, diagnose technical needs, and translate those requirements into clear vendor specifications. This is not a support role and not an MSP job. This is a pre-sales technical advisor role. Responsibilities • Run technical discovery calls with clients • Identify infrastructure gaps and project needs • Translate requirements into vendor specifications • Recommend vendor categories and architectures • Assist in vendor evaluation and technical comparisons • Document findings and scope clearly You may have worked as: • Solutions Architect • Senior Systems Engineer • Pre-Sales Engineer • Cloud Architect • Network Architect • Technical Consultant Experience with several of the following is important: • Cloud platforms (AWS / Azure) • Networking / SD-WAN • Cybersecurity tools • Backup / disaster recovery • VoIP / UCaaS • Infrastructure architecture You must be able to: • Ask great technical questions • Quickly understand complex environments • Communicate clearly with non-technical executives • Strong spoken English is required. • You should be comfortable speaking with CIOs and IT Directors. Engagement • Part-time to start • 5–10 hours per week • Discovery calls scheduled in advance This role will likely grow into a long-term partnership. To apply Please send a Loom video answering the following: 1. A short description of your technical background 2. Your experience in client-facing technical roles 3. A brief example of a technical discovery call you have led
- Hourly
- Intermediate
- Est. time: 1 to 3 months, Less than 30 hrs/week
verview We're an early-stage SaaS company building tools for technical accounting workflows; our product handles sensitive client financial data. We're audit-ready (or nearly so) and need a licensed CPA firm to perform a SOC 2 Type 1 examination and issue the report. What we need: - Perform a SOC 2 Type 1 examination over the Security criterion at minimum (advise if Availability/Confidentiality should be included) - Evaluate the design of our controls as of a point in time against the AICPA Trust Services Criteria Issue the SOC 2 Type 1 report - Provide a clear list of evidence and documentation you'll require from us up front You must be / have: - A CPA firm licensed to issue SOC 2 attestation reports, with a current AICPA peer review - A track record of SOC 2 Type 1 (and Type 2) examinations, ideally for cloud-native startups - Independence from our control design/implementation (you audit; you don't build) Please include in your proposal: - Firm name, license/jurisdiction, and confirmation of current peer review - Fixed fee for a Type 1 examination and report - Typical timeline from kickoff to issued report - The evidence/documentation list you'd need from us
- Fixed price
- Expert
- Est. budget: $450.00
We are a new logistics company building our website, and we are looking for a Website Security & Compliance Specialist to partner with our internal team. Our designer (Toni) is handling all layout, pages, and visual development — your role focuses strictly on the security, access control, and compliance‑sensitive portions of the site. What we need: We need someone who can review the site structure, secure employee‑only pages, configure protected document access, secure multiple reporting forms, and ensure the website meets the data‑protection expectations required for Amazon DSP compliance. You will collaborate with our designer as needed, but you will not be responsible for design or page creation. Deliverables include: Secure access controls for employee‑only pages Protected employee handbook download Anonymous reporting form security Urgent reporting workflow security Secure form configuration + email routing Google Workspace integration General website security hardening Compliance review + risk assessment Skills required: Information Security, IT Compliance, Secure Form Configuration, Access Control, Authentication Systems, Google Workspace Integration, and Website Security Hardening. How we work: We communicate clearly, respond quickly, and keep responsibilities separated. Toni will lead the full website build, and you will focus on the backend security and compliance requirements. We value transparency, collaboration, and professionals who can explain what they need in order to complete their part of the project. What we’re looking for: Someone experienced, reliable, and comfortable partnering with another professional. This is a focused, security‑driven role — perfect for someone who specializes in compliance workflows and secure website infrastructure.
- Hourly
- Expert
- Est. time: 1 to 3 months, Not sure
Nave Security is seeking a mid-to-senior level Medical Device Penetration Tester for an upcoming on-site assessment engagement. The selected contractor will conduct hands-on security testing of a medical devices and produce findings documentation in support of the client's security program. Travel may be required based on project needs. Responsibilities - Conduct hands-on penetration testing of medical device hardware, software, and supporting infrastructure - Perform network, wireless, and application-layer testing relevant to the device ecosystem - Assess communication interfaces (USB, Bluetooth, Wi-Fi, serial, proprietary protocols) for vulnerabilities - Review device firmware and software components for security weaknesses - Document findings with clear technical detail, risk ratings, and remediation guidance - Contribute to or produce a formal penetration test report suitable for client delivery Requirements - Located in the United States (required) - Ability to travel to if needed for on-site assessment work - 3+ years of hands-on penetration testing experience, with demonstrated medical device or embedded systems work - Familiarity with FDA cybersecurity guidance and premarket submission expectations - Experience testing medical device interfaces, DICOM/HL7 protocols, PACS systems, embedded Linux/RTOS environments, or healthcare network infrastructure Preferred Qualifications - Relevant penetration testing certifications - Experience with IEC 62443, IEC 81001-5-1, and FDA Premarket and Postmarket Cybersecurity Guidance - Prior work supporting FDA De Novo, 510(k) or PMA submissions - Familiarity with SBOM analysis and vulnerability management for medical devices - Background in biomedical engineering, healthcare IT, or clinical environments
- Hourly: $25.00 - $50.00
- Intermediate
- Est. time: 1 to 3 months, Hours to be determined
We are seeking an experienced MSP engineer or technical consultant to support the integration of newly acquired managed service providers into our operating environment. This is a project-based contract role with engagements typically lasting 60 to 90 days. Successful candidates may be invited to participate in future acquisition integration projects on an ongoing basis. About the Role Your primary responsibility will be to review, validate, and standardize technical documentation from acquired MSPs and client environments. You will work closely with our internal Integration and Service Operations teams to bring documentation, asset records, network diagrams, vendor information, and operational procedures into alignment with our standards. This role is ideal for a former MSP Systems Administrator, Senior Engineer, Service Manager, or Technical Consultant who enjoys discovery, documentation, and process improvement. Responsibilities • Review existing MSP documentation for completeness and accuracy • Conduct interviews with technical staff and key stakeholders to gather missing information • Audit Microsoft 365, Azure, networking, security, backup, and endpoint management environments • Update and standardize documentation according to established SOPs and templates • Create or update network diagrams, asset inventories, vendor records, credential records, and support procedures • Identify documentation gaps, technical debt, and operational risks • Produce final documentation packages and handoff materials for operational teams • Participate in integration meetings and status updates as needed Required Experience • 2+ years working within a Managed Service Provider (MSP) • Strong understanding of Microsoft 365 and Azure environments • Experience documenting networks, systems, and operational procedures • Ability to work independently with minimal supervision • Strong written communication and organizational skills Preferred Experience • ITGlue, Liongard, ConnectWise Manage, Autotask, Datto RMM and similar platforms • MSP acquisition or integration experience • Network infrastructure documentation • Cybersecurity, data backup, and compliance documentation • Multi-site client environments Engagement Details • Contract / project-based • Typical engagements range from 60 to 90 days • Flexible hours • Remote work • U.S.-based preferred, but highly qualified international candidates will be considered • Potential for recurring opportunities throughout the year Please provide: - Summary of your MSP experience - Documentation platforms you have used (IT Glue, Hudu, etc.) - Examples of documentation projects you have completed - Experience supporting MSP mergers, acquisitions, or large clients
- Hourly
- Expert
- Est. time: Less than 1 month, Less than 30 hrs/week
We're a cybersecurity compliance consultancy seeking an experienced Microsoft 365 engineer for a fixed-scope, project-based engagement on behalf of one of our clients — a newly launched solo Registered Investment Advisor regulated by the Texas State Securities Board. The client has an existing Microsoft 365 Business Premium tenant that needs to be hardened and made compliant before they begin operating. Scope includes: securing identity with Entra ID and MFA (conditional access, admin protections); configuring 5-year WORM archiving in Microsoft Purview to satisfy Texas SSB books-and-records requirements; building Data Loss Prevention policies tuned to protect Nonpublic Personal Information (NPI); and integrating a third-party cloud backup solution. We're looking specifically for someone who has built compliant M365 environments for financial or regulated firms before — please share relevant examples of similar work in your proposal. Clear documentation of the final configuration is expected as part of the deliverable.