You will get comprehensive ISO 27001 ISMS audit prep and full certification support

Project details
As a CISA ,ISO 27001 LA and AWS Cloud Architect, I provide end-to-end ISO 27001 compliance services that transform your security posture. ISO 27001 is the global benchmark for an Information Security Management System (ISMS). I don't just provide a checklist—I architect the system, draft the mandatory policies, and map your technical controls to Annex A.
My approach includes defining your ISMS scope, conducting a formal risk assessment, and guiding you through the implementation of rigorous controls. I provide full support for your journey toward formal certification, ensuring your ISMS documentation and evidence library meet the exact standards demanded by accredited certification bodies, allowing you to achieve certification with zero non-conformities.
My approach includes defining your ISMS scope, conducting a formal risk assessment, and guiding you through the implementation of rigorous controls. I provide full support for your journey toward formal certification, ensuring your ISMS documentation and evidence library meet the exact standards demanded by accredited certification bodies, allowing you to achieve certification with zero non-conformities.
Technology Type
Firewall, IaaS, Computer Network, Data Center, Database, Operating System, SaaS, Web Application, CRM, Email System, ERP, Mobile Device, PaaSCybersecurity Regulation
ISOWhat's included
| Service Tiers |
Starter
$250
|
Standard
$700
|
Advanced
$3,000
|
|---|---|---|---|
| Delivery Time | 5 days | 15 days | 29 days |
Small Company Size | |||
Medium Company Size | |||
Large Company Size |
Frequently asked questions
91 reviews
(81)
(7)
(3)
(0)
(0)
This project doesn't have any reviews.
AD
Agile D.
Jun 23, 2026
AWS infrastructure set up for Olam Agri project
DM
Daniel M.
Apr 1, 2026
Server Maintenance/Updates
This IT Admin was really great to us. Very professional and helpful. I would highly recommend him to anyone looking for good service. Thanks again.
MU
Michael U.
Jan 30, 2026
Set up Managed Dify (via Elestio on Hetzner) + Subdomain/Cloudflare + Guide Me on First AI Agent
Nice working with Sahil
DK
Deependra K.
Jan 12, 2026
AWS CI/CD with Jenkins
DL
David L.
Nov 20, 2025
Interview with experienced Datadog users (DevOps / SRE / Platform Engineers)
About Sahil
AWS Solutions Architect | Cloud DevSecOps | Security & Compliance
88%
Job Success
Noida, India - 6:42 am local time
🎖 AWS Certified Solutions Architect – Associate
🎖 CISA Certified Information Security Expert
🎖 16+ Years in Cloud Security, Compliance & AI-Driven Automation
💡 Track Record:
✅ 6,900+ Hours on Upwork
✅ 200+ Successfully Delivered Projects
✅ Top Rated Plus Freelancer
When businesses need to secure their cloud infrastructure, pass a compliance audit, or build AI-powered DevSecOps pipelines — they come to me.
I'm a CISA-certified Cloud Security and Compliance Expert with 16+ years of experience helping startups, enterprises, and regulated industries build systems that are secure, audit-ready, and future-proof. What sets me apart today is my ability to combine deep compliance and security expertise with modern AI capabilities — including Agentic AI workflows, prompt engineering, and intelligent automation — to deliver faster results with fewer manual bottlenecks.
Over 200+ projects and 6,500+ hours on Upwork, I've helped organizations across the US, Europe, and Middle East strengthen their security posture, achieve certifications, and ship secure products without slowing down their engineering teams.
🤖 AI & Intelligent Automation Skills (New & In-Demand)
✅ Agentic AI Development
— Design and deploy autonomous AI agents for compliance monitoring, security alerting, and audit evidence collection using LangChain, AutoGen, and CrewAI frameworks
✅ Prompt Engineering
— Craft production-grade prompts for security analysis, policy generation, risk assessment automation, and compliance documentation using GPT-4, Claude, and open-source LLMs
✅ AI-Powered DevSecOps
— Integrate AI-driven code scanning, vulnerability detection, and automated remediation into CI/CD pipelines
✅ Intelligent Compliance Automation
— Build AI workflows that continuously monitor controls, flag gaps, and generate audit-ready evidence — reducing manual compliance effort by up to 70%
✅ LLM Integration & Development
— Integrate large language models into security dashboards, internal tools, and compliance platforms via REST APIs and SDKs
🔐 Core Expertise: Security, Compliance & Governance
✅ IT Compliance & Audit Readiness
HIPAA, PCI-DSS, GDPR, ISO 27001, SOC 1 & SOC 2 implementation and audit support
DPDP Act compliance frameworks and governance
Risk assessments, gap analysis & security control mapping
Policy development, security documentation & AI-assisted monitoring
✅ Security Audits, VAPT & Risk Mitigation
Comprehensive security audits with detailed, actionable reporting
Cloud Security Audits across AWS & Azure environments
Vulnerability Assessment & Penetration Testing (VAPT)
CIS Benchmarks and NIST framework enforcement
Enterprise-wide vulnerability management & remediation planning
✅ DevSecOps & Cloud Security Engineering
DevSecOps with Zero Trust architecture and AI-assisted threat detection
Cloud Security Posture Management (CSPM)
AWS Security Hub, GuardDuty, Inspector
Azure Security Center & governance policies
Secure CI/CD pipeline automation with built-in AI-powered security controls
☁️ Cloud & DevOps Engineering
Cloud Platforms
AWS (EC2, ECS, EKS, Lambda, IAM, S3, Route 53, RDS, CloudFormation) · Microsoft Azure (AKS, VMs, VNets, Azure DevOps, Azure Monitor) · Kubernetes · Docker · Terraform · Helm · GitOps · Ansible · Jenkins
CI/CD & Infrastructure as Code
GitHub Actions · GitLab CI/CD · Azure Pipelines · Terraform · CloudFormation · Automated deployments & release management
Monitoring, Observability & Incident Response
Prometheus · Grafana · OpenTelemetry · AWS CloudWatch · ELK Stack · Datadog · AI-assisted threat monitoring · Disaster recovery & business continuity planning
💡 What You Get Working With Me
✅ Compliance-ready security frameworks built for audit day
✅ AI agents and automation that cut manual compliance work dramatically
✅ End-to-end security audits with clear, prioritized remediation plans
✅ Secure, scalable cloud infrastructure with proactive AI-powered monitoring
✅ DevSecOps pipelines with security and intelligence baked in from day one
✅ A single expert who speaks both security and AI — no need to hire two people
📞 Available now for cloud security audits, SOC 2 / ISO 27001 compliance, DevSecOps implementation, VAPT, Agentic AI development, and intelligent compliance automation.
🚀 Let's talk about how I can help you build a system that's secure, compliant, and ready for the AI-driven future.
Steps for completing your project
After purchasing the project, send requirements so Sahil can start the project.
Delivery time starts when Sahil receives requirements from you.
Sahil works on your project following the steps below.
Revisions may occur after the delivery date.
SMS Scoping & Context
Define organizational context, stakeholders, and the scope of the Information Security Management System.
Risk Assessment & Treatment
Perform a comprehensive risk assessment, identify threats, and define a formal Risk Treatment Plan.




