Information Security Freelance Jobs

Position Overview:

We are seeking a results-driven Affiliate Marketing Specialist. This role is responsible for managing and optimizing our affiliate marketing program, identifying and recruiting new affiliates, and building strong relationships with existing partners to drive revenue growth.

Key Responsibilities:

Develop and implement the affiliate marketing strategy to achieve business goals.
Identify, recruit, and onboard new affiliate partners.
Monitor affiliate activities, analyze performance metrics, and provide regular reports on campaign effectiveness.
Collaborate with the marketing team to create promotional materials and campaigns.
Optimize affiliate marketing campaigns to maximize ROI.
Stay up-to-date with industry trends, competitors, and new affiliate opportunities.
Ensure compliance with legal regulations and company policies in all affiliate activities.

Qualifications:

Proven experience in affiliate marketing, digital marketing, or related roles.
Strong analytical skills with the ability to interpret data and make data-driven decisions.
Excellent communication and interpersonal skills.
Proficiency in affiliate marketing software and tools.
Ability to work independently and manage multiple projects simultaneously.
Knowledge of SEO, SEM, and other digital marketing strategies is a plus.
Passion for technology and information security is a plus.

We are seeking a highly experienced freelance consultant to assist our company in achieving ISO 27001 certification. Our goal is to implement this internationally recognized standard for Information Security Management Systems (ISMS) efficiently and cost-effectively.

Responsibilities:

Conduct a comprehensive gap analysis to identify areas that require improvement for ISO 27001 compliance.

Develop a tailored implementation plan that aligns with our company's resources and budget.

Provide guidance and support in establishing an ISMS, including risk assessment, risk treatment plans, and security controls.

Assist in the creation and documentation of necessary policies, procedures, and records.

Conduct internal audits to ensure compliance with ISO 27001 standards.

Provide training and awareness programs for our staff.
Support us through the final certification audit process conducted by an accredited certification body.

We are seeking an experienced and detail-oriented Cybersecurity Assessor to join our team on a freelance basis. The ideal candidate will have a strong background in cybersecurity and compliance assessments, specifically focusing on ISO 27001, BSA (Bank Secrecy Act), and SOC2 (Service Organization Control 2) preparation. As a Cybersecurity Assessor, you will be responsible for evaluating our clients' security controls, identifying gaps, and providing actionable recommendations to ensure compliance with industry standards and regulatory requirements.

Responsibilities:

Conduct comprehensive assessments of clients' information security management systems (ISMS) in accordance with ISO 27001 standards.

Perform in-depth evaluations of clients' compliance with the Bank Secrecy Act (BSA) regulations.

Assess clients' readiness for SOC2 audits, focusing on the five Trust Services Criteria: Security, Availability, Processing Integrity, Confidentiality, and Privacy.

Identify and document gaps in security controls and provide detailed recommendations for remediation.

Develop and deliver detailed assessment reports, including findings, analysis, and suggested improvements.

Collaborate with clients' internal teams to help implement and strengthen security controls.

Stay up-to-date with the latest industry standards, regulations, and best practices related to cybersecurity and compliance.
Requirements:

Proven experience in conducting ISO 27001, BSA, and SOC2 assessments.

Strong understanding of information security principles, risk management, and regulatory compliance requirements.

Excellent analytical skills with the ability to identify vulnerabilities and recommend effective solutions.

Strong communication skills, both written and verbal, with the ability to present complex information clearly and concisely.

Relevant certifications such as CISSP, CISA, CISM, ISO 27001 Lead Auditor, or similar are highly desirable.

Ability to work independently and manage multiple projects simultaneously.

Strong attention to detail and a commitment to delivering high-quality work.

Preferred Qualifications:

Experience working with clients in various industries, including finance, healthcare, and technology.
Familiarity with other cybersecurity frameworks and standards such as NIST, GDPR, and HIPAA.
Hands-on experience with security tools and technologies used in compliance assessments.
Prior consulting or auditing experience is a plus.
Application Process:

If you are a motivated cybersecurity professional with a passion for compliance and a track record of successful assessments, we would love to hear from you. Please submit your resume, a cover letter outlining your relevant experience, and any certifications you hold. Additionally, provide examples of previous assessment reports or case studies, if available.

Job Description: Join our dynamic marketing team as a CRM and Lead Generation Specialist! This remote role offers occasional travel to our headquarters in Copenhagen, Denmark. We're looking for a proactive team member to support our lead management efforts across various platforms.

Key Responsibilities:
Inbound Lead Management:
• Oversee inbound contacts generated from LinkedIn, email marketing, Google Ads, and more, ensuring they are allocated to the appropriate sales reps.
• Assist in executing and managing contacts for campaigns across platforms, ensuring data cleansing and follow-up activities in HubSpot.
• Implement lead scoring systems to prioritize sales initiatives effectively.
Outbound Lead Generation:
• Maintain and optimize our contact platforms (e.g., LinkedIn Sales Navigator, Leadfeeder, Dealfront, Lusha) to build and prepare new lead lists for our sales team.
• Identify and engage new relevant contacts through outbound email/phone efforts or research.
• Identify and target relevant market segments in Europe, with a focus on the Nordic region, for campaigns or partnership opportunities.
Ideal Skills and Experience:
• Marketing Expertise: Deep understanding of B2B marketing and the ability to tailor strategies to different target audiences.
• CRM Proficiency: Expertise in using CRM tools like HubSpot, with experience in managing contact lists, lead scoring, segmentation, and automation.
• Lead Generation and Nurturing: Proven experience in creating and managing campaigns that attract and convert leads.
• Analytical Skills: Strong attention to detail and the ability to analyze data from campaigns and CRM systems to measure performance, identify trends, and make data-driven decisions.
• Communication and Collaboration: Excellent communication and coordination skills, essential for working with an international team.
• EU Compliance: Preference for candidates based within the EU for GDPR compliance.
If you're passionate about driving lead generation and CRM optimization and want to be part of a forward-thinking team, we'd love to hear from you!

About NorthGRC
NorthGRC is a long term, international and leading provider of Information Security Management Solutions (ISMS). We help our customers manage compliance demands and operational risk, by empowering our customers with industry leading platforms, consultancy and resources.

The core of our deliveries is our all-in-one ISMS for ISO 27001 compliance, risk management, GDPR and best practices. Together with our task, control and template platforms, Neupart has since 2002:

WORKED WITH + 10.000 information security professionals
DELIVERED SOLUTIONS to +1000 companies
PROVIDED SUPPORT in +40 countries.
Interview process
Screening of resumes from Juli 27th and ongoing.
Interviews will begin after August 5th.

The Itarmi app offers you a fantastic worker experience. It features an enterprise-quality interface for a best-in-class user experience. Simply download the app, upload your details – ID, résumé, technical certificates and other information – and get onboarded fast.

Once you’ve completed the Itarmi Base Camp certification – which evaluates your competencies across technology, information security, health and safety, and language – you’ll be able to start receiving assignment requests, in your local area.

Skills: Desktop Support, Network Administration, Storage Area Networks, Field Technical Support, Network Engineering

We are a consultancy firm specialising in data protection, information security and compliance.

In addition to our e-learning (LearnDash environment on a Wordpress site), we now also want to offer our customers phisihing simulations.

We lack the technical expertise to do this. We are therefore looking for an expert who can provide us with a concept / offer including costs.

The concept should include:

- Which tool will be used for the simulation? European providers would be preferred
- What costs would be incurred per user? Are these monthly costs or one-off costs (e.g. per e-mail)?
- How can campaigns be set up? Are they one-off campaigns or can follow-up campaigns be built based on the click rates?

These are just the three core questions, if there are other aspects that you think should be considered, then these should also be included in the concept.

Our customers use different email providers. We want competitive prices, as some simulations in Germany cost €10,000 and are outside the budget of our customers.

You must either be in Europe or be in the USA to apply for this position. You must have excellent English written and verbal skills. It is a benefit if you speak another language as well, such as Dutch or French.


Make a list of all colocation data center providers in Amsterdam that provide remote hands services and will work with a USA based customer.

We have been with Equinix since early 2020 at the AM8 facility in Amsterdam. We are becoming unhappy with the power pricing and service we are receiving.

While we are open to moving our equipment rack to a surrounding country, it should be a short drive (relative) from Amsterdam where we have some part time staff who periodically need to get to the equipment. They have indicated a willingness to travel as far as Paris by plane when necessary, but we would only entertain that if the power rates in Paris are substantially better than those in The Netherlands. Any country we select must have lenient and easy to deal with customs regulations since we ship equipment from the USA to replace failed components in the servers. We have found Germany to be horrible to deal with for customs, and so do not wish to work again with Germany data center providers as a result. The Netherlands has been fine from a customs perspective, but my understanding is their power rates are worse than surrounding EU countries now.


Your goal is to make a list of alternative providers with data center capabilities similar to AM8, but more affordable and easier to work with.

The company must be solid financially and have good security, 24x7 staffing at the facility, with technicians that can provide remote hands services and speak English. They should have a webcam or ability to do FaceTime like communication when necessary for hardware troubleshooting.

We need the following specifications:

qty (1) rack that is the same height, width, and depth as the one we have in Equinix. I think this is a 46U tall rack, but I am not sure yet. I am gathering that information and can update you.

qty (1) primary AC circuit - 230 volts - 32 amps - single phase

qty (1) redundant / secondary AC circuit - 230 volts - 32 amps - single phase

qty (1) cross connect to Cogent specifically to be used as our primary Internet feed. We will advertise our own BGP IP space. All they need to do is cross connect us to Cogent.

qty (1) emergency use only "blended" bandwidth to which the colo / data center provider allows us to advertise our BGP IP space. In Equinix marketing, this is called "Equinix Connect". It should be burst-able to 1 Gbps but is only used in emergency so the committed rate of bandwidth should be incredibly low - like 15 Mbps or at most 100 Mbps and be very inexpensive.

Our actual power usage is about 6 kW total between the primary and secondary AC power feeds. Right now the PDUs in the rack show the following precise measurement:

PDU #1 = 3.34 kW


PDU #2 = 2.54 KW


The provider needs to have good physical security, diesel generators, proper smoke / fire detection and computer-safe automatic extinguisher system, some form of ISO certification with an annual audit similar to what Equinix reports for AM8:

https://www.equinix.com/data-centers/europe-colocation/netherlands-colocation/amsterdam-data-centers/am8

AM8 lists the following certifications:
SOC 1 Type II
SOC 2 Type II
PCI DSS
ISO 9001 - Quality Management Systems (QMS)

the AM8 additional certifications are not as important as the ones above probably for the new provider

ISO 45001 - occupational health and safety (OH&S)
ISO 22301 - Business Continuity Management Systems (BCMS)
ISO 14001 - Environmental Management System (EMS)
ISO 27001 - Information Security Management Systems (ISMS)
ISO 50001 - Energy Management Systems (EnMS)

N+1 cooling
N+1 electrical

Thank you for your help!

We are seeking a highly skilled Information Security Platform Administrator to join our team. This role will serve as the primary technical support lead, responsible for the planning, design, installation, administration, and day-to-day activities of multiple SAAS platforms to ensure stable, scalable, and secure information security operations.

Key Responsibilities:

Actively participate in the planning, design, installation, administration, and daily activities of multiple SAAS platforms.
Serve as the systems matter expert and primary support contact for the Information Security Team.
Engage with Information Security and Judiciary Information Systems staff to oversee and support daily activities related to Information Security business processes.
Provide configuration and operational support across platforms, enhancing operational activities through the administration of technical tasks.
Test and deploy services, build out functionality and automation to improve business operations and streamline workflow processes.
Monitor system performance, troubleshoot issues, and create process and procedure documentation.
Lead, schedule, coordinate, and guide activities with the Information Security Team, other JIS teams, and vendors.
Deploy, configure, administer, and create customizations for the SAAS software to meet business needs.
Develop new processes, procedures, and workflows to improve security operations.
Provide problem determination and resolution through analysis and diagnostics.
Generate regular status reports and technical and procedural documents.
Host weekly status meetings or calls with the team as needed.
Provide Information Security staff training on all areas of the supported platforms.
Preferred Qualifications:

Experience in the configuration, deployment, and operation of two (2) or more SAAS platforms such as SailPoint, CyberArk, Microsoft Purview, Archer Risk Management, and Business Continuity Modules.
Any industry-leading networking certifications of a professional level.

Required Skills and Experience:

Associate degree in an IT-related field.
Ten (10) years of relevant IT work experience, with at least five (5) years in information security and SAAS management and administration.
Two (2) years of hands-on design, implementation, application customization, and support experience with SAAS platforms.
Proficient with information security platforms in an enterprise environment.
Specific proficiency with SailPoint, CyberArk, Microsoft Purview, and Archer.
Excellent communication, interpersonal, and team skills.
Ability to present technical information for knowledge transfer and training purposes.
Ability to establish and maintain effective working relationships with peers, end-users, and vendor development staff.
Ability to troubleshoot application-specific problems and open support tickets as needed.
Place of Performance:

Initial three (3) months onsite at Annapolis, MD 21401.
Hybrid role upon satisfactory performance: Three (3) days remote and two (2) days onsite.
Ability to report onsite within four (4) hours after notification if required.

Interview Process:

Shortlisted candidates will complete a panel interview via Microsoft Teams or in-person at Annapolis, MD 21401.
The interview will last approximately one (1) hour.

We are looking for data collection and entry specialists to help us gather publicly available information about AI models and AI applications, and the companies who develop and sell them.

Your task will be to research the assigned AI entity in order to answer questions in a rubric we will provide. You will collect relevant data from company profiles, product offering documentation, pricing details, terms of service, and information security/risk management processes.

The ideal candidate should have strong internet research skills, be detail-oriented, and have an understanding of the AI and software industries.

Skills needed:

- Internet research

- Data collection

- Data entry

- An understanding of LLM model and application development

- An understanding of the enterprise/B2B software industry

We are looking for skilled web researchers to help us gather publicly available information about AI models and AI applications, and the companies who develop and sell them.

As a researcher, your task will be to scour the internet and collect relevant data such as company profiles, product offerings, pricing details, terms of service, and information security/risk management processes. You will use these references to answer a standardized set of questions about the model, application, or company using a Google Form.

The ideal candidate should have strong internet research skills, be detail-oriented, and have a good understanding of the AI industry.

Skills needed:

- Internet research

- Data collection

- An understanding of LLM model and application development

- An understanding of the enterprise/B2B software industry

We are seeking an experienced professional to help us obtain ISO27001 certification and develop a comprehensive set of information security policies. The ideal candidate will also have expertise in designing and implementing an Information Technology Disaster Recovery exercise and testing program. This gig requires a deep understanding of information security best practices and experience in developing policies that align with ISO27001 standards. Strong communication and documentation skills are essential, as you will be responsible for drafting and implementing policies across our organization. If you are a detail-oriented professional with a track record of successfully implementing information security policies, we would love to hear from you.

Skills needed:
- ISO27001 certification
- Information security policy development
- Information Technology Disaster Recovery exercise and testing
- Strong communication and documentation skills

I'm in need of a consultant to help with several key aspects of ISO 27001 compliance and information security governance for my project.

This will include:
- Implementation and compliance of ISO 27001
- Conducting a thorough gap analysis
- Formulating an effective InfoSec strategy and governance model
- Risk management
- Security awareness

The ideal candidate will have:
- Experience in ISO 27001 compliance and implementation
- Strong understanding of information security governance
- Ability to perform a comprehensive gap analysis
- Strong communication skills

The project should be completed within 6 months and the company should be able to get certified in ISO 27001 by beginning of 2025.

I'm in need of a consultant to help with several key aspects of ISO 27001 compliance and information security governance for my project.

This will include:
- Implementation and compliance of ISO 27001
- Conducting a thorough gap analysis
- Formulating an effective InfoSec strategy and governance model
- Risk management
- Security awareness

The ideal candidate will have:
- Experience in ISO 27001 compliance and implementation
- Strong understanding of information security governance
- Ability to perform a comprehensive gap analysis
- Strong communication skills

The project should be completed within 1 year.

Skills: Computer Security, Compliance, Internet Security, Security

We are seeking a highly skilled German speaking Security Consultant with experience in ISO27001 and SOC2 to join our team. As a Security Consultant, you will be responsible for providing expert advice and guidance on security practices and protocols. Your role will include conducting security assessments, developing and implementing security policies and procedures, and ensuring compliance with ISO27001 and SOC2 standards. The ideal candidate will have a deep understanding of information security principles, excellent communication skills, and the ability to work independently. This is a great opportunity to contribute to the security of our organization and make a significant impact.

I am seeking a skilled professional to assist with securely retrieving information from my personal mobile device. The candidate shall have experience in mobile device security, data recovery, and ethical hacking techniques. This job requires a high level of expertise in mobile phone security to help recover chats, SMS, call logs, emails, and passwords from my own device.

The ideal candidate should be able to complete the assigned tasks within the agreed timeline and provide accurate results. This is a sensitive and confidential project, and the candidate must adhere to strict ethical guidelines, ensuring that all actions comply with legal standards and respect user privacy.

Category:
Information Security

Skills:

Cybersecurity Management
Data Recovery
Ethical Hacking
Android
Smartphone Penetration Testing
Microsoft Windows

We are a SaaS startup looking to obtain the ISO 27001 certificate to bolster our information security management system (ISMS). We have some documentation in place but it needs to be reviewed and updated.

Key requirements and expectations:
- Help with reviewing and updating the existing documentation
- Full project management support, from preparation to certification
- Extensive experience with ISO 27001 certification process
- Ability to recommend and implement industry-standard security measures

We are already equipped with industry-standard security measures, but no official certifications. The ideal partner for us would be a company with a proven track record in handling similar certification processes and a deep understanding of SaaS security standards.

Please provide relevant experience and a detailed plan of action in your bid.

Skills: PHP, Project Management, Technical Writing, Software Architecture, Research Writing

We are a rapidly growing financial services tech company seeking experienced talent to support our core operations.

What we are looking for:

Self-motivated professional who can work independently and deliver a high volume of quality work in a fast-paced environment. Responsible and results oriented; flexible and adaptable to evolving tasks with growing complexity. A problem solver. The main workflow of this project revolves around data entry and internet research, so the afore-mentioned skills are highly necessary.

Key tasks include:
Following a specific workflow script to the letter
Online research of news and business information
Formatting excel sheets and files
Data entry - uploading to proprietary software
Data verification and cross-referencing
Using CRMs to track progress and document relevant notes

Key skills:
Fluent in English, very strong verbal and written communication
Effective and efficient in a fast paced, high impact environment
Demonstrated abilities around multi-tasking and working across email/web/file platforms.
Comfort with utilizing new technologies/online tools
Strong attention to detail
Ability to balance speed and accuracy, depending on task
Critical reading skills, including quick interpretation of news articles
Experience with Excel spreadsheets and basic data manipulation
Open and honest communication

Additionally:
Able to adhere to stringent information security practices (e.g., able to install Windows 10 and standard security software)
Availability for up to 40 hours per week during business hours in EST, PST, MST, or CST - however the average is around 20 hours per week depending on volume.

Need a logo design for "THE GRC FOUNDRY". The organization focuses on identifying, curating, educating, and evangelizing the right practice, tools and capabilities in Information Security, Risk Management, Governance, Compliance, and business continuity. It needs to demonstrate an authority, credibility and a global orientation.

Looking for an interesting, creative and unique design with text, colors, and possibly icons. The design should be modern and evoke a energetic, active brand.

I need a practical example showcasing the implementation of both Google Auth and Facebook Login using CapacitorJS in Angular 18. The code should be workable on Android and iOS platforms. I have access to the Google Cloud Console, so the integration can leverage the necessary credentials from there.

Key Deliverables:
- Functional demonstration of Google Auth and Facebook Login.
- Codebase compatible with Angular 18 and CapacitorJS.
- Android and iOS compatibility.
- Clear instructions on how to deploy and test the authentication functionality.

Desired User Information:
- Full Name.
- Email address.

Skills:
- Proficiency with Angular and CapacitorJS.
- Experience with OAuth2.0, specifically Google Auth and Facebook Login.
- Familiarity with mobile application development for Android and iOS.
- Strong understanding of best practices for user authentication and information security.

Skills: Mobile App Development, Android, PhoneGap, Facebook API, Angular

Are you a skilled freelancer who can help with a challenging situation? Our YouTube account has been hijacked, and despite our efforts to regain control, the hijacker has made it impossible for us to access the account. They have been posting hate videos and have even demonetized the channel. We are seeking someone who can flag the channel and have it removed from the platform. This has been an ongoing issue for months, and we are exhausted from dealing with it.

Important details:
*They took over all accounts associated with my profile.
*I want the channel removed not access, the reputation is gone.
*You must be able to only be able to work with my channel URL because they took over everything. I have already contacted YouTube.
*You must already have everything to perform this task if you are unable to do this without taking it off the platform please do not apply as all funds will only be dealt on Upwork.
*Please respond with how long this task will take you, and any questions you may have prior to moving forward.

If you believe you can assist in resolving this matter, the gig is yours. Let's work together to remove the channel and move forward from this frustrating situation. I look forward to your response.

Skills: Information Security, System Security, Cisco ASA, CloudSploit, Rapid7 Nexpose, Ethical Hacking, Network Security, Encryption, Security Analysis, Internet Security