Securitate Jobs

Expanded Statement of Work — RCS Public API & Connector Platform 1. Performance SLAs (Benchmark-Oriented) The system must be architected to meet enterprise CPaaS-grade performance expectations comparable to major providers. • API Throughput Target (Baseline): - Sustain minimum 500–1,000 send requests/sec under normal load. - Burst handling up to 3,000 TPS with graceful queuing (no message loss). • Queue Processing SLA: - Campaign enqueue latency: < 200 ms per batch. - Worker dequeue + dispatch latency: < 1 second under steady load. • Delivery Pipeline SLA: - Status callback processing: < 2 seconds end‑to‑end. • Horizontal Scaling Expectation: - Architecture must allow stateless API scaling. - Queue workers must scale independen...

I’m putting together a reusable boiler-plate based on Bun, Elysia, HTMX and Better-Auth. The goal is a pattern I can lift into a variety of future projects whenever I need tight authentication, fine-grained authorization and a back-office where admins can manually register users and set/configure authorization policy. Here is where I need you: • Architectural kick-off – I want rock-solid design patterns and best practices from day one, with security woven through every layer and a flexible auth system that can evolve as requirements shift. • Front-end / back-end integration – Help me keep the wiring clean so new modules or UI components can be dropped in without a full rewrite. • Ongoing pair-programming / troubleshooting – When my junior develo...

Hi, I’m looking for a developer who can quickly review our SaaS project and tell me if there are any major problems in the code. I’m not very technical, so I just need a simple report explaining: Any serious issues Security or performance problems Things that should be fixed first Deliverable Short, easy-to-understand report List of the most important issues Project Details Requirements Experience working on SaaS projects Able to explain issues in simple terms Please tell me: Your experience If you can start right away

I already have a fully developed Node.js application and now need it live on my company website. The site's sole purpose is clear, reliable information display—no e-commerce or complex customer-interaction modules at this stage. Here’s what I’m looking for: • Prepare the hosting environment, deploy the Node.js code, and wire it to the production domain. • Configure SSL so everything runs over HTTPS. • Set up environment variables, build steps, and a process manager such as PM2 (or a comparable tool) to keep the service running automatically after restarts. • Connect any database or external services the project already references. • Optimize basic performance and security settings (rate limits, headers, logging). • Deliver a s...

I have already completed the technical investigation of a recent security alert: the endpoint protection platform flagged an executable that tried to tamper with system files and phone home to an external server. I verified the hash, monitored live-system behaviour, confirmed the activity as malicious, quarantined the file and rescanned the host to ensure it is now clean. What I need next is a professionally written incident report that translates those raw findings into a clear narrative for both management and technical stakeholders. The document should outline the timeline of events, the investigation methodology, indicators of compromise, remediation actions taken, and practical recommendations to harden the environment against similar threats. Where helpful, map tactics to MITRE ATT&...

Design and operate a production-grade Google Cloud platform for a global SaaS solution with deep hands-on ownership of Kubernetes, CI/CD, service mesh, and auditability. Deploy and manage regional GKE clusters (e.g., primary in me-central1/Riyadh), implement secure multi-environment landing zones, and build reusable Infrastructure-as-Code with automated, auditable provisioning. Build CI/CD pipelines using Cloud Build and/or GitHub Actions to containerize and deliver Python backend and Angular frontend services, publish Docker images, and deploy via Helm charts with tenant-specific configuration. Implement advanced deployment strategies on GKE using Istio service mesh, including header-based canary releases and tenant-aware traffic routing (e.g., X-Tenant-ID). Enable global scalability, mul...

I’m looking for a qualified security professional to run a full-scale penetration test against my public-facing web application. The goal is to simulate real-world attack scenarios, uncover exploitable weaknesses, and receive a clear, actionable roadmap for tightening our defenses. Scope – Web application layer only (no network infrastructure or API testing at this stage). – Black-box or gray-box methodology is fine; we can agree on the exact approach once you review the stack and access level I can provide. What I expect from you • A concise test plan outlining the tools and techniques you’ll use (e.g., Burp Suite, OWASP Zap, manual code review where appropriate). • Execution of the penetration test without disrupting production traffic. &bull...

I’m spinning up a fresh Ubuntu VPS and need it turned into a rock-solid hub for my IoT fleet. The box must host two main services—Mosquitto for messaging and a Mender server for over-the-air firmware updates—without compromising security, performance, or future maintainability. Here’s the picture • Mosquitto will run behind TLS with mutual authentication. I’ll give you the root CA; you generate and stage broker and client certs so the standard mosquitto_pub / mosquitto_sub TLS test passes. • Mender must be installed in its open-source edition, set to distribute only signed artifacts. I already sign firmware; the server simply has to enforce signature checking before rollout. • fail2ban on the host should block any source IP after three ba...

I have a GPU instance with RTX 4090 and need to configure a setup for create videos

Our coaching sessions at Waziram and Vism Institute are streamed in the official mobile app on both iOS and Android. These recordings are crucial for my coursework, yet the current build offers no way to save them for later study when an internet connection is unavailable. I need an experienced mobile developer who can add a secure offline-viewing feature. The downloads must remain tied to each student’s login so that only authenticated users can view the files; once a user signs out, access to the stored videos should be revoked automatically. Because I am not sure what level of server or code access the institute can grant, the solution may involve: • Modifying the existing iOS (Swift/Objective-C) and Android (Kotlin/Java) apps to incorporate encrypted, device-bound st...

Position: Freelance Smart Contract / Blockchain Engineer Type: Contract / Freelance Location: 100% Remote Workload: Part-time or task-based Compensation: $60–$100/hour (or fixed-price per task) About the Project We are working on DeFi smart contract components, including token implementations and protocol-level logic. Our focus is security, clarity, and real-world usability — not hype. We are building a long-term freelancer pool and looking for engineers who can deliver clean, well-structured Solidity code independently. What You’ll Do Design and implement secure smart contracts using Solidity Work with EVM-compatible chains Review and improve existing smart contract code Follow best practices for documentation, testing, and security Collaborate asynchronously wi...

I’m ready to bring in a security specialist to run a thorough, manual penetration test on my live e-commerce application. Automated scanners aren’t enough for this engagement—I need human-driven testing that uncovers real-world attack paths. Here’s what I’m looking for: • A full manual assessment covering all SQL Injection, Cross-site Scripting (XSS) and Cross-site Request Forgery (CSRF),Web Application Penetration Testing , Network Penetration Testing Services External or Internal, Web Services Testing, API Testing • Exploitation-level proof of concept for every confirmed issue, with clear, reproducible steps. • A concise risk-ranked report that separates critical, high, medium and low findings, followed by practical remediation advice writ...

I’m looking for an online tutor based in India who can guide me through intermediate-level administration of both Linux and Windows Server environments. On the Linux side I want practical, session-based coaching in system administration, security and firewall management, and shell scripting. For Windows Server, the focus should be Active Directory management, server configuration and deployment, plus security and patch management. Each topic needs to be demonstrated live, with time for me to replicate the steps on my own lab machines during or immediately after the call. We can meet on Zoom or Google Meet for 2–3 hours a week, preferably evenings or weekends. Deliverables • A structured lesson plan that maps out the sequence of sessions • Recordings or sess...

I have a Lenovo ThinkPad T480 waiting for a fresh, security-first Debian installation. The goal is a fully hardened, privacy-respecting daily-driver that ships with BOTH Mozilla Firefox and Brave, each pre-tuned for strong tracking-protection and fingerprint-resistance. This is an ADVANCED hardening job. Beyond the base install I’ll need full-disk LUKS2 encryption, secure boot/Libreboot if the hardware permits, locked-down BIOS settings, kernel and sysctl tweaks, AppArmor (or comparable MAC), DNS proxy with encrypted queries, and a firewall configured to best practice levels. I did not select a specific firewall in the form, so feel free to recommend whether UFW, iptables or firewalld is the right fit for an always-on laptop that roams between trusted and untrusted networks. Delive...

My current workflow already relies on , but I’m hitting limits with its out-of-the-box functionality. The project centers on true custom feature development—expanding so it fits my exact use-case rather than forcing my process to adapt to the platform. The work starts with a quick review of the existing setup, followed by a short requirements session where we pin down what the new feature must do, how it should be accessed, and any guardrails around performance or security. From there, the task moves into design, coding, and rigorous testing inside a staging environment to be sure everything runs smoothly once promoted to production. Deliverables • Complete source code and configuration for the new feature • Clear deployment notes and end-user documentation ...

We would like to find someone who is capable of making a ticket buying bot, to PREVENT tickets from being bought from. This is a protection and defensive upwork post. We are looking to block vulnerabilities in the website. Thank you, J

Tenho hoje o ChatPion funcionando, porém preciso levá-lo a outro nível. Estou aberto a duas vias: aprimorar diretamente o ChatPion ou, caso seja tecnicamente mais simples, desenvolver um novo chatbot do zero para minhas páginas do Facebook. O que é indispensável • Envio de mensagens em massa sem limites artificiais, inclusive para várias páginas simultâneas. • Integração com outras plataformas (APIs externas, CRM, e-commerce ou o que for necessário). • Respostas automáticas mais inteligentes, capazes de entender variações de texto e entregar conteúdo personalizado. Além disso, quero um painel central onde eu consiga disparar campanhas, alterar configu...

Position: Freelance Smart Contract / Blockchain Engineer Type: Contract / Freelance Location: 100% Remote Workload: Part-time or task-based Compensation: $60–$100/hour (or fixed-price per task) About the Project We are working on DeFi smart contract components, including token implementations and protocol-level logic. Our focus is security, clarity, and real-world usability — not hype. We are building a long-term freelancer pool and looking for engineers who can deliver clean, well-structured Solidity code independently. What You’ll Do Design and implement secure smart contracts using Solidity Work with EVM-compatible chains Review and improve existing smart contract code Follow best practices for documentation, testing, and security Collaborate asynchronously wi...

I want to launch a fully-featured, cloud-hosted lottery platform built on a hardened Node.js backend with a reliable database layer. New players will sign up with a classic email-and-password flow, then complete KYC before they can fund their wallet or join a draw. The exact KYC data points can be finalised together, but the process must be seamless and compliant. Core flow • A user tops up an internal wallet via PayPal (gaming category enabled), buys entries, and watches their balance update in real time. • On draw day a server-side, provably-fair randomiser selects winners; every draw, ticket purchase, and payout is written to an immutable audit log. • From my side I need an admin dashboard that shows live player stats, transaction history, and lets me trigger or sc...

I am launching a fully-independent blockchain network and need an experienced developer who can take the project from white-paper to mainnet. The chain will run on a Proof of Work consensus, operate inside a closed environment (no external chain bridges), and issue a fiat-collateralized stablecoin that functions much like USDT but lives natively on this new ledger. Beyond the core protocol, I will also require built-in wallet support and a smart-contract layer so third-party developers can deploy dApps once the network is live. Security is paramount; every component—from key management to consensus—must be hardened against common attack vectors and accompanied by clear documentation. Key deliverables • PoW node software and full network setup (testnet + mainnet) &bul...

Security Engineer to implement advanced application-layer security improvements, session control, and structured framework upgrades. This is a higher complexity engagement involving architectural work and controlled deployment. Scope of Work 1. Concurrent Login and Session Management Design and implement controlled session management. Responsibilities Implement Redis or ElastiCache-based session tracking Develop middleware to prevent unauthorized concurrent sessions Build configurable session policies Implement detailed audit logging Ensure compatibility with mobile clients Support emergency break glass access scenarios Healthcare-aligned audit logging is required. 2. Administrative Portal Access Control (Optional VPN / Zero Trust) Secure administrative access to sensitive function...

Security Engineer to implement advanced application-layer security improvements, session control, and structured framework upgrades. This is a higher complexity engagement involving architectural work and controlled deployment. Scope of Work 1. Concurrent Login and Session Management Design and implement controlled session management. Responsibilities Implement Redis or ElastiCache-based session tracking Develop middleware to prevent unauthorized concurrent sessions Build configurable session policies Implement detailed audit logging Ensure compatibility with mobile clients Support emergency break glass access scenarios Healthcare-aligned audit logging is required. 2. Administrative Portal Access Control (Optional VPN / Zero Trust) Secure administrative access to sensitive function...

Security Engineer to implement advanced application-layer security improvements, session control, and structured framework upgrades. This is a higher complexity engagement involving architectural work and controlled deployment. Scope of Work 1. Concurrent Login and Session Management Design and implement controlled session management. Responsibilities Implement Redis or ElastiCache-based session tracking Develop middleware to prevent unauthorized concurrent sessions Build configurable session policies Implement detailed audit logging Ensure compatibility with mobile clients Support emergency break glass access scenarios Healthcare-aligned audit logging is required. 2. Administrative Portal Access Control (Optional VPN / Zero Trust) Secure administrative access to sensitive function...

Security Engineer to implement advanced application-layer security improvements, session control, and structured framework upgrades. This is a higher complexity engagement involving architectural work and controlled deployment. Scope of Work 1. Concurrent Login and Session Management Design and implement controlled session management. Responsibilities Implement Redis or ElastiCache-based session tracking Develop middleware to prevent unauthorized concurrent sessions Build configurable session policies Implement detailed audit logging Ensure compatibility with mobile clients Support emergency break glass access scenarios Healthcare-aligned audit logging is required. 2. Administrative Portal Access Control (Optional VPN / Zero Trust) Secure administrative access to sensitive function...

Busco a quien desarrolle una página web para mi negocio de sorteos en línea. La plataforma debe permitir vender números aleatorios de dos o más cifras y garantizar que cada compra asigne y registre esos números automáticamente. Requisitos funcionales • Pasarela de pago centrada en tarjeta de crédito/debito y pagos PSE • Motor que genere, distribuya y almacene números aleatorios para cada usuario. • Panel de usuario con: – Historial de transacciones visible y filtrable. – Notificaciones configurables sobre compras, ganadores y promociones. • Página pública de resultados para mostrar ganadores en tiempo real. • Sección de Términos y Condiciones accesible d...

I’m looking to turn my rupture-disc sizing spreadsheet into a secure, responsive web application. The site will sit behind a straightforward username/password gate; once signed in, users should be able to enter process parameters, hit “Calculate,” and instantly receive accurate sizing data. Those results must be downloadable as both polished PDFs and clean Excel workbooks. Security matters almost as much as accuracy. I run regular security audits, so the code needs to be structured for easy penetration testing, and every login or calculation must be written to an activity log I can review or export later. Think clear separation of concerns, meaningful commit history, and no hard-coded secrets. Specific deliverables • Full-stack application with basic credential log...

My WooCommerce-powered WordPress site already generates its own backups; what I am missing is a plugin that quietly copies those archives to a remote device of my choosing. The workflow I have in mind is simple: • Scheduling – I need to set a daily schedule with at least three runs per day, plus the freedom to change the hour, frequency, and how many archives are retained. • Source & destination paths – both must be selectable from the admin panel so I can point to the existing local backup folder and the remote target. • Secure hand-off – the connection between server and remote device will be authenticated with an API key that I provide. A second key (or the same key in a different scope) should protect the device itself. • Reliability logic ...

Project Title Custom Case Management & Workflow System for Accredited DNA Laboratory Project Overview We are an ISO 17025 accredited DNA testing laboratory in Australia seeking to develop a custom-built web-based case management and workflow system. This system will replace an 18-year-old legacy database and must reflect our current operational complexity, including: Legal DNA testing Government agency cases Immigration DNA testing (including international coordination) Distributed inventory management Document control and compliance Communication tracking and follow-up workflows This is a ground-up custom system. We are not seeking CRM customisation or template-based solutions. A detailed functional specification is being finalised and will be provided to shortlisted devel...

I'm seeking a contractor with deep expertise in Microsoft Active Directory Certificate Services (ADCS) to help us properly configure and stabilize our internal Certificate Authority. Current State: - Fully configured but unstable. Key Issues: -Enterprise CA configuration and hardening -Certificate template design (Kerberos Authentication, Computer/Wi‑Fi, NPS/RADIUS) -Integration with NPS for EAP‑TLS and Wi‑Fi/VPN authentication -Ensuring domain controllers receive and renew the correct Kerberos Authentication certificates -General PKI best practices and remediation Ideal Skills and Experience: - Extensive experience with ADCS. - Strong troubleshooting skills. - Ability to configure and optimize certificate templates. - Familiarity with Active Directory and related services. Your ...

I’m building a full-stack, fully secure money-exchange platform that spans Android, iOS, and a responsive website. The public landing screen must fetch and display up-to-the-second buy/sell rates even for guests, then invite them to sign in. Authentication will rely on Google Authenticator one-time codes; every sensitive endpoint must be locked behind this 2-factor flow. Once inside, customers need a clean dashboard where they can: • place buy orders • place sell orders • review a complete, filterable transaction history Behind the scenes I’ll need an admin console that lets me adjust spreads manually or, at the flip of a switch, pull live forex data from an API (feel free to recommend the most cost-effective feed). All price changes should propagate ...

I need a browser-based cricket betting platform that captures the look-and-feel and feature depth of while carrying my own branding. Core requirements are straightforward: • Secure user registration and login with strong encryption and KYC-ready user profiles • A full betting engine that supports multiple match markets, real-time odds updates and settlement logic • Live scores and match data pulled through a licensed third-party sports API, streamed instantly to the UI Beyond coding the site, I also need a clear, line-by-line cost estimate covering every expenditure tied to the project—development hours, API licence fees, hosting or cloud servers, SSL, maintenance, and any other predictable outlay. Please separate one-off costs from recurring ones and suggest a ...

The prototype was implemented cross-platform using React Native and Firebase as a backend. Fundamental implementation choices prioritized security and interoperability: Security: AES-256 encryption of data at rest; TLS for data in transit; role-based access by family members versus clinicians. Interoperability: A modular API with FHIR-compatible endpoints for eventual EHR/RPM integration. Offline capability: local caching and deferred sync to accommodate intermittent connectivity. Accessibility: large font toggle, voice prompts, and simple language; eventual localization into Swahili and French for pilot implementations in East Africa and West Africa. Care dashboard (daily/weekly view): Task list with confirmations and shared task assignment among multiple family caregivers. Tasks can be r...