Ver categorias
Explorar
Fiverr Pro
Português
$
USD
I will perform web and API penetration testing with vapt report
ISO27001 SOC2 HIPAA GRC and Penetration Testing Consultant
I am an experienced Cybersecurity and GRC Consultant with over 10 years helping US and Canadian organizations achieve ISO 27001, SOC 2, and HIPAA compliance. I provide gap assessments, policy and proc...
Sobre este Serviço
Penetration testing is essential to protect your digital assets from hackers and data breaches. Every year, businesses face ransomware attacks due to unnoticed website or API vulnerabilities. Regular security assessments and penetration testing help prevent these incidents and meet compliance standards like ISO 27001, SOC 2, and HIPAA.
With 8+ years of experience in offensive security and penetration testing, I have worked with US and Canadian clients across IT, healthcare, and fintech sectors helping them strengthen their cybersecurity posture and achieve compliance. I hold certifications including Multi-Cloud Red Team Analyst, CEH, IBM Cybersecurity Professional, API Security Architect, and ISO 27001 Lead Auditor.
Services include:
- Web, API, and network penetration testing (internal & external)
- Compliance-aligned testing for ISO 27001, SOC 2, and HIPAA
- Detailed reports with CVSS risk ratings, OWASP-based findings, and remediation steps
Deliverables:
Executive summary, technical findings, and prioritized recommendations for quick remediation.
Your security matters lets make your business breach-resilient.
Best regards,
Taha Siddiqui
Penetration Tester | GRC Assure
Dispositivo:
Desktop
•
Notebook
•
Servidor
•
Celular
•
Roteador
Sistema operacional:
Windows
•
Linux
•
Unix
•
Android
•
Ubuntu
Meu portfólio
Perguntas frequentes
What do you need from me to start the penetration test?
I’ll need your website or API URL, scope of testing (e.g., production, staging, or IP range), and any test account / credentials if applicable. Before starting, we’ll define a clear scope and authorization to ensure full compliance and safe testing.
Which standards or frameworks do you follow for testing?
I follow industry-recognized standards including OWASP Top 10, PTES, NIST SP 800-115, and ISO 27001 control mapping. These frameworks ensure all critical security areas are tested thoroughly and reported professionally.
Will your penetration test help with compliance (ISO 27001, SOC 2, HIPAA)?
Yes. My reports are structured to align with ISO 27001, SOC 2 Security principle, and HIPAA Security Rule requirements. This helps your organization demonstrate security control effectiveness during audits.
What will be included in the penetration testing report?
The report includes an executive summary, detailed technical findings, risk severity (CVSS), and recommendations for remediation. Screenshots and PoC evidence are added where applicable.
Do you perform API penetration testing as well?
Yes. I perform REST and GraphQL API testing using both automated tools and manual techniques. Vulnerabilities are assessed against OWASP API Security Top 10 standards.
Can you retest after fixes are implemented?
Absolutely. I provide an optional retest at a discounted rate to verify that identified vulnerabilities have been successfully remediated.
Have you worked with international clients before?
Yes. I have delivered penetration testing and compliance projects for US and Canadian organizations in IT, finance, and healthcare sectors, helping them enhance their cybersecurity posture and compliance readiness.
Avaliações
50 avaliações deste Serviço
| (44) | ||
| (4) | ||
| (1) | ||
| (0) | ||
| (1) |
Classificação detalhada
- Nível de comunicação do freelancer
- Recomendar a um amigo
- Serviço conforme a descrição
Ordenar por
Mais relevante
A 
ajaxjava
Estados Unidos
Thank you for the great work
Até US$ 50
$
7 dias
Tempo
Útil?I isaac_mora_cr
Costa Rica
Taha's work in Support & IT was solid, though the documentation needs improvement. He was polite, demonstrated deep understanding, and maintained proactive communication throughout the project.
US$ 100-US$ 200
$
13 dias
Tempo
Útil?L laureenbaddoo
Estados Unidos
Very informative and in-depth course content
US$ 200-US$ 400
$
3 semanas
Tempo
Útil?I isaac_mora_cr
Costa Rica
Thank you for giving the required document in the time frame expected. Great to work with you! Looking forward to work again
US$ 100-US$ 200
$
12 dias
Tempo
Útil?T tawanda_m
África do Sul
Excellent work as always
US$ 100-US$ 200
$
7 dias
Tempo
Útil?
Avaliações
50 avaliações deste Serviço
| (44) | ||
| (4) | ||
| (1) | ||
| (0) | ||
| (1) |
Classificação detalhada
- Nível de comunicação do freelancer
- Recomendar a um amigo
- Serviço conforme a descrição
Ordenar por
Mais relevante
A ajaxjava
Estados Unidos
Thank you for the great work
Até US$ 50
$
7 dias
Tempo
Útil?I isaac_mora_cr
Costa Rica
Taha's work in Support & IT was solid, though the documentation needs improvement. He was polite, demonstrated deep understanding, and maintained proactive communication throughout the project.
US$ 100-US$ 200
$
13 dias
Tempo
Útil?L laureenbaddoo
Estados Unidos
Very informative and in-depth course content
US$ 200-US$ 400
$
3 semanas
Tempo
Útil?I isaac_mora_cr
Costa Rica
Thank you for giving the required document in the time frame expected. Great to work with you! Looking forward to work again
US$ 100-US$ 200
$
12 dias
Tempo
Útil?T tawanda_m
África do Sul
Excellent work as always
US$ 100-US$ 200
$
7 dias
Tempo
Útil?
