I run a Laravel application on a self-managed VPS that currently relies only on basic protections. I now need a specialist who can take security to the next level, with the clear objective of safeguarding user data and blocking any form of unauthorized access. The most critical touchpoints are the login workflow, the database layer, and the admin panel. After an initial review of the existing setup, I’d like you to implement best-practice hardening for both the application and the server. Common tools such as Laravel Sanctum/Passport, 2-factor authentication, firewall tuning (e.g. UFW, Fail2Ban), SSL/TLS enforcement, database permission tightening, and automated backup verification are all welcome if they fit the findings of your audit. Deliverables • Comprehensive security audit report outlining current vulnerabilities • Step-by-step remediation plan and timeline • Implementation of approved fixes and configurations • Final penetration test showing no critical or high-severity issues Please share relevant Laravel or VPS security projects you’ve completed and your preferred toolchain for both auditing and implementation.