Upwork home
Sign up
Secondary

Hire the best Network Security Engineers

Check out Network Security Engineers with the skills you need for your next job.
Hire freelancers
Clients rate Network Security Engineers
Rating is 4.8 out of 5.
4.8/5
based on 3,225 client reviews
  2. Development & IT Talent
  3. (Current) Network Security Engineers
  • $150 hourly

    • 5.0/5
    • (91 jobs)
    Telecommunication and Systems engineer with a focus on Cloud, Networking and Linux, experience in Infrastructure management and deployment. Deployed Private Cloud infrastructure, Datacenter Network Design for Multi-tenancy, fault-tolerant design, NIC Bonding and VRRP for High Availability. Stack: *Full virtual networking with vSwitches and vRouters *VLAN, VxLAN, GRE and Overlay tunnels *IPv6 *MP-BGP, EVPN *Firewalling *VPN/OpenVPN/IPSec/WireGuard/Site to Site and Client-Server *Advanced Linux management: IPTables, Kernel modules, Virtualization, Networking. *Traffic engineering *Advanced StrongSwan IPSec tunnels, XFRM *Cloudstack with Open vSwitch *OpenNebula with Open vSwitch *OpenDaylight SDN controller with OpenvSwitch *Advanced Proxy setup with Squid/Nginx *Virtuozzo and OpenVZ *KVM and Libvirtd *RADIUS and FreeRADIUS *Pacemaker/Corosync/Keepalived HA cluster *MTLS design and implementation with NGINX *IoT gateway implementation with Raspberry Pi and 4G modems *DevOps experience with Chef and Ansible *Bash and Python scripting
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Internet of Things
    Apache CloudStack
    Linux System Administration
    OpenVPN
    Computer Network
    Private Cloud
    Kernel-based Virtual Machine
    System Administration
    Firewall
    Ubuntu
    Linux
    Internet Protocol Security
    Network Engineering
    VPN
  • $225 hourly

    • 5.0/5
    • (89 jobs)
    Hey, I'm James. I've been a self-employed business network and server admin for 21+ years. I've worked with all flavors of Linux and Windows for some of the best businesses in the country. My average customer that I've worked with has been with me over 10 years. I specialize in analyzing current infrastructure and determining the needs of my clients then providing a written plan to correct any issues and protect the business systems from hackers and cryptolockers. In one of my recent projects, I consulted with a six billion dollar, publicly traded company to completely redesign their infrastructure to have redundant firewalls, VMWare host servers, leased fiber lines directly to Amazon AWS with a VPN backup over a regular Internet circuit that would automatically fail over in case of any circuit issue. The vmware servers would auto migrate the guests in the case of overload or host server failure. All power systems were redundant with two powersupplies for each piece of equipment. At the end of this project, we had reduced their monthly cost of management by over 25,000 per month and reduced their server load from over 20 servers to just 8 servers. When you hire me, here's what you can expect: 1. First, click the invite button to invite me to your job. 2. Once everything is accepted, I'll jump on the phone or a zoom with you 3. We'll go over the details of the job and I'll ask questions to drill down to the specific goals you want to accomplish. 4. I'll provide you with a high level written plan to address your goals along with expected time needed to complete your project. 5. When we agree on the timeline and process, I will execute the plan. So, if this sounds good, just click the "invite" button and we can start.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Docker
    Email Design
    Network Engineering
    Network Administration
    Network Monitoring
    Network Design
    Linux System Administration
    Network Planning
    Web Hosting
    Windows Administration
    Virtualization
    System Administration
    System Monitoring
    NGINX
  • $38 hourly

    • 5.0/5
    • (118 jobs)
    I have 30-years experience in network projects including design, implementation, system administration and in software development. For the first 5 years of my career I worked on software development: coding and especially testing. For the last 25 years I'm working on implementation and maintenance of University of Nis WAN. Last 20 years I'm deeply involved in AMRES (Academic Network of Serbia) project. Don't fix it if it ain't broken, don't break it if you can't fix it! SKILLS SUMMARY - Any system administration tasks - Operating Systems: any *nix (Linux, FreeBSD, SGI IRIX, SCO, Solaris, OSX), Windows 3.1/9x/Me/XP/Vista/W7/W8/W10, WinServer NT/2K/2003/2008/2012/2016 - LAN & WAN: Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI and Wireless LANs. T1/T3, SDH/SONET, Frame Relay, WDM, ISDN, ADSL, SHDSL, Cable Modems, Cellular, X.25. - Network Protocols: TCP/IP, IPv6, UDP, OSI, CDP, IP Multicast, IPSec, VoIP, Routing, VLANs, Bridging, Trunking, VPN, SNA, DLS - Network Services & servers: SMTP/POP3/IMAP, FTP/SFTP, Telnet/SSH, HTTP/HTTPS, DNS, DHCP, NNTP, NTP, LDAP, SNMP, NETBIOS, Apache, Nginx, MySQL, Plesk, cPanel, Zimbra, VMware, CentOS, Ubuntu, Debian - Network Equipment: various types of modems, firewalls, switches and routers. - Dedicated, VPS and cloud environment servers (Amazon AWS, Google Cloud, MS Azure, Digital Ocean, Linode). - Programming Languages: Unix Shell scripting, BASH, C, Pascal, MS Visual Basic, PHP, HTML, (a bit of Python).
    vsuc_fltilesrefresh_TrophyIcon Network Security
    CentOS
    Ubuntu
    System Administration
    Apache Administration
    SSL
    Let's Encrypt
    Linux System Administration
    Firewall
    Red Hat Administration
    Internet Security
    Cloudflare
    Zimbra Administration
    Unix System Administration
    Network Administration
  • $55 hourly

    • 5.0/5
    • (67 jobs)
    Am a CCIE#26611 with extensive experience in Routing & Switching, Security, Datacenter, Virtualization, Programmability & Automation. Am delivering unique & absolutely different service for the below technologies: * SDN Datacenter: Cisco ACI, VMware NSX, Nutanix Flow, Arista. * SDN Storage: Cisco HyperFlex, Nutanix HCI, VMware VSAN. * SDN Access: Cisco DNA, LISP Implementation, Cisco Spaces. * SDN WAN: Cisco SDWAN, VMware VeloCloud, SilverPeak, PaloAlto SDWAN, FortiGate SDWAN, Meraki. * Programmability & Automation Controllers: Python & API tools to automate business intent & workflows within networks, Ansible, Chef, NSO, Terraform, OpenShift. * Monitoring Applications: Zabbix, SolarWinds, Home Made Custom Tools, Nmap, Packet Tracer (Wireshark). * Routing & Switching and Wireless Technologies: Cisco, Mikrotik, Juniper, FS, Arista. * Security: Cisco, PaloAlto, Meraki, FortiNet, Ubiquiti, VMware MDM. * Datacenter, Cloud Computing, Cloud Native, Virtualization & HCI Solutions. * Micro-segmentation & Containerized Applications: Docker, Kubernetes. * API Gateways & Swagger Documentation. * Python Scripting for DevOps, SecOps, NetOps & IaC. * Technical Writing & Documentation. Please refer to my LinkedIn account aossama. Certifications: * CCIE Enterprise CCIE#26611. * Cisco CCNP DevNet. * Cisco CCNP Enterprise. * Cisco CCNP Datacenter. * Cisco ACI Certified Specialist.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    MikroTik
    Cisco Meraki
    Palo Alto Firewalls
    Network Design
    Network Monitoring
    Network Engineering
    Python
    Information Technology
    Cisco Certified Internetwork Expert
    Cisco ACI
    Software-Defined Networking
    VMWare
    Virtualization
    Cisco
  • $70 hourly

    • 5.0/5
    • (18 jobs)
    My approach involves a meticulous understanding of project requirements, coupled with a hands-on approach to problem-solving. I am committed to delivering comprehensive solutions that span from the endpoint to the perimeter, ensuring the integrity and security of your IT infrastructure. Key Areas of Expertise: - Cybersecurity: Specialized in Fortinet products - Fortigate, Forticlient, FortiEMS, Fortianalyzer, FortiManager, Fortiswitch, FortiAP - with a keen focus on innovative solutions. I'm also Fortinet NSE4 certified and an official Advocate Fortinet Partner. - Virtualization: Proficient in installation, configuration, and troubleshooting of virtualization solutions using VMware and Hyper-V. - Cloud Solutions/Architect: Well-versed in Microsoft 365 and Azure cloud solutions. - Networking: Extensive experience in building and implementing end-to-end projects for small/medium LAN/WAN environments using a variety of vendors and technologies like Cisco, Aruba, and Fortinet. Why Choose Me? - Diverse Skill Set: As a "jack of all trades," I bring a wealth of experience across various IT domains. - Cybersecurity Focus: My dedication to Cybersecurity and Fortinet projects ensures cutting-edge solutions. - Commitment: I am incredibly responsive, responsible, and available for any IT infrastructure/operation project, ready to contribute my expertise to drive your success.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    DNS
    Microsoft Active Directory
    VMware vSphere
    Virtual LAN
    Network Administration
    LAN Implementation
    Fortinet
    Cisco UCS
  • $70 hourly

    • 5.0/5
    • (218 jobs)
    I am an Elastic Stack (ELK) Certified Engineer. I am an expert for Elasticsearch, Logstash, Kibana, SIEM, Beats, Wazuh, Elastalert and other elastic stack products. I have been working with Elasticsearch since its version 1.5. I have implemented large-scale implementations dealing with billions of documents and TBs of data. I have implemented various use cases with Elasticsearch for organizing, cleaning, visualizing and securing data at a large scale. I am also an expert in Solr, Sphinx Search, and Manticore search. I have 10+ years of experience implementing, scaling, fine-tuning large scale full-text search using Solr, Sphinx/Manticore search. Have implemented several large-scale searches with Elasticsearch, Sphinx, Manticore and Solr for eCommerce, forums, portals, internal custom search and more. I am an expert in setting up fully functional, large-scale SIEM using Elastic Stack (ELK). Have implemented log ingestion, thread hunting, alerting, reporting etc. for SIEM. I am an expert of beats, wazuh, elastalert and many more. I am also an expert with XPack for securing Elastic Stack. If you need to implement, upgrade, maintain, optimize, need proof of concept around ELK, I can help. If you are having any sort of issues with Sphinx / Manticore, Elasticsearch or Solr, you should contact me.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Grok Framework
    Grafana
    Kibana
    Logstash
    Firewall
    Elasticsearch
    Magento
    Apache Lucene
    PHP
    Full-Text Search
    Sphinx
    Apache Solr
    MySQL
  • $120 hourly

    • 5.0/5
    • (30 jobs)
    I specialize in building, designing and troubleshooting network infrastructure and transport. Wired, Wireless, LAN, WAN, VPN and Security solutions to fit your business needs. I have been employed as a Network Engineer for Snapchat, Fortinet, Nuance Communications, Port of Seattle, Infospace, and Costco Wholesale. As a consultant I have worked on network and firewall projects as part of the AT&T consulting team for the State of Texas, New York Yankees and HP Enterprise. As a Professional Services Engineer for Fortinet, I deployed hundreds of Fortinet appliances for a large-scale IPSec VPN deployment for the State of Washington. Vendor Certifications include: Cisco CCNA, CCNP, Fortinet NSE4, NSE5, CWNA, Ekahau ECSE Design, Juniper JNCIA, and ITIL Foundations.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Google Cloud Platform
    F5, Inc.
    Cisco Certified Network Associate
    Wireless Communication
    Network Design
    Ubiquiti
    Extreme Networks
    Network Engineering
    Fortinet
  • $65 hourly

    • 4.6/5
    • (35 jobs)
    Certified Network Administrator/ Enterprise Network Expert Certified Systems Engineering Expert Certified Systems Administration, Certified IT Support Specialist/Cyber Security Consultant Certified Network Security Expert (Home / Business), VAPT Certified System Security Expert. Certified HelpDesk Support Specialist Microsoft Azure Certified Network Security Certified Network Security and deployment Consultant Domotz Expert Integrations Fortigate Certified Sonicwall Expert, Unifi/Ubiquiti Expert Hands on Experience on: Microsoft Exchange Online Windows 10 Administration Server Administration Experr Windows 11 Administration Remote IT Management/ VPN management Windows Server Administration Expert Domain Migration Microsoft Outlook Network Equipment Server Virtualization Microsoft Windows Powershell Microsoft Active Directory Office 365 DNS DHCP Cisco, Fortinet, Fortigate, Pfsense Expert, Unifi/Ubiquiti Expert Administrator UDM pro, USG Expert UDM vpn Expert unifi specialist., MDM solution Specialist(jamfpro, Sophos mdm,) Azure, AWS, Google Work Space, Contabo, Rackspace Unifi, Ubiquiti Expert, SonicWall Expert(VPN troubleshooting) Threat Hunting, IPS ,IDS, WEB SECURITY, QUALYS, SENTINALONE. SOPHOS Network Administration, System Administration, Office365, Intune, MDM, Windows users Administration. Domotz admin, NAS, VLan Expert Windows servers 2016-2022 Failover Clustering , Hyper-V management, RDS, Synology DSM, Virtual Hosting. QNAP , QSAN ,NAS,SAN Active Directory Expert, VPN, Switches ,Routers Zendesk trainer, EDR, XDR, Connectwise Admin, CWRMM, Sentinal one Azure Sentinal. Fortinet, Cisco, Network monitoring Expert, Veeam Backup Specialist(Cloudberry, SPX) Having Certs (NSE1, NSE2, NSE3) ,CCNA, CCNP(training) Crowd Strike Deployment, TrendMicro deployment. Cloud Network/ System Administrator and Network/System Security consultant NSE 1 NSE 2 ICSI CNSS certified having vast and versatile experience in Network Administration with vast working in cloud technologies, QNAPS, VIRTUAL PRIVATE SERVERS , ACTIVE DIRECTORY. SECURING THE WEBSERVERS , SECURITY OF ON PREM NETWORK. Have worked on the antivirus deployments Crowd strike TrendMicro, Webroot, managing incidents and alerts on them. also have hands on Cisco network designs firewall configurations. Server and system administration grip on Windows Server (2012 2016 2019 2022) remote task management and remote assistant to the clients as well worked with the organization and provided them with tech skills network and system administration support as well as offered soft skills, my primary skillset is Network Design Network security OWASP mitigation System Hardening System Security Network Optimization Server administration Server Migrations Network troubleshooting Firewall Configurations Backup policies / configurations Desktop support. Cloud management Failover clustering Deployment and Management (Windows Server 2019, 2016, 2022). System security Solutions and Deployment. System Hardening. I will be optimizing the networks and will be providing industry solutions to clients including deployment of Antiviruses like crowd strike as well as trend micro I will be looking forward for more technical work here to pursue as a network and security consultant and technical support freelancer. I am sure I will provide quality work to the clients as per their requirements, and for me, client satisfaction is much important than the earned amount. I have worked with the US dental offices and MSP, so I want to invest my time here to reap good results. and serve the people here with my good technical skills about home networks and office networks . Hands on experience on Cisco Switches(CCNA CCNP LEVEL) and SonicWALL's + Fortigate firewalls, QNAP , QSAN, SYNOLOGY, Buffalo NAS, During My freelancing career i have worked on multiple projects like Network Designs solution deployment across the organization and on top of it have hands on Experience of vendor Management and have know how towards the TrendMicro and Crowd Strike. Setting up IT office were the main procedures during my Job Tenures and also Veeam backup deployment across the organization. EDR, MDR AWS AZURE Specialist. Experience in QNAPS, Synology, Virtualization Expert, Hyper V. Hands on Experience for providing Remote IT Support to multiple clients. Managjng Networks servers plus Security configurations.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Ubiquiti
    Information Security
    Network Administration
    Backup Administration
    Intrusion Prevention System
    Backup & Migration
    Cisco Certified Network Associate
    System Security
    Network Engineering
    Microsoft Azure
    Microsoft Active Directory
    Office 365
    System Administration
  • $30 hourly

    • 4.8/5
    • (354 jobs)
    With a degree in Computer Engineering and a passion for writing, my experience spans across writing whitepapers, blogs, research reports, content for websites, thesis for academic submissions, sales pitch, business proposals and more. I am highly organized and schedule my time to get things accomplished accordingly. I am detail-oriented and an excellent researcher. I can be entrusted with big projects as I prefer to complete my work before deadlines giving you ample time to review my work and provide feedback. I take pride in my work
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Amazon Web Services
    Robotics
    Editing & Proofreading
    Artificial Intelligence
    Blockchain
    Website Copywriting
    ISO 27001
    Cloud Security
    Information Security
    Disaster Recovery
    Policy Writing
    Technical Writing
    PCI
    Project Risk Management
  • $35 hourly

    • 4.7/5
    • (49 jobs)
    I'm a Security Specialist, with +15 yr of experience in the security field and +20 yr in system administration (Linux, AIX, BSD and Windows) on banking, education and R&D sectors. Feel free to get in touch if you need: * Security infrastructure administration or advice * Security Audit & Pentesting * Linux/Windows/AIX system administration or server troubleshooting and LAMP/LEMP stack deployments and fine tunning. I will be glad to collaborate on your project.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    AWS Systems Manager
    Windows Administration
    Wireless Security
    Security Engineering
    Security Infrastructure
    Linux System Administration
    Internet Security
    Security Analysis
    Information Security
  • $100 hourly

    • 4.9/5
    • (26 jobs)
    Strongly motivated network security expert with extensive experience of designing, implemeneting, troubleshooting and documenting complex security architectrures in multiple projects having global scale at companies such as Cisco, Capgemini. Eager to share knowledge and discuss IT and networking technologies with others. Keen on broadening knowledge about network and cloud security. Experienced with vedors/devices: ● Routing: Cisco ASR, Cisco ISR, MikroTik, Cisco Nexus ● Switching: Cisco Nexus, Cisco Catalyst, Juniper, FortiSwitch ● Security: FortiGate, FortiManager, FortiAnalyzer, FortiAuthenticator, Palo Alto, Checkpoint, Cisco ASA, Cisco FTD, pfSense, Sophos ● LB: AVI ● Cloud networking: AWS, OCI Certifications: NSE4 RHCSA RHCE CCNA Cloudflare Accredited Configuration Engineer Cloudflare Accredited Solutions Architect
    vsuc_fltilesrefresh_TrophyIcon Network Security
    FortiGate Firewall
    Cloudflare
    Check Point
    Fortinet
    Palo Alto Firewalls
    Network Architecture
    Cloud Security
  • $175 hourly

    • 5.0/5
    • (3 jobs)
    As an independent cloud architect, I can help your business: * Plan your cloud strategy * Design and build secure, scalable cloud infrastructure * Find and fix security vulnerabilities * Reduce cloud spending I do this by addressing high value and high risk priorities first, planning and delivering concrete milestones on time, and supporting you going forward. I'm a dirty-hands technical guy but I'm also a veteran business founder, so I understand that your business runs on more than technology. Security intersects everything I do, from business continuity to change management, identity management, disaster recovery, monitoring and more. Most of my clients are smaller or medium businesses, so I see many environments in transition. Often companies slide into consuming cloud resources in a not-so strategic way, starting with a small project, then another, etc., and it can get out of hand with spending too much and security issues. Amazon/Azure/Google encourage this sort of “spending creep” - it serves the cloud providers very well, but a lot of businesses are overdue for a re-think of their cloud environments. Usually, I first take a high-level view of where you stand, whether you are planning to transition services to a cloud platform or already in it, and identify low-hanging fruit to save money, bolt down security, and automate everyday tasks. My initial consultation is FREE, and I can deliver valuable insight in just a few hours. Then I plan a longer-term roadmap to accommodate your business’ growth, in which the underlying cloud infrastructure will not slow down or break down over time. Container orchestration with Kubernetes or ECS is a particular focus of my work. A lot of companies have a proliferation of ad hoc servers and could benefit from consolidating with containers, but lack the skills in-house. I can help you modernize with containers, scale up and save money. With me, there’s never a salesperson trying to up-sell services, and I don’t delegate your work to a junior engineer. I work with you personally and take personal responsibility for everything I do today and in the future. I also document and check-in everything I do, so you can always share it with your team or other service providers. I tend to get involved for a few weeks to a few months to realize concrete deliverables, then stay involved on an as-needed basis for support. Cost-wise, I can guarantee that my services will be less expensive than a big consultancy with a fancy website, and also less expensive than a full-time in-house cloud architect. Geographically, I live in Philadelphia and work from my own office. I time-track everything I do, push all my work to your Git repository, and usually am available on a video call within an hour or two. With decades of experience in engineering teams, critical data-centers, start-ups and consulting, you can count on me to provide straightforward, pragmatic advice, solve high-priority problems promptly and deliver quality. Top references from current satisfied customers are available. Hands-on with Kubernetes, Docker, Python, Terraform/CloudFormation, Git, Linux, security, security and more security. Recent projects: - HIPAA compliant health care app on AWS ECS - Kubernetes architecture and implementation for a "smart laboratory" SaaS application - Security assessment for a government contractor - Serverless architecture for an IoT application - API integration with a major energy provider - Kubernetes migration for a machine learning application - AWS autoscaling infrastructure for a hotel management platform - Technical design for clinical trials data for an international pharma company - AWS cost analysis and 50% cost reduction for an energy trading platform
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Infrastructure as Code
    Linux
    Terraform
    DevOps
    Amazon Web Services
    AWS CloudFormation
    Kubernetes
    Containerization
    JavaScript
    Docker
    Cloud Architecture
    Information Security
    Amazon ECS
    Python
  • $35 hourly

    • 4.9/5
    • (291 jobs)
    CCSE, ITILv3 , Fortinet NSE4 CCNP R&S,CCNP Security. In the last 12 years, I have been working on various network products and have gained comprehensive experience in Cisco, Fortinet, Sonicwall, Checkpoint, HP, F5, Radware technologies. I have been involved in the design, configuration, and troubleshooting of Network products. Firewalls: Cisco ASA 5500 Series Cisco ASA 5500-X Series Cisco Firepower 2100Series Cisco Firepower 4100Series Fortigate 400F Fortigate 200F Fortigate 100F Checkpoint 5800 Appliance Checkpoint 12400 Appliances Checkpoint 12600 Appliances Sonicwall TZ Series Sonicwall NSA Series Pfsense ZTNA FortiGate ZTNA Load Balancers: F5 BIG-IP Application Delivery Controllers Radware Application Delivery Controllers Array Application Delivery Controllers Fortinet Application Delivery Controllers. Routers: Cisco, Arista, HP Switches: Cisco Catalyst Cisco Nexus N5K & N9K HP Switches Wireless Controller & Access Points: Cisco WLC, Aruba WLC Unify WLC Meraki
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Cisco Router
    Firewall
    SonicWall
    Cisco Firepower Threat Defense
    FortiGate Firewall
    Zero Trust Architecture
    Web Proxy
    Cisco ASA
    Cisco Certified Network Professional
    Load Balancing
    Check Point
    Cisco Meraki
    VPN
  • $30 hourly

    • 5.0/5
    • (3 jobs)
    I am a seasoned network security engineer with over 6 years of industry experience. With a strong background in securing complex networks and a passion for cybersecurity, I have established myself as a reliable and resourceful professional in the field. Throughout my career, I have worked with diverse organizations, ranging from small startups to large enterprises, ensuring the integrity and confidentiality of their network systems. I have a deep understanding of network infrastructure, protocols, and security technologies, allowing me to design and implement robust security measures tailored to each organization's unique needs. In addition to my technical skills, I possess excellent problem-solving abilities and a proactive approach to addressing security challenges. I stay up-to-date with the latest advancements in the cybersecurity landscape, continuously expanding my knowledge to stay ahead of emerging threats. Throughout my career, I have collaborated with cross-functional teams, providing guidance and support to IT departments and stakeholders. My strong communication and interpersonal skills enable me to effectively convey complex security concepts to both technical and non-technical audiences. I hold a Bachelor's degree in Computer Science and have obtained the CCNP Security (Cisco Certified Network Professional Security) certification, which validates my expertise in securing Cisco networks.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    TCP/IP
    Cisco Router
    Routing
    Network Engineering
    Cisco IOS
    Computing & Networking
    Computer Network
    Cisco Certified Network Professional
    Palo Alto Firewalls
    SonicWall
    Cisco
    Firewall
    VPN
    Cisco ASA
  • $99 hourly

    • 5.0/5
    • (8 jobs)
    Experienced technology leader and cyber security expert. Experience building security programs from the ground up for large organizations, conducting security audits, technical policy writing, and gap analysis. I am efficient, driven, and highly capable in all areas of cybersecurity. I hold both a Masters degree (MBA) as well as a Bachelor of Science in Business, IT Management. Additionally, I have received certifications which include: CISSP, CISA, CISM, GSLC, CCNA, CCNA-S, and certifications from Microsoft and CompTIA.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Firewall
    Technical Writing
    IT Consultation
    System Configuration
    Troubleshooting
    System Administration
    Information Security
    Security Engineering
    System Security
    IT Management
    IT Compliance Audit
    Network Engineering
  • $30 hourly

    • 5.0/5
    • (15 jobs)
    A highly motivated learner, currently pursuing an undergraduate degree in Cyber Security and a former exchange student in the United States. I would be happy to do your data entry/ web scraping/ cyber security related (forensics, vulnerability assessment)/ python project development and virtual assistant tasks. I will ensure you good and proper communication and will see that your needs are met 100% while maintaining work ethics. Thank you for having a look!
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Web App Penetration Testing
    Information Security
    Wireshark
    Nessus
    Metasploit
    Penetration Testing
    Kali Linux
    C++
    Python
    Internet Security
    Network Penetration Testing
    Linux
    Vulnerability Assessment
    Digital Forensics
  • $70 hourly

    • 4.9/5
    • (21 jobs)
    Over 12 years of extensive experience in corporate networks, FinTechs and ISPs. In Summary, my credentials include: • Experience with Operations and Deployments of large scale networks • Design and implementation of Optimized Core Network Topology • In-depth experience with telecommunications and Core/IP Network technologies • Multi-vendor expertise in Palo Alto Firewalls and Cisco Routers, Firewalls, Firepower devices and Switches • Implementation of CI/CD for network change deployment using GIT and Ansible • Performing with the team as well as on individual level with the availability of 24/7 Core Competencies: • Firewall: Access control, High availability, Virtualization (Security Contexts), SLA, Tracks, Dynamic/Static/Policy NAT/PAT, IPSec VPNs (Site to Site & Route-Based), Packet Captures, Cisco Firepower Management Center, Palo Alto Panaroma, Threat Prevention, NG-IPS, URL Filtering. • Router: Routing (OSPF, BGP, Policy Base Routing using Route Maps), Layer 3 Redundancy (HSRP, VRRP, GLBP), IP Spoofing, Virtualization (VRF), Embedded Event Manager, IP SLA, Enhanced Object Tracking, Dynamic/Static/Policy NAT/PAT, GRE Tunnels, VPNs (Site to Site IPSec). • Switch: VLANs, Trunks, VTP, Spanning Tree Protocol, STP Security, EtherChannels (LACP, PAGP), Nexus VPC, VSS, FlexStack. • Technology: IPv4, TCP/IP, UDP, ICMP, 802.1d VLANs/STP, IPSec & GRE VPNs, ARP, SSL, DNS, HTTP/HTTPS, DHCP, SFTP. • Tools: GIT, Ansible, Docker, Netbox, SVN, BitBucket, DevOps, Cacti, LANState, OTRS, Mozilla Thunderbird, Cisco ISE, VMware Workstation, Virtual Box, GNS3, Packet Tracer, Wireshark. PCNSA CCNA 200-120 CCNA Security 640-554 CCNP R & S
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Wireshark
    Cisco Firepower Threat Defense
    Virtualization
    Docker
    Palo Alto Firewalls
    Ansible
    Network Administration
    Network Design
    Cisco ASA
    Firewall
    Python
  • $80 hourly

    • 4.9/5
    • (27 jobs)
    ✅ Penetration Tester and Cyber security consultant acknowledged by leading companies in the tech field for reporting several high, and critical vulnerabilities in their systems and websites. After I go through multiple pentestinig techniques manually and automatically, at the end of the engagement, professional reports are provided, that will outline every vulnerability found, proofs-of-concept, and solutions on how to fix the discovered vulnerabilities. Let's get in touch and get your website and system secured 🛡️ 🏆 Cyber security consultation 🏆 Cyber security training 🏆 Network Penetration Testing 🏆 Active Directory Penetration Testing 🏆 Web penetration testing 🏆 Vulnerabilities Assessment 🏆 Cyber security training labs Development 🏆 CTF Labs development 🏆 Synack Red Teamer 🏆 Acknowledged by tech lead companies, Yahoo, Nokia, ZTE, Swisscom, Synology, ElearnSecurity, Payoneer, Sophos, Xiaomi. 🏆 I was number 16 on Turkey and Egypt on HackTheBox. 🏆 Work on Weekends 🏆 5 Years Experience
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Digital Forensics
    Metasploit
    Penetration Testing
    Ethical Hacking
    Kali Linux
    Security Testing
    Vulnerability Assessment
    Nessus
    Web App Penetration Testing
    Network Penetration Testing
    Docker
    OWASP
    Web Application Security
    Linux
  • $50 hourly

    • 4.9/5
    • (133 jobs)
    Over 25 years of progressive experience in computer networks field. Comprehensive network technology knowledge in designing, implementation, administration and support. In-depth knowledge of deploying IP protocols and troubleshooting. Experienced in layer 2 switching and 3 routing, security and wireless. Extensive experience in Planning, Implementation, Configuring, Testing and Troubleshooting of networking systems. Competent in handling escalating problems. 7+ years as a Cisco Networking Academy Manager and Instructor. In-depth knowledge of major server OSes. Exceptional analytical abilities. Confident, polite and patient.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    PfSense
    Proxmox VE
    Wireless Network Implementation
    VPN
    Wireless Security
    Ubuntu
    Cisco Certified Design Associate
    OpenVPN
    Server Virtualization
    Linux System Administration
    Cisco IOS
    Network Design
    Cisco Certified Network Associate
  • $40 hourly

    • 5.0/5
    • (146 jobs)
    With 14 years of industry experience, I began my career as a web developer, specializing in PHP with Joomla and later mastering WordPress, including WooCommerce. I have a deep understanding of database optimization to ensure peak performance. About eight years ago, I transitioned to Linux Server Administration, developing expertise in malware removal, including Blackhole exploits, Pharma hacks, redirection hacks, phishing hacks, and spoofing. I have successfully cleaned websites to secure Google approvals that clients were previously unable to obtain. This involved deep cleaning of codes and fixing issues that even top scanning tools did not detect. I started working with control panels like Plesk, WHM (CPanel), and VestaCP, before devising a fast and secure LEMP solution. This solution integrates advanced security measures, whether using CloudFlare or not, with tailored code snippets that enhance security and optimization, significantly improving site performance. I have extensive experience managing WordPress blogs and WooCommerce stores, providing comprehensive consultations from server selection to optimization, ensuring they can handle significant traffic loads, even during promotions, without encountering the white screen error in shopping carts. For Aapanel, I transformed it into a sophisticated product through meticulous configuration and research, tailoring it to meet user needs and ensuring responsive service. My skills also include performing security audits, conducting load stress tests, and monitoring and tracking server requests. I handle debugging, log management, and automate alerts. Additionally, I offer custom backup solutions for servers and websites, managing them across S3 buckets, Git repositories, Google Drive, or Dropbox, and I specialize in API integrations. I hold a diploma, a BTech, and an MBA in Information Technology, and have obtained numerous professional certifications from prestigious institutions including IBM, Cisco, Fortinet, Google, Oracle, Amazon, and I am also an Aviatrix certified ACE Engineer. My profile features an array of endorsements and testimonials from clients, all attesting to a 100% success rate in project delivery - feel free to review these testimonials to see what they have said. I am a member of respected associations such as NASSCOM, TiE, and CII, which keep me connected with industry trends and innovations. My role mandates a continuous pursuit of knowledge, ensuring that my clients' systems are always up to date and optimized. My problem-solving skills are frequently highlighted by clients, with one recent example where a client stated, "Before you, I conducted 10 interviews and none were able to grasp the issue, yet you not only understood it but also resolved it swiftly." My expertise has led clients to entrust me with managing their teams and servers, leading to enhanced team performance and product deliveries well ahead of deadlines. Working primarily in PHP/MySQL and the Laravel framework, I utilize tools such as VSCode, Git, NeoVim, and tmux. As a console enthusiast and productivity hacker, I focus on simplifying processes and extensively write automations to enhance efficiency. 🚀 Are you ready to take your project to the next level? Let’s collaborate and make it a reality! Over the years, I have developed a robust skill set across a diverse range of technologies and platforms. This includes expertise with various project management and collaboration tools such as Trello, Asana, Bitrix, and Basecamp; communication tools like Slack; and productivity suites like Google Apps and Zoho. Additionally, I'm skilled in email automation, Gsheets and setting up efficient workflows. My technical background also spans Platform.sh, Hugo, Netlify, Git for CI/CD, WP Engine, Vultr, Digital Ocean, Linode, AWS, GCP, Oracle, Godaddy, SiteGround, Bluehost, custom VPNs using OpenVPN, Lara Classified, and custom funnel systems in both Laravel and WordPress. More of other Keywords include DNS, DMARC, SPF, NS, Lightsail, EC2, Policies, GDPR, DB optimisation, Redis, MemCache, Fast-cgi, php-fpm, nginx, apache, page caching, load test, New Relic, Gridpane, Cloudways, tokens, composer, php-cli, wp-cli, Paypal, Stripe, GitHub, Bluesnap, ecommerce, healthcare, sales funnel, active campaign, telegram, whatsapp, blockchain, AI, crypto. 💼 While I am happy to work on an hourly basis initially to demonstrate my capabilities, I am particularly keen on establishing long-term relationships through monthly retainers, such as dedicating 10 hours a week to your project. Your success is my success, and I am eager to contribute to your journey towards achieving remarkable outcomes. ✉️ Message me today, and let’s kickstart our collaboration with your next project!
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Web Hosting
    Network Administration
    Website Security
    Linux System Administration
    WordPress Plugin
    Web Application Security
    Mail Server Implementation
    Internet Security
    WordPress Malware Removal
    Penetration Testing
    MySQL
    Virus Removal
    API
    PHP
  • $39 hourly

    • 5.0/5
    • (28 jobs)
    I am OSCP Certified with 7+ years of professional experience in different pentesting and red teaming trade crafts. Challenges make me work more efficiently. What is a better challenge than doing penetration testing in which knowledge and experience are the main factors to successfully finding a way inside Targets? - Manual testing approaches with real-impact vulnerabilities - Exposure to multinational companies and Swiss banks - Industry-renowned certifications (OSCP - eWPTXv2 - CMSE - CPTE - CEI - CCNA) - "Find my way in" mentality therefore 80% of projects end up in successful breaches Key Skills for Pentesting Jobs ---------------------------------- Web Applications Pentesting Network Pentesting REST API/SOAP Pentesting Mobile Applications Pentesting Desktop Applications Pentesting Source Code Reviews Active Directory Assessment Key Skills for Offensive Jobs --------------------------------- Email Phishing (Maldoc or stats based) Social Engineering Assume Breach Scenarios MITRE ATT&CK framework Simulations Tactics, Techniques, and Procedures Testing against patched Infra Malware Development
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Black Box Testing
    Information Security
    Vulnerability Assessment
    System Security
    Application Security
    Information Security Consultation
    Cloud Security
    Penetration Testing
    Web App Penetration Testing
    Network Penetration Testing
    Web Application Security
    Ethical Hacking
    Security Testing
    Mobile App Testing
  • $97 hourly

    • 5.0/5
    • (35 jobs)
    I'm working as an Account manager at the Apriorit company. My main responsibility is to manage existent projects and to seek new opportunities for our company. The key areas of development where we have a strong experience are File System Driver (Windows, Linux, MacOS), Embedded Linux development, IoT, Network Driver Development, Device Driver Development, Kernel development, C and C++ Programming (C++ development, C/C++), DLL injection, Virtualization solutions (all main types of Hypervisor), CyberSecurity, Cybersecurity solutions and Penetration Testing both Inside and Outside, API Hook, Embedded Solutions, Data Acquisition, Mobile Data Management (MDM). So, if you need high qualified Kernel Developer - we can help you! So main targets of solutions are focused on low-level development - management and development of file system filter driver, USB management driver, network adapter drivers, having strong experience for these we can do a project in time and limited budget. If we are talking about Virtualization - they are major complex solutions related to Remote access, Single sign-on software and solutions development, or Data Protection solution. Have advanced skills of working and understanding for main hypervisors, such as Hyper-V, Xen, ESXi, KVM. We can discuss more suitable architecture idea for a customer and scheme of work, and even propose a solution based on our own SDK, which can speed up the process of development. In addition, we are highly experienced in Image Processing and Computer Vision, CUDA and speed-up calculations of NVIDIA Video Card processing, GPU programming, OpenCV, OpenGL, Photo and Video Object recognition. We are working with Deep Learning modeling (TF, CoreML, Caffee, etc.) and computer Science/Machine learning. We have used Python3 (Anaconda, Spyder), Tensorflow, Numpy, Scipy, Keras, Theano, Scikit-learn. And we have an experienced Reverse Engineering Team, which can help you to dissect and analyse any system's objects and discover undocumented items. I'm open to different price and project working schemes, please feel free to contact me.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Desktop Application
    Rust
    Microsoft Windows
    Solution Architecture
    Golang
    Embedded System
    Driver Development
    Kernel
    Embedded Linux
    Cybersecurity Management
    TCP/IP
    macOS
    Embedded Application
    C++
  • $12 hourly

    • 4.8/5
    • (4 jobs)
    Hello there, I am a Security Engineer Specialized in Web application Security and penetration Testing. I have more than 3 years of Experience in Penetration Testing in Web application and Server. I have done more than 10 Penetration Testing and I also have written over 15 Cyber Security blogs. Certifications Practical Ethical Hacking (PEH) Blue Team Scholarship CCNA Skills 1. Penetration Testing 2. Web and Mobile Application Security Testing 3. API Security Testing 4. Static Code Analysis 5. Preparing Cyber Security Learning Module, Blog and Training 6. Mobile Application Security 7. IoT Security 8. Social Engineering Awareness 9. Endpoint Security 10. Threat Hunting 11. Secure Coding Practices 12. Wireless Network Security 13. Malware Reverse Engineering Programming Proficiency: 1. Python Scripting and Development 2. Bash Scripting 3. Java Development
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Python
    Penetration Testing
    MySQL
    Ethical Hacking
    Back-End Development
    SQL
    Vulnerability Assessment
    Web App Penetration Testing
    Digital Forensics
    Content Writing
    Encryption
  • $55 hourly

    • 3.5/5
    • (28 jobs)
    My name is Stuart Gray. I am a 38 year old network security engineer. Cutting my teeth with IBM's X-Force Advanced Research and Development at 19, I have almost 20 years of experience, as a professional, in the industry. Around 10 or 11 years old, my grandfather introduced me to Microsoft's Visual Basic IDE (he's had an extremely successful career as a business consultant (finding creative solutions for complex business problems). I was immediately hooked. At 16 years old, I launched a small hosting company. A short while later, I was hired by Internet Security Systems (Creators of BlackICE Defender), to work in their X-Force Advanced Research and Development team. Two years later, they were acquired by IBM. where I continued to work for 6 more years as a software developer (supporting their Proventia IDS/IPS product line *Intrusion Detections/Prevention System*, Internet/Enterprise Scanner product line and Managed Security Services). I left the traditional office for the freedom of independent contracting because it compliments my strengths much more easily. As someone who was drafted into accelerated learning in Kindergarten, I've favored research-based, challenge-based and project-based learning models since 3rd grade. Being independent allows me to continue to grow my knowledge base on my own terms, which in turn keeps me motivated and engaged in self-improvement. I do also appreciate traditional education methods. In my older age, I'm quick to defer to peer-based, mentor-based and teacher-student-based learning methods any time I realize I've hit any kind of speed bump, be it struggling with a concept or simply being lost and wondering how to improve from my grip on the information. It's never been enough for me to know "what it does and how it does it." My thirst for knowledge always pushes me to learn "why it does it that way" and "can I make it better?" My current career objectives are to maintain and advance my knowledge of POSIX-compliant systems. To maintain and advance my knowledge of “cloud” and virtual environments, with a heavy focus on their security, management and automation. To maintain and advance my knowledge of POSIX systems integration with non-compliant environments (Microsoft, etc..). To maintain and advance my knowledge of network security and the network security climate, especially in relation to “real world” scenarios. Some of my strengths are: Managing virtual and cloud-based environments (VMWare, Oracle VirtualBox, KVM, libvirt, Azure, Amazon AWS, Digital Ocean, Linode, Google Cloud Platform), Linux Systems Administration, Unix Systems Administration, Solaris Systems Administration, Advanced knowledge of TCP/IP, Advanced knowledge of network security, Windows Systems Administration, OSX Systems Administration, Python scripting/programming, shell scripts (BASH, ZSH), Linux Kernel Optimization (rebuild from scratch), “Linux From Scratch”, FreeBSD, OpenBSD, HP/UX, AIX. Proprietary firewall environments (IBM Proventia, SonicWall, Fortinet, Palo Alto, Cisco), All Office Productivity Suites (MS Office, IBM Lotus Notes, etc..), Data Center Resource Optimization (airflow, power usage, climate control systems), Malware Prevention/Detection/Analysis/Removal (Strong focus on “malware behavioral characteristics,” detecting malware that’s never been seen before through behavioral techniques and heuristics), Search Engine Optimization strategies, web development, Server Migration, Disaster Prevention and Recovery, Encryption best practices, management and theories, Wake-on-LAN systems and management, this list is far from exhaustive, it really keeps going and going. The important part to note is that I am an engineer. I find solutions. I seek to understand and fix things, and my thirst is unquenchable. :)
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Containerization
    Red Team Assessment
    Kotlin
    Linux System Administration
    WordPress
    cPanel
    Ecommerce Website Development
    Virtualization
    Shopify
    DigitalOcean
    System Hardening
    Google Cloud Platform
    Bourne Shell
    Python
  • $85 hourly

    • 5.0/5
    • (5 jobs)
    I am a CCIE with 20 years of experience. I am a seasoned Sr Network Engineer/Architect with proven experience in enterprise and service provider networks. For the last 18 years, I have focused on migrating customers from various legacy technologies to next gen architectures, which are built around cloud, security, quality of service, redundancy and resiliency. In addition to the actual technology, I would provide documentation and any requested knowledge transfer sessions. I look forward to hearing from you.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Cisco Certified Internetwork Expert
    Cisco Router
    Software-Defined Networking
    Palo Alto Firewalls
    Cisco IOS
    Cisco Meraki
    Cisco ISE
    Network Design
    Cisco ASA
  • $50 hourly

    • 5.0/5
    • (5 jobs)
    Emmanuel is a cloud security engineer with 7+ years of experience in systems auditing, application security, and secure cloud deployment. He has delivered sensitive technology projects across the East African region and globally (remotely) in the public and private sectors. Emmanuel's industry experience is backed by three Microsoft Azure certifications, he is an AWS Certified Cloud Practitioner, a Certified Ethical Hacker, and he holds an MSc in information technology from Carnegie Mellon.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Azure DevOps
    System Administration
    Network Monitoring
    DevOps
    Security Infrastructure
    AWS Server Migration
    Security Analysis
    Internet Security
    Linux System Administration
    Cloud Computing
    Python
    Amazon Web Services
    Microsoft Azure
  • $50 hourly

    • 5.0/5
    • (72 jobs)
    CCIE R&S Certified Network Engineer with 10 years of experience in Networking. - Enterprise data and voice networks; - Service Provider networks; Experience in IOS-XR platforms; - Wireless networks; - Network security with Cisco ASA; CCIE R&S Certified. Experience with following Cisco devices: - Cisco IOS XR: ASR9K, NCS5K - Cisco SOHO and branch office routers: Cisco 800, 1700, 1800, 1900, 2800, 3600, 3700, 3800 series - Cisco service provider routers: Cisco 7200, 7300, 7500, 7600, GSR 12000, ASR 1000, ASR 9000 platforms - Cisco Catalysts switches: 2950, 2960, 3550, 3560, 3750, 3800, 4500, 6500 - Cisco ME series switches: 3400, 6524 - Cisco PIX 515E Experienced in configuring: - Routing: IGP (EIGRP, RIP, OSPF), BGP, NAT, PAT, PBR, MPLS (MPLS-VPN, EoMPLS, VPLS) - Switching: VLANs, VTP, dot1q, q-in-q, Rapid PVST+, MSTP. - Network security: VPNs (IPSEC, IPSEC/GRE), ACLs, Layer 2 Security Features (port security, - DHCP snooping, dynamic ARP inspection, IP source guard) - High Availability: HSRP, VRRP, GLBP, Etherchannel, SSO, IP SLA. - WAN: PPP, PPPoE, PPP Multilink, HDLC. - QoS: Traffic policing and shaping, traffic prioritization. - Cisco PIX: NAT, Failover, Remote VPN, ACLs. I'm looking for new interesting projects related to implementing and designing Cisco IP Networks and IT consulting.
    vsuc_fltilesrefresh_TrophyIcon Network Security
    Cisco Certified Internetwork Expert
    Network Equipment
    Cisco Certified Network Associate
    Network Administration
    Virtual LAN
    Cisco WLC
    Cisco Router
    Cisco Certified Network Professional
    Network Design
    TCP/IP
    Cisco IOS
    VPN
    Cisco ASA
    Internet Protocol Security
  • Want to browse more freelancers?
    Sign up

How it works

1. Post a job (it’s free)

Tell us what you need. Provide as many details as possible, but don’t worry about getting it perfect.

2. Talent comes to you

Get qualified proposals within 24 hours, and meet the candidates you’re excited about. Hire as soon as you’re ready.

3. Collaborate easily

Use Upwork to chat or video call, share files, and track project progress right from the app.

4. Payment simplified

Receive invoices and make payments through Upwork. Only pay for work you authorize.

Trusted by

Inside IT Security: How to Protect Your Network from Every Angle

Network security. Cyber security. Endpoint security. These different, often overlapping arms of IT security can get confusing. As hackers get smarter, it’s increasingly important to know what each does and how to implement them into your own network.

In the wake of the highly-connected Internet of Things (IoT) and the rise of the cloud, we’re facing increased vulnerabilities to our networks—networks that are less monolithic, legacy architectures and more distributed, microservice-based networks. With large-scale data breaches making headlines, whether you’re a small startup or an enterprise organization, security should be a top priority.

In this article, we’ll explore the different types of IT security and what technologies and methods are used to secure each so you can arm your network with the people and plans you need to have excellent lines of defense in place and keep attacks at bay.

The IT security chain

Why are there so many types of IT security? The more links in a network’s chain, the more opportunities for hackers to find their way in. Each component requires its own subsequent security measures—with many of them overlapping and working in tandem, much like the actual components of a network do.

It’s also important to note that with security, there’s no one-size-fits-all approach. Every network is different and requires skilled professionals to create tailored plans across all fronts: apps, databases, network devices, cloud servers, IT infrastructures, and the often weakest link in the security chain: users. These security plans are living, breathing things that need to be updated, upgraded, and patched on a constant basis, too.

Let’s start broad and work our way into narrower fields of security.

It all boils down to information: information security, IT security, and information assurance

Information security and information technology (IT) security sound similar, and are often used interchangeably, but they’re slightly different fields. When we’re talking about information security (or infosec), we’re actually referring to protecting our data—whether that’s physical or digital. IT security is a bit more specific in that it’s only referring to digital information security.

IT security pretty much covers all of the types of security within a network, from components like databases and cloud servers to applications and the users remotely accessing the network. They all fall under the IT security umbrella.

Within this is another term to know: information assurance. This means that any important data won’t be lost or stolen in the event of an attack or a disaster—whether that’s a tornado wiping out a server center or hackers breaking into a database. It’s commonly addressed with things like backups and offsite backup databases and rests on three main pillars: confidentiality, integrity, and availability (CIA). These philosophies carry over into every other aspect of security, whether it’s application security or wireless security.

IT security experts (also, system administrators and network admins, which we’ll talk about next) are one of the most important team members you can hire. They’re responsible for the safety and security of all of a company’s hardware, software, and assets, and regularly audit back-end systems to ensure they’re airtight. Through security analysis, they can identify potential security problems and create “protect, detect, and react” security plans.

Network security: the best defenses

Network security is anything you do to protect your network, both hardware and software. Network administrators (or system administrators) are responsible for making sure the usability, reliability, and integrity of your network remains intact. A hacker is capable of getting into a network and blocking your access, for example by holding a system hostage for a bitcoin ransom. You need an excellent defense in place to ensure you’re protected.

Detecting weaknesses in a network can be achieved through:

Security engineering: the practice of protecting against these threats by building networks to be safe, dependable, and secure against malicious attacks. Security engineers design systems from the ground up, protecting the right things in the right ways. If a software engineer’s goal is to ensure things do happen (click here, and this happens), a security engineer’s goal is to ensure things don’t happen by designing, implementing, and testing complete and secure systems.

As a part of security engineering, there are proactive measures to predict where vulnerabilities might lie and reinforce them before they’re hacked:

  • Vulnerability assessment: Engineers identify the worst case scenarios and set up proactive plans. With security analysis software, vulnerabilities in a computer, network, or communications infrastructure are identified and addressed.
  • Penetration testing: This entails deliberately probing a network or system for weaknesses.
  • Network intrusion detection systems (NIDS): This type of software monitors a system for suspicious or malicious activity.

Network admins are able to target threats (whether through suspicious activity or large queries to a database), then halt those attacks, whether they’re passive (port scanning) or active, like:

  • Zero-day attacks, also called zero-hour attacks—attacks on software vulnerabilities that often occur before the software vendor is aware of it and can offer a patch. Or, hackers will initiate attacks on the software vulnerability the day that it’s made public there’s an issue, before users can install patches (hence the name “zero day”)
  • Denial of service attacks
  • Data interception and theft
  • Identity theft
  • SQL injection

Other methods of protecting networks include:

  • IT Security frameworks: These act like blueprints for a company to set up processes and policies for managing security in an enterprise setting. Which a company uses can depend on the industry and compliance requirements. COBIT is popular among larger, publicly traded companies, ISO 27000 Series is a broad set of standards that can be applied to a number of industries, and NIST’s SP 800 Series is used in government industries, but can be applied elsewhere.
  • Password “salt and peppering”: Adding salt, or random data, to a password makes common passwords less common. A pepper is also a random value attached to the password, which is helpful in slowing hackers down.
  • Authorization, authentication, and two-factor authentication (sometimes sent via SMS, although this can prove vulnerable as well)
  • Virtual Private Networks (VPNs)
    • Application whitelisting, which prevents unauthorized apps from running on a computer
    • Firewalls: Block unauthorized access to a network or data interceptions
    • Honeypots: These are like decoy databases that attract hackers but don’t house any important information.
  • Anti-virus software
  • Encryption—decoding data, in transit or at rest, including end-to-end encryption often used in messaging apps and platforms that only allows encrypted messages to be read by sender and receiver

Within network security is also content security, which involves strategies to protect sensitive information on the network to avoid legal or confidentiality concerns, or to keep it from being stolen or reproduced illegally. Content security largely depends on what information your business deals in.

Endpoint security: securing the weakest link

It’s said that users are often the weakest link in the security chain, whether it’s because they’re not properly educated about phishing campaigns, mistakenly give credentials to unauthorized users, download malware (malicious software), or use weak passwords. That’s why endpoint security is so crucial—it protects you from the outside in.

Endpoint security technology is all about securing the data at the place where it both enters and leaves the network. It’s a device-level approach to network protection that requires any device remotely accessing a corporate network to be authorized, or it will be blocked from accessing the network. Whether it’s a smartphone, PC, a wireless point-of-sale, or a laptop, every device accessing the network is a potential entry point for an outside threat. Endpoint security sets policies to prevent attacks, and endpoint security software enforces these policies.

If you’ve ever accessed a network through a virtual private network (VPN), you’ve seen endpoint security in action. Malware is one of the core threats addressed by endpoint security, including remote access trojans (RATs), which can hack into a laptop and allow hackers to watch you through your webcam.

Internet security: guarding against cyber crimes

The internet itself is considered an unsecured network—a scary truth when we realize it’s essentially the backbone for how we give and receive information. That’s where internet security (or cyber security consulting) comes in, and it’s a term that can get pretty broad, as well. This branch of security is technically a part of computer security that deals specifically with the way information is sent and received in browsers. It’s also related to network security and how networks interact with web-based applications.

To protect us against unwittingly sharing our private information all over the web, there are different standards and protocols for how information is sent over the internet. There are ways to block intrusions with firewalls, anti-malware, and anti-spyware—anything designed to monitor incoming internet traffic for unwanted traffic or malware like spyware, adware, or Trojans. If these measures don’t stop hackers from getting through, encryption can make it harder for them to do much with your data by encoding it in a way that only authorized users can decrypt, whether that data is in transit between computers, browsers, and websites, or at rest on servers and databases.

To create secure communication channels, internet security pros can implement TCP/IP protocols (with cryptography measures woven in), and encryption protocols like a Secure Sockets Layer (SSL), or a Transport Layer Security (TLS).

Other things to have in an internet security arsenal include:

  • Forms of email security
  • SSL certificates
  • WebSockets
  • HTTPS (encrypted transfer protocols)
  • OAuth 2.0, a leading authorization security technology
  • Security tokens
  • Security software suites, anti-malware, and password managers
  • Frequently updating and installing security updates to software, e.g., Adobe Flash Player updates
  • Encryption, and end-to-end encryption

Cloud security: protecting data that’s here, there, and everywhere

Much of what we do over the web now is cloud-based. We have cloud-based servers, email, data storage, applications, and computing, which means all of the communication between onsite and the cloud needs to be secure, too. With all of this connectivity and the flowing of (sometimes sensitive) information comes new concerns with privacy and reliability—and the cloud can be notoriously vulnerable. This has given way to a new subdomain of security policies: cloud computing security.

Computer security, network security, and information security as a whole all need to be optimized for the cloud. For businesses that use public clouds, private clouds, or a hybrid cloud—information is getting exchanged between the two regularly and needs to be protected.

Building a cloud security framework involves creating a strategic framework for how all operations will happen in a cloud environment, managing access, protecting data, and more.

Application security: coding apps to be safe from the ground up

A lot of the internet security focus is on patching vulnerabilities in web browsers and operating systems, but don’t neglect application security—a majority of internet-based vulnerabilities come from applications. By coding applications to be more secure from the start, you’re adding a more granular layer of protection to your internet and network security efforts, and saving yourself a lot of time and money.

App security does rest on top of many of the types of security mentioned above, but it also stands on its own because it’s specifically concerned with eliminating gaps and vulnerabilities in software at the design, development, and deployment stages. Security testing (which should be conducted throughout the code’s lifecycle) digs through the app’s code for vulnerabilities, and can be automated during your software development cycle.

Choosing a language, framework, and platform with extra security fortifications built in is paramount, too. For example, Microsoft’s .NET framework has a lot of built-in security, and the Python Django-style Playdoh platform addresses application security risks. Rising in popularity is the Spring Security framework, a Java framework known for excellent built-in authentication and authorization measures, and the PHP framework Yii prioritizes security, as well.

Aside from framework choice, there are a few strategies to bolster application security, including:

  • Ensuring TLS
  • Authentication and authorization measures
  • Data encryption
  • Sandboxing applications
  • Secure API access
  • Session handling

Not sure where to start? Enlist the help of a network security freelancer today

By adopting a proactive security stance, educating your users, and taking advantage of the latest in authentication measures, you’ll be better able to prevent, detect, and strengthen your company against attacks. However, it’s important to remember that securing your network isn’t a one-time thing—it’s an ongoing process that needs to be constantly occurring and evolving along with your website and organization to ensure you’re protected in the face of the ever-changing landscape of security threats. Luckily, there are plenty of security experts with a variety of specialties on Upwork you can hire to help assess your network for vulnerabilities and create a custom security plan—browse network security freelancers today to get started. You can also utilize IT services on Upwork that matches you with proven IT talent.

Read more
View less
Network Security Engineer Hiring Resources
Learn about cost factors Get a job description template Hire talent
Schedule a call

Looking to hire for long-term or full-time assignments? See how Full-time hiring on Upwork simplifies the process.