Find Firewall Projects on Upwork Efficiently

We are seeking an experienced professional to assist in setting up a security certificate for our internal website utilizing Active Directory Certificate Services. The ideal candidate will have a solid understanding of certificate management and experience with Active Directory environments. Your expertise will help ensure that our internal communications remain secure and compliant. If you have a proven track record in similar projects, we would love to hear from you!

Skills: Microsoft Active Directory, Network Security, Network Administration, Firewall, System Administration, Windows Server, SSL Certificate

Project Overview:
I am seeking a developer to build an MVP for an AI-driven education platform targeting K-12 schools in China. The app must comply with local regulations (Great Firewall, ICP licensing) and integrate AI functionality with human oversight.

Core Features (MVP Phase)
-Dual Language capability (English/Chinese)
-School Directory
-Searchable database with filters (location, school type, tuition range)
-Basic school profiles with virtual tour booking
-AI Matching Engine
-Analyze student profiles (grades, extracurriculars, career goals)
-Generate school compatibility scores with admin review dashboard and user dashboard
-Application Tracker
-Status updates for school applications
-Secure document upload for references/recommendations
-Study Resources Hub
Host paid coursework/tips from schools
-Basic payment gateway integration

Technical Requirements
-Use no-code/low-code platforms (Bubble, Glide, Adalo) for rapid development
-Integrate China-compliant SDKs (avoid Google services)
-Ensure mobile responsiveness and WeChat compatibility
-GDPR/COPPA-compliant data handling

Deliverables
-Functional MVP deployable in China
-Scalable architecture for future expansion
-Documentation for maintenance

Skills: AI App Development, API, Artificial Intelligence, App Development, Python, CSS

We are looking for an experienced VoIP/Asterisk expert to configure an Airtel SIP trunk with an Asterisk PBX and develop a mobile app that allows users to make and receive calls outside the office network.

Requirements:

Configure Airtel SIP trunk with Asterisk PBX.

Ensure seamless call routing, call forwarding, and IVR setup.

Implement security measures such as SIP authentication, firewall rules, and encryption.

Develop a mobile app (Android & iOS) that can connect to the Asterisk server and work outside the office network.

The mobile app should support:

Secure SIP communication

Push notifications for incoming calls

Call history, voicemail access, and basic call management

NAT traversal and WebRTC-based fallback

Provide documentation and basic training on how to manage and scale the setup.

Skills: Asterisk, VoIP, Session Initiation Protocol, VoIP Software

We need a pen-test for our IT environment. We have 2 environments (test and production) and each environment has 3 servers:
1. web server
2. encryption server
3. database server

And basically, the last two are behind the firewall, but the webserver is open to internet traffic.

The site is in php (we used the package "phpFox" but have adapted it quite a bit)

But the big point is, we need an official (officially recognized) report to be able to show clients. We will need something of an official report for certification puposes for ISO 27001. So we want to show it to clients, auditors, official government organisations

Please give us a detailed list to accomplish all that to do a proper pentest. And give us a plan on how and when you will do it.

If there will be an impact on the production servers we have to plan some downtime and arrange any necessary backups in case of problems caused by the pentest.

We already have vulnerability tests. If it helps we can send them to you.

Skills: Information Security, Kali Linux, Security Assessment & Testing, Security Testing, Vulnerability Assessment, Penetration Testing, Cybersecurity Management, Cloud Security, Information Security Awareness, Web App Penetration Testing, Network Penetration Testing, OWASP, Risk Assessment, Web Application Security, Black Box Testing

We are seeking an experienced Opnsense firewall expert to assist with the configuration of Virtual IPs, NAT, and Site-to-Site (S2S) VPN tunnels. The ideal candidate should have a strong background in network security and be proficient in Opnsense functionalities. You will be responsible for ensuring secure connectivity and seamless communication between our networks. If you have a proven track record of successfully configuring firewalls and VPN solutions, we would love to hear from you.

Skills: Firewall, Network Administration, Network Security, VPN, Network Equipment

We are seeking an experienced PCI DSS v4 consultant to assist our organization in achieving compliance as a Level 2 Service Provider. The ideal candidate will possess a strong understanding of PCI DSS requirements and will help us navigate the necessary steps to ensure compliance. Responsibilities include conducting a gap analysis, providing guidance on necessary changes, and supporting documentation efforts. If you have a proven track record in PCI compliance, we would love to hear from you!

Skills: Network Security, Network Administration, Information Security, Firewall, PCI DSS, PCI, Compliance

I’m looking for a network engineer or Ubiquiti specialist who can set up a site-to-site VPN between two of my locations using Ubiquiti equipment managed via UISP.

Overview:
Site 1 (Miami):

Device: EdgeRouter 8

Managed via UISP

Site 2 (Fort Pierce):

Device: UISP Router Pro

Also UISP-managed

Goal:
Route a full Public Class C (e.g. 216.255.X.0/24) subnet from the Miami site to the Fort Pierce site via VPN. I’ve attempted to set this up using IPSec but haven’t been able to get it working properly.

You’ll be expected to:

Log into my UISP account

Configure both routers to establish a reliable site-to-site VPN

Ensure proper routing between the subnets

Set up any necessary firewall/NAT rules

Test connectivity to confirm it works as expected

Requirements:
Solid experience with Ubiquiti gear (EdgeRouter, UISP Router, EdgeOS, UniFi OS)

Familiarity with UISP portal

Deep understanding of IPSec, WireGuard, or other VPN protocols that work with Ubiquiti

Experience with site-to-site routing, static routes, and firewall rules

Nice to Have:
Ability to explain what was done and document the setup for future reference

Bonus points if you’ve worked on multi-site Ubiquiti deployments

Access:
UISP login will be provided (or a sub-user account can be created)

Additional CLI/SSH access if required

Budget & Timeframe:
This should be a quick job for the right person (1–2 hours).

Skills: VPN, Network Administration, Network Equipment, Network Security, Firewall

I am seeking an experienced digital forensics professional to assess and analyze my home network for potential compromises. This includes evaluating my home Wi-Fi network, mobile devices, and cloud services. Your expertise will help identify any security breaches or vulnerabilities, ensuring my personal information is safe. The ideal candidate will have a strong background in network security and digital forensics methodologies.

Skills: Network Security, Information Security, Firewall, Encryption, Network Administration

Help getting a hacked account back if possible. I will need help to access a hacked account. The hackers are currently using information is there any way possible you can help me thank you. I will definitely pay for a job well done. Thank you

Skills: Python, Google Sheets, Cybersecurity Tool, Penetration Testing, Red Team Assessment, Cyber Threat Intelligence, Vulnerability Assessment, PCI DSS, Firewall, Network Penetration Testing, Web App Penetration Testing

I'm looking for support to finalize the configuration of my home NAS. The system is already up and running, but I don’t currently have the time to complete the setup, networking, and service integration.

My goal is to create a reliable and modular self-hosted environment for:

- Personal cloud storage (documents, photos)
- Local media streaming
- Accessing self-hosted apps through Cosmos Cloud
- Remote access via Tailscale

What I need help with:

* Enable .local discovery of services (mDNS):
- Resolve name lookup issues for services like jellyfin.local, dozzle.local, etc. These apps are managed through Cosmos Cloud, but currently aren't discoverable on the LAN nor the vpn
* Ensure Cosmos Cloud and the apps it manages are properly advertised via mDNS (Avahi or alternative)
* Tailscale access configuration:
- Ensure all services, including Cosmos Cloud and hosted apps, are accessible remotely via Tailscale
- Use MagicDNS if appropriate, or suggest alternative access methods
- Confirm stable access from mobile and desktop devices
* Optimize Docker networking and service discovery:
- Diagnose DNS issues inside containers affecting service resolution
- Improve internal communication between containers and host system
- Review Docker networking configuration (bridge/host/etc.) and suggest improvements
* Modular service management:
- Organize which services start automatically and which can be enabled on demand
- Help make the system easy to maintain and operate over time
- Document system changes and workflows clearly

* Basic health & security checks (optional):
- Investigate containers in restarting or unhealthy states
- Suggest lightweight security improvements (e.g., firewall rules, fail2ban)

Ideal candidate:

- Strong Linux server experience (Ubuntu/Debian)
- Familiar with Cosmos Cloud, Docker, and Tailscale
- Knowledge of mDNS service discovery (Avahi/Bonjour)
- Comfortable working with home-lab/self-hosted apps (Jellyfin, Immich, etc.)
- Able to document and explain their setup clearly

How we’ll work:

Fully remote (SSH or screen share as needed). Communication via async chat preferred (video calls optional) and I'll provide system access and details once we start working together

In your proposal, please include:

- Your experience with similar home server projects
- Any relevant experience with Cosmos Cloud and .local service discovery
- Your proposed approach and time estimate (phased work is welcome)

Skills: Ubuntu, Linux, Bash, Docker, VPN, RAID Administration, Network Security

We are looking for a skilled developer to deploy the DeepSeek R1 7B model using Ollama on a self-hosted AWS EC2 instance. The deployment must be secure, privacy-focused, and capable of processing uploaded PDF documents using local tools.

The system will be integrated with an existing front-end chat interface (already built). You’ll be responsible for installing the model, setting up the server, enabling offline PDF parsing, and configuring secure outbound internet access using VPN or proxy. The goal is to keep the environment private while maintaining controlled internet connectivity for updates or future integrations.

This project requires careful attention to access control, traffic filtering, and performance optimization.

Project Scope and Milestones

Milestone 1 – Core Deployment and Document Integration ($100)

Launch and configure a GPU-enabled AWS EC2 instance (credits provided)
Install and configure Ollama
Deploy DeepSeek R1 7B locally
Expose a secure port for connection with the existing chat interface
Install and configure offline PDF parsing tools (PyMuPDF or pdfplumber)
Build a script to extract text from PDFs for use in model prompts
Harden the EC2 instance:
Enforce SSH key-only access
Disable password login
Close unused ports
Apply basic firewall or AWS security group rules
Test model functionality and PDF text extraction
Milestone 2 – Secure Internet Access and Documentation ($50)

Configure outbound internet access using a secure method:
VPN (WireGuard, OpenVPN, or Tailscale) or
HTTPS proxy (e.g., Privoxy, Squid)
Implement DNS-over-HTTPS (DoH) or DNS-over-TLS (DoT)
Set up outbound egress control to limit internet exposure
Disable all telemetry, background updates, or external pings from Ollama or system tools
Write clear documentation that includes:
EC2 and Ollama setup
Firewall and access controls
PDF extraction tool setup and usage
VPN/proxy configuration details
Maintenance and restart instructions
Future upgrade considerations
Provide 3–5 business days of light post-deployment support
Requirements:

Proven experience deploying LLMs locally (Ollama, DeepSeek, LLaMA, etc.)
Strong command of AWS EC2, GPU configuration, and Linux system administration
Experience implementing VPNs, proxies, and encrypted DNS setups
Ability to configure and use offline PDF parsing tools (PyMuPDF, pdfplumber)
Comfortable securing cloud instances (SSH hardening, firewall rules)
Capable of writing clean, well-organized documentation
Strong focus on security, privacy, and controlled system behavior
Contract Terms:

Fixed price: $150 USD total
Two milestones:
$100 for model deployment, PDF integration, and security
$50 for secure internet access, documentation, and support
AWS credits will be provided by the client
Timeline: 3–5 days preferred
To Apply:
Please share your experience with:

Self-hosted LLM or Ollama deployments
VPN/proxy setup and secure internet routing
EC2 hardening and Linux server security
PDF text extraction tools
Links to similar work, repos, or deployments are welcome. Preference will be given to developers who can start immediately and complete within a few days.

Skills: Amazon Web Services, Amazon EC2, Python, DevOps, Linux System Administration

I'm seeking a networking expert with significant experience in Windows 11 configurations. My primary need is assistance with the setup and configuration of network security, particularly firewall settings.

Key Tasks:
- Configure firewall settings on a Windows 11 system.
- Ensure the network is secure and all potential vulnerabilities have been addressed.

Ideal candidates should possess:
- Strong knowledge and experience with Windows 11 networking.
- Proven track record in network security configuration, specifically firewall settings.
- Excellent troubleshooting skills and attention to detail.

Skills: Windows Desktop, System Admin, Computer Security, Windows Server, Network Administration

We are seeking a skilled network technician to assist with the designation of static WAN IP addresses from our SonicWall device to various computers within our network. The ideal candidate will have hands-on experience with SonicWall configurations and a solid understanding of network protocols. This task is critical for ensuring consistent connectivity and requires attention to detail. If you have the expertise to carry out this assignment efficiently, we would love to hear from you.

Skills: Network Administration, Network Security, VPN, Encryption, Firewall

OPNsense Integration Expert – Advanced Logging & AI Connectivity (Short-Term Project):

We’re seeking an experienced network engineer with deep expertise in OPNsense to support a custom built open source firewall project. This is not a basic setup role—we've already completed hardware installation and basic configurations.

About the Project:
Our custom firewall device is built on OPNsense and already configured with routing, NAT, VPN, and DHCP. We're now focusing on log forwarding, plugin optimization, and seamless integration with an AI-based security engine.

Responsibilities:
• Enable and optimize log forwarding (syslog, API, or plugin-based) to send to an external AI module
• Recommend and configure OPNsense plugins for visibility, telemetry, or security automation
• Ensure the setup is plug-and-play friendly for non-technical users (fast boot, remote access, backups, etc.)
• Provide input on how AI-generated rulesets can be enforced dynamically in OPNsense
• Test and optimize performance for low-power or embedded hardware scenarios

Ideal Skills & Background:
• Advanced OPNsense/pfSense expertise, including plugins, APIs, and logging tools
• Strong foundation in networking (TCP/IP, DNS, DHCP, NAT, VPN)
• Experience with log shipping, syslog, Elastic, or similar tools
• Familiarity with small business network deployments
• Bonus: Experience in headless deployments or embedded OPNsense builds

Objective:
Deliver a reliable, secure, and modular OPNsense setup that forwards detailed traffic logs to our AI engine for passive threat analysis—without degrading network performance.

This is a short-term, focused project with potential for future collaboration.

Skills: Firewall, PfSense, FreeBSD, Intrusion Detection System, Intrusion Prevention System

Proposal Instructors:
Please provide in your proposal any questions that you need answered, where we should ship the firewalls too so that you can physically work on them and ship back to us, and anything specific you need in order to complete the contract within the next 30 days. Please provide any technical certifications from Either firewall maker to prioritize your proposal.


——///—— Scope of Work——///——-

Need to know some information:

- Which interface will be external/WAN, which internal/LANWAN port 1 external

LAN port 2,3,4,5 (?) internal

HA Port (?) used for paired HA firewalls for the xg210

USB - flash backup space and latest config boot image

Serial to Digi wr21 cell modem engineering access

- What IPs will have, static/dynamic. If static need details



Static From one ISP IPV6 and IPV4 service ( 1Gig up / down )

Accept also a static ISP link from a HAM / CB / Radio / Public Packetnet or Public WiFi mesh system (low quality & high intermittency)

Make use of a forward proxy service

Need to bring IPv6 ARVN domain transferred over to (link removed) for DNS and domain hosting. Use IPv6 for mesh network. Convert to IPv4 at CPE.

Mesh on IPV6 and IPv4

- What rules will be, so any details?


Make 10 VLans for customer, data type, and use role segmentation. VLAN [100……900]

Enable 9 VPN connections with edge users in admin roles.

Enable logging.

Consider the need to Make use of BGP between firewall and local LAN routers, field routers and internet ISP routers (assumption)

Bridge Ethernet channels for higher bandwidth where possible.

Build baseline configuration for a highly secure high availability firewall.

Ensure load balancing between firewalls.


Need a network engineer who understands SOPHOS XG Firewall XG210 & XG115w to configure less than 10 firewall rules, and set up 3 VPN IPSec tunnels for a wireless internet service provider using IPV4&6.

Our system has a firewall/XG unit behind several routers before it gets to our gateway. So there is multiple device Port forwarding occurring. Device upgrades to make the VPN tunnel work may be necessary. We need someone to assess this.

Network map of project attached.

There is additional VLAN and network engineering tasks to complete should the right contractor be found.

All firewalls need to be configured from factory reset of the firmware and are old enough they are out of support. Still we need to use these specific units for our project.

Skills: Email Etiquette, Apache Administration, TCP/IP, Windows Administration, Firewall

I am seeking a professional to conduct a security investigation regarding potential safety issues related to my wife's phone. It's imperative that this task is handled discreetly and ethically to ensure the well-being of all parties involved. The goal is to assess any vulnerabilities and gather information that may help in addressing serious concerns. If you have experience in digital forensics, cybersecurity, or related fields, please reach out with your qualifications and approach to resolving this matter responsibly.

Skills: Penetration Testing, Information Security, Vulnerability Assessment, Firewall, Network Security

Project Overview
We are seeking the services of a CERT-IN empanelled cybersecurity vendor or professional to carry out a Vulnerability Assessment and Penetration Testing (VAPT) and assist in completing mandatory client security compliance questionnaires. This engagement is crucial for vendor onboarding with major corporate clients and insurance partners.
Scope of Work:
1. Vulnerability Assessment & Penetration Testing (VAPT):
o Perform comprehensive internal and external VAPT of our infrastructure, including web applications, APIs, servers, and endpoints.
o Assess network and application layer vulnerabilities.
o Provide a detailed report including:
 Risk categorization (High/Medium/Low)
 Technical findings with evidence (screenshots, logs)
 Suggested remediation
 Final re-validation report after fixes
2. Compliance Documentation Support:
o Assist in completing two client security assessments:
 “Partner Onboarding – Security Parameters of Client Environment”
 “Digit – Vendor Self Assessment Questionnaire”
o Align responses with industry best practices and regulatory standards (ISO 27001, NIST, CERT-IN).
o Provide documented evidence such as:
 Information Security Policy
 Secure configuration baselines
 Data classification and protection policies
 Business continuity and disaster recovery plans
 Access control and monitoring procedures
3. Evaluation & Risk Score Optimization:
o Understand the evaluation matrix and risk scoring methodology used by clients.
o Recommend corrective actions to improve security posture and compliance scores.
o Ensure documentation is audit-ready and presentable.
Mandatory Requirement:
• The selected professional must be a CERT-IN empanelled vendor or work in association with one. Proof of empanelment will be required.
Deliverables:
• Initial and Final VAPT Reports
• Completed security assessment questionnaires
• Supporting documentation (security policies, technical artifacts)
• Advisory notes on risk mitigation and compliance readiness
Required Skills:
• Vulnerability Assessment & Penetration Testing (VAPT)
• Experience with CERT-IN standards and compliance
• Security Questionnaire Handling & Audit Documentation
• Knowledge of ISO 27001, NIST, and Indian IT Act compliance
• Network Security & Web Application Security Testing
• Firewall, IDS/IPS, and Endpoint Security Assessment
• Report Writing – Technical and Non-Technical (Audit-ready)
• Risk Analysis & Mitigation Planning
• Incident Response and Business Continuity Knowledge
• Familiarity with tools like Burp Suite, Nmap, Nessus, OWASP ZAP, Metasploit
• Certifications (preferred): CEH, OSCP, CISSP, CISA
Timeline:
• Kickoff: Immediate
• Duration: 2-3 weeks (negotiable based on availability and scope)
Budget:
• Please quote your fixed price for the complete engagement or hourly rate.
• Attach sample VAPT reports or redacted past project documentation, if available.

Skills: Web Security, Testing / QA, Computer Security, Usability Testing, Internet Security

Project Overview
We are seeking the services of a CERT-IN empanelled cybersecurity vendor or professional to carry out a Vulnerability Assessment and Penetration Testing (VAPT) and assist in completing mandatory client security compliance questionnaires. This engagement is crucial for vendor onboarding with major corporate clients and insurance partners.
Scope of Work:
1. Vulnerability Assessment & Penetration Testing (VAPT):
o Perform comprehensive internal and external VAPT of our infrastructure, including web applications, APIs, servers, and endpoints.
o Assess network and application layer vulnerabilities.
o Provide a detailed report including:
 Risk categorization (High/Medium/Low)
 Technical findings with evidence (screenshots, logs)
 Suggested remediation
 Final re-validation report after fixes
2. Compliance Documentation Support:
o Assist in completing two client security assessments:
 “Partner Onboarding – Security Parameters of Client Environment”
 “Digit – Vendor Self Assessment Questionnaire”
o Align responses with industry best practices and regulatory standards (ISO 27001, NIST, CERT-IN).
o Provide documented evidence such as:
 Information Security Policy
 Secure configuration baselines
 Data classification and protection policies
 Business continuity and disaster recovery plans
 Access control and monitoring procedures
3. Evaluation & Risk Score Optimization:
o Understand the evaluation matrix and risk scoring methodology used by clients.
o Recommend corrective actions to improve security posture and compliance scores.
o Ensure documentation is audit-ready and presentable.
Mandatory Requirement:
• The selected professional must be a CERT-IN empanelled vendor or work in association with one. Proof of empanelment will be required.
Deliverables:
• Initial and Final VAPT Reports
• Completed security assessment questionnaires
• Supporting documentation (security policies, technical artifacts)
• Advisory notes on risk mitigation and compliance readiness
Required Skills:
• Vulnerability Assessment & Penetration Testing (VAPT)
• Experience with CERT-IN standards and compliance
• Security Questionnaire Handling & Audit Documentation
• Knowledge of ISO 27001, NIST, and Indian IT Act compliance
• Network Security & Web Application Security Testing
• Firewall, IDS/IPS, and Endpoint Security Assessment
• Report Writing – Technical and Non-Technical (Audit-ready)
• Risk Analysis & Mitigation Planning
• Incident Response and Business Continuity Knowledge
• Familiarity with tools like Burp Suite, Nmap, Nessus, OWASP ZAP, Metasploit
• Certifications (preferred): CEH, OSCP, CISSP, CISA
Timeline:
• Kickoff: Immediate
• Duration: 2-3 weeks (negotiable based on availability and scope)
Budget:
• Please quote your fixed price for the complete engagement or hourly rate.
• Attach sample VAPT reports or redacted past project documentation, if available.



Skills: Web Security, Testing / QA, Computer Security, Usability Testing, Internet Security

I need an expert to configure my OPNsense for IPv6. I have a fixed WAN with a static IPv6 address and I need to connect both servers and virtualized clients in the DMZ and LAN.

- Devices: Both servers and virtualized clients are required to be connected to the IPv6 network. The primary use of these devices will be for web hosting, RDP Clients and Database Servers.
- Security: I have specific security requirements for my IPv6 configuration. This includes setting up appropriate firewall rules and a VPN.

Ideal skills for this job include extensive knowledge of OPNsense, IPv6 configuration, web hosting setups, and security implementations such as firewall rules and VPNs. Please only bid if you have relevant experience. Thank you.

Skills: System Admin, Linux, Computer Security, Network Administration, Firewall

More details:

What version of Windows Server are you planning to use? Windows Server 2022
Do you have any specific requirements for the server setup? Security configurations
Which type of security configurations are you looking for? Firewall settings, SSL/TLS setup

Skills: Python, System Admin, Linux, Django, Ubuntu

We are seeking a skilled network specialist in the Atlanta area to assist with the setup and configuration of Ubiquiti/Unifi access points and Sophos firewalls. The ideal candidate will have hands-on experience with network management and a strong understanding of security protocols. If you are local to Atlanta and have a passion for optimizing network performance, we would love to hear from you. Please apply with your relevant experience and availability.

Skills: Network Equipment, VPN, Network Administration, Network Security, Ubiquiti

Hey! I need a sharp DevOps pro to build an automatable setup using Ansible to deploy containerized services across three Rocky 9 VMs (all up and running). The Ansible control node can SSH into them with a user account. This will power a change management workflow where NetBox updates trigger GitLab pipelines to run Ansible playbooks for network switch changes.

The Setup

Three VMs, each with a core tool in a container via Docker Compose:

• VM 1: HashiCorp Vault (secrets)
• VM 2: NetBox (source of truth)
• VM 3: GitLab (CI/CD)

I want custom Dockerfiles, persistent volumes (so data like Vault secrets or NetBox records survives container restarts), .env files for vars, and Systemd to manage Docker Compose.

Ansible Tasks

Craft playbooks/roles to:

• Install Docker and Docker Compose.
• Deploy services with Docker Compose.
• Set up Nginx reverse proxy with self-signed TLS certs.
• Distribute CA certs so Vault’s trusted. No ignoring SSL.
• Add firewall rules, network segmentation, and volumes.Make it dynamic — software versions as variables for easy upgrades!

Vault Integration

Configure Vault with AppRole auth (isolated roles/policies) and Vault Agent Templates to inject secrets (e.g., NetBox DB password, GitLab tokens) into containers, with auto-renewing leases.

If you know Ansible, Docker, and maybe Vault, let’s talk! Share your approach and a rough timeline. Excited to see your skills in action!

Skills: Linux, Python, Ansible, CI/CD, Docker, Deployment Automation, Bash Programming, GitLab

We are seeking an experienced Systems and Security Director to oversee the integration and security of our employee systems and POS systems. The ideal candidate will have a proven track record in developing and implementing security strategies, ensuring data protection, and managing system integrations. You will work closely with our IT team to ensure seamless operations while maintaining the highest security standards. If you are diligent, detail-oriented, and have a solid understanding of system security best practices, we would love to hear from you!

Skills: Network Security, Information Security, Vulnerability Assessment, Firewall, Security Analysis

I’ve been hacked & have been receiving threats ! I’ve been receiving threatening messages & so has my family members. I just want to trace the number that has been messaging me.

Skills: Penetration Testing, Information Security, Vulnerability Assessment, Application Security, System Security, Firewall, Ethical Hacking, Security Analysis, Security Infrastructure, Security Testing, Internet Security, Database Security, Security Assessment & Testing

Tier 3 IT Support Engineer
Job Summary:
We are seeking an experienced Tier 3 IT Support Engineer with a strong focus on Microsoft Intune and enterprise-level device management. The ideal candidate will provide high-level technical support, assist with complex troubleshooting, and play a crucial role in managing and optimizing the use of Intune within the organization. You will act as a technical escalation point, working closely with both Tier 1 and Tier 2 teams while also driving improvements in our endpoint management strategy.


Key Responsibilities:
Microsoft Intune Expertise:
Lead the administration, configuration, and optimization of Microsoft Intune for device management, security policies, and compliance.
Provide advanced troubleshooting and resolution of Intune-related issues, ensuring effective management of Windows, iOS, Android, and macOS devices.
Collaborate with teams to implement policies for mobile device management (MDM), mobile application management (MAM), and device compliance.
Assist in the rollout of new Intune features and updates, ensuring minimal disruption and full alignment with business objectives.
Monitor Intune performance and troubleshoot any integration issues with other Microsoft 365 services and third-party applications.
Conduct training sessions for IT staff and end-users on Intune functionality and best practices.


Cloud Services Expertise:
Deep expertise in cloud services (Azure, AWS), with hands-on experience designing and managing multi-cloud or hybrid cloud infrastructures.
Oversee cloud-based solutions related to device management and work with cloud engineering teams to integrate Intune with cloud platforms.


Endpoint Security & Management:
Oversee the implementation of security policies via Intune, including antivirus, firewall settings, and encryption protocols for endpoint devices.
Collaborate with the security team to ensure compliance with industry standards, such as ISO and NIST, using Intune's security tools.
Design and maintain a secure device lifecycle management process, from provisioning to decommissioning, utilizing Intune.


Technical Escalation Support:
Provide Tier 3 support for escalated incidents related to endpoint management, including device onboarding, app distribution, and security compliance.
Work closely with the helpdesk and Tier 2 teams to resolve complex issues, document solutions, and create troubleshooting guides.

Continuous Improvement:
Participate in the design and deployment of new IT solutions, especially in relation to Microsoft 365 services, cloud-based device management strategies, and hybrid cloud infrastructures.
Identify and implement process improvements to enhance the efficiency of the Intune environment and overall device management framework.


Collaboration & Documentation:
Maintain detailed documentation of all Intune-related processes, configurations, and troubleshooting steps.
Collaborate with cross-functional teams, including IT, security, and compliance, to ensure that Intune aligns with organizational objectives.

Required Qualifications:
5+ years of IT support experience, with at least 3 years in a Tier 3 support role.
Deep expertise in Microsoft Intune, including device management (MDM/MAM), security policy configuration, and troubleshooting.
Deep expertise in cloud services (Azure, AWS), with hands-on experience designing and managing multi-cloud or hybrid cloud infrastructures.
Hands-on experience with Microsoft 365 and Azure Active Directory, particularly in relation to device management and security.
Strong knowledge of Windows, iOS, Android, and macOS platforms in an enterprise environment.
Experience with other endpoint management tools is a plus (e.g., SCCM, Jamf, etc.).


Preferred Qualifications:
Microsoft certifications, especially in Intune, Microsoft 365, or Azure.
Familiarity with scripting and automation (PowerShell) for enhancing Intune functionality.
Experience in endpoint security, including antivirus, encryption, and compliance standards.
Excellent communication and documentation skills.

Skills: Technical Support, Troubleshooting, Customer Support, Incident Management, Ticketing System, Customer Service, Microsoft Active Directory, Communication Etiquette

Software Engineer (Microsoft Purview Information Protection)

Responsible implementing Azure Information Protection (AIP), now part of Microsoft Purview Information Protection, involves classifying and protecting sensitive data, and while the process is generally straightforward, it requires careful planning and understanding of your organization’s data security needs.

Key Skills
Data Classification
Sensitivity Labels
Labeling and Protection
Integration with M365
Azure Information Protection (AIP) Scanner
Microsoft Purview Information Protection Client
Licensing
Network and Firewall Requirements

Responsible for the implementation, configuration, and management of Microsoft Purview solutions.

Implementing and configuring Microsoft Purview to discover, classify, and map data across an organization's environment.

Skills: Office 365, Microsoft Active Directory, Microsoft Azure, Microsoft 365 Copilot

I'm seeking a skilled network troubleshooting expert to help resolve intermittent connectivity issues. The network is served by a FortiGate router, there's an HP switch, and UniFi access points.

The symptom is that occasionally, a Wi-Fi client will not get an IP address (self-assigned 169.*). It generally corrects itself. I don't know for sure that it's limited to Wi-Fi clients.

I'm not sure if there are DHCP logs, but given the intermittent nature, it'd be real nice to be able to identify the problem happening and know how it needs to be corrected.

I can help with UniFi stuff, but I don't know about FortiGate, so hopefully you're a Fortinet expert :)

Thank you!

Skills: Network Administration, Firewall, FortiGate Firewall

Job Opportunity: Network Technician/Administrator (Relocation to West Africa)Location: West Africa (Relocation Required)Start Date: ImmediateA fast-growing technology firm is seeking an experienced and reliable Network Technician or Administrator to join its team in West Africa. The role will involve the setup and ongoing management of wireless networks and Hotspot systems, supporting both community and commercial internet access initiatives.Candidates will be expected to configure and maintain MikroTik routers and wireless infrastructure, deploy and manage user authentication systems for Hotspot environments, and conduct thorough site surveys to ensure optimal signal performance. The role also includes implementing robust network security measures, configuring firewall rules, managing bandwidth, and providing both remote and on-site technical support. Coordination with the operations team is essential to maintain network stability and performance.Ideal applicants will have 3–5 years of practical experience working with MikroTik (RouterOS), wireless networks, and Hotspot systems. A strong grasp of network security, routing protocols, and independent troubleshooting is essential. Familiarity with tools such as Winbox and The Dude, as well as Radius servers, VLANs, and basic monitoring tools, will be considered an advantage. Professionals from India are highly encouraged to apply.In return, the company will provide a one-way flight ticket to West Africa and fully funded accommodation. The starting annual salary is USD 4,000 per annum, with the potential for increases based on performance and deliverables. This position offers the opportunity to work on high-impact projects that are bringing scalable internet access to underserved communities.Let me know if you’d like this converted into a formal PDF or posted to job boards or talent networks.
I prefer this response

Skills: Networking

Ip.Glass are Australian network and cyber security business providing high quality modern services to enterprise clients in Australia. We are looking for assistance with supporting our client environments and providing exceptional 24/7 experience.

Key Responsibilities:
• Monitoring Alerts: Continuously monitoring alerts from various devices and systems, such as servers, routers, switches, firewalls, and other critical infrastructure, to detect any downtime or issues.
• Incident Detection and Response: When an alert is triggered (e.g., device is down, performance degradation), the NOC Technician responds by troubleshooting or escalating the issue to the appropriate team or technician.
• Issue Resolution: If possible, the NOC Technician will resolve issues remotely or guide clients through troubleshooting steps.
• Escalation Management: If an issue cannot be resolved within a set timeframe or requires more advanced expertise, the technician escalates the issue to higher-level engineers or specialists.
• Communication with Clients: Keeping clients informed about the status of issues, resolutions, and ongoing incidents.
• Documentation: Logging all issues, resolutions, and steps taken in the system for future reference and tracking.
• Other support: Assisting in updating and maintaining our client information and knowledge management documentation, assisting in producing customer reports and other customer technical administration.
• Shift Hours: The Job will require the engineer to be fully online between 12AM to 8AM Sydney time.

Skills Required:
• Technical Knowledge: Understanding of network infrastructure (Cisco CCNA level), server management, and monitoring tools
• Technology Stack: Fortinet and Cisco experience are a welcome.
• Problem-Solving: Ability to identify, analyse, and resolve issues quickly and efficiently.
• Communication Skills: Clear verbal and written communication in English.
• Attention to Detail: Quickly noticing anomalies and patterns in alert systems.

Tools Used:
• Monitoring Systems: Zabbix, SolarWinds, FortiAnalyzer.

What We Offer:
• A dynamic and supportive team environment.
• Opportunities for growth and career development within the company.
• Comprehensive training and mentoring from experienced Engineers and Consultants.

The Job will require the engineer to be online between 12AM to 8AM Sydney time.

Skills: Firewall, Network Administration, Network Security, VPN, Microsoft Azure, System Configuration, Technical Support, Network Equipment, Troubleshooting

We are seeking an experienced DevOps developer to assist with various tasks related to infrastructure, workflow automation, and deployment strategies. The ideal candidate will provide accurate time estimations for each task and effectively communicate the plan of action. Strong collaboration and problem-solving skills are essential to ensure timely delivery of projects. If you have a passion for optimizing development processes and are able to work independently, we would love to hear from you.
Points need to cover

"- Initial domain setup
- Client-specific configuration "
"- Design and implement backup processes
- Configure schedules and testing
- Regular backup checks and monitoring"
"- Organize folder structures for subsidiaries
- Implement access control and permissions"
"- Configure firewall rules
- Set up security policies"
"- Implement monitoring tools
- Ongoing system health checks
- Performance reports and adjustments"
- For unexpected tasks or adjustments needed

Skills: Python, DevOps, Amazon Web Services, Docker, Git, cPanel

I bought a FortiGate firewall in October last year but haven’t had the time to set it up. It’s just been lying around and now I’m ready to get it configured. I need someone who can help set it up properly. There are five employees in the office, each with their own computer, and each has a VoIP phone. We also have some other devices like security cameras and a network printer.

The setup should include the following:

Block all internet access by default and only allow access to a list of approved websites. I have this list from another office where it’s already implemented using a Sophos firewall. I can share that list for reference.

Make sure the printer and VoIP phones work properly without any issues.

For senior management, there should be password-based access that bypasses all restrictions, so directors can access everything freely, while other employees still follow the restricted access rules.

We have an office in India, and I want a site-to-site VPN connection to the Singapore office. But this VPN should only be active when needed by specific employees, not all the time.

Looking for someone who can do this quickly and efficiently. Please apply if you have experience with FortiGate firewalls and can handle everything mentioned above.

Skills: Firewall, FortiGate Firewall