I will audit harden and configure your enterprise fortigate firewall
Network and Cybersecurity Engineer
About this Gig
Are you sure your FortiGate is actually protecting your business?
Many companies invest in Fortinet appliances, only to leave default settings enabled exposing their networks to ransomware. I am a Network & Cybersecurity Engineer specializing in enterprise infrastructure. I don't just "plug in" firewalls; I architect strict, Zero-Trust environments that maximize your investment and ensure compliance.
What I deliver:
- Security Audits: Review of IPv4/IPv6 policies to eliminate overly permissive "Any-Any" rules and patch vulnerabilities.
- Network Hardening: Strict VLAN segmentation, routing setup, and firmware updates to isolate sensitive data.
- Premium NGFW & UTM: Tuning Intrusion Prevention (IPS), Web Filtering, Anti-Virus, and App Control to actively block threats.
- Enterprise VPNs: High-Availability Site-to-Site IPsec and MFA-backed remote access setups.
The "Zero-Downtime" Guarantee I apply rigorous, research-backed security methodologies. Before implementing complex changes, I can stage configurations in a virtual lab (EVE-NG) to ensure zero downtime for your production network.
Please message me before ordering to discuss your specific network topology!
My Portfolio
FAQ
Will my business experience downtime during this configuration?
No. I meticulously plan all deployments. For complex routing or NGFW policy changes, I stage and validate the configurations in a virtual lab environment (EVE-NG) first. Any required reboots are scheduled during your approved maintenance windows.
I don't know anything about my current firewall setup. Can you still help?
Yes! That is exactly what the "Basic" package is for. I will log in, conduct a full security audit of your current policies, and give you a plain-English report on what is misconfigured and how we can fix it.
Do I have to give you my permanent admin password?
No. You can create a temporary administrator account for me to use during the project, which you can delete immediately after. Alternatively, we can do the configuration together via a remote screen-share session.

