Windows Endpoint Security

Windows Endpoint Security

Scope: Secure desktop endpoint in a simulated corporate environment that uses Active Directory and Windows Server 2016

  • Activated BitLocker for drive encryption on Windows Server 2016 to provide additional authentication at startup
  • Installed and configured AppLocker on client to prevent execution of unauthorized files using custom rules
  • Created a group policy to implement a firewall rule that blocks remote desktop connections to client computers using port 3389

Network Configuration

Network Configuration

Scope: Set up corporate network and implemented security settings for new bank branch

  • Devised network topology and where to assign IP addresses
  • Built VLANs, trunks, and routers to allow multiple-stream communication
  • Configured network devices to prevent unauthorized access by securing privilege mode, encrypting passwords, and designing security banners

Website Revamp for Non-Profit

Website Revamp for Non-Profit

Scope: Update the theme and perform a security assessment 

  • Refreshed the site layout using DIVI WordPress theme
  • Deleted inactive users and configured MFA on remaining users; deleted unused plugins and themes
  • Updated DNS TXT records with SPF and DKIM to support email deliverability
  • Installed and configured a WAF and hardened default wp-admin login page