Just completed a project on Securing and Hardening an Enterprise Branch Office Network 1. Introduction This document presents the design, implementation, and security hardening of an enterprise branch office network. The project simulates a real-world branch deployment using Cisco Packet Tracer and applies layered security principles across switching, routing, and wireless infrastructure. The objective is to ensure secure inter-department connectivity while mitigating insider threats and unauthorized access. 2. Project Objectives The primary objectives of this project are: i. To design a scalable and secure branch office network ii. To implement VLAN-based network segmentation iii. To enforce Layer 2 security controls on access switches iv. To secure Layer 3 access and management on the router v. To deploy a secure wireless infrastructure vi. To enable secure remote management using SSH version 2 3. Network Topology Overview The network consists of a single router, two Layer 2 switches, a wireless LAN controller, two lightweight access points, end-user devices, and a centralized server. The design follows a router-on-a-stick model to provide inter-VLAN routing and centralized DHCP services. A dedicated Management VLAN (VLAN 99) is used for managing network devices, ensuring that management traffic is isolated from user data traffic. 4. Network Devices and Roles 4.1 Router (R1) i. Acts as the default gateway for all VLANs ii. Provides inter-VLAN routing iii. Serves as the DHCP server iv. Enforces Layer 3 access control using extended ACLs v. Secured for remote access using SSH version 2 4.2 Switches (S1 & S2) i. Provide Layer 2 connectivity ii. Enforce VLAN segmentation iii. Implement switch hardening and Layer 2 security features iii. Host management SVIs on VLAN 99 4.3 Wireless Infrastructure i. The WLC manages wireless access ii. Lightweight access points provide wireless coverage iii. Separate VLANs are used for staff and guest wireless users 4.4 Server i. Acts as a Syslog and TFTP server ii. Accessible only to authorized VLANs 5. VLAN and IP Addressing Scheme @akintunero @ireteeh @Agina_Devnet @segoslavia @lanceeihoda #cybersecurity #Networking #networksecurity #security #cisco

Follow who know road don cut my sandals

First Bank Information Technology Recruitment 2026 Available Junior Roles: - Frontend Engineer - Backend Engineer - Junior Software Developer - QA Analyst - UX/UI Designer - IT Support Technician Intermediate Roles: - Software Developer - DevOps Engineer - Systems Administrator - Network Administrator - Business Analyst - UX/UI Designer Senior Roles: - Software Engineer - Solution Architect - Cybersecurity Specialist - Cloud Architect - Product Manager - Scrum Master - Project Manager Apply: hdbc.fa.em2.oraclecloud.com/…

Hi cyber guys… the Cybersecurity Xlass will be back in June. We miss you guys too. 🫶🏽🫶🏽🫶🏽

"Ask and you shall receive" That was what my mind told me this afternoon. Thank you @OnijeC for coming through for me. I appreciate sir.

Good evening sir @akintunero @OnijeC Please can I get access to Network Security course on Netacad 🙏🙏🙏🙏. I want to go back to the class room. Thank you Sir

Good evening my Oga @segoslavia Please who is now hosting CybersecurityXclass I done miss am and I no dey see notifications again via the space.

Most breaches don’t usually start with hacking Sometimes they start with identity mismanagement During migrations, testing, or quick fixes, teams often create service accounts with elevated privileges to keep things running. The problem? Those permissions are rarely rolled back. Over time, you end up with: • Service accounts that never expire • Privileges that were meant to be temporary • Accounts that no one actively owns • No MFA, no monitoring, no audit trail From an attacker’s perspective, this is low effort, high reward. They don’t need to exploit a vulnerability. They enumerate identities, check permissions, and look for anything overprivileged or forgotten. Once they find it: Privilege escalation is instant. Lateral movement becomes trivial. Full environment compromise is just a matter of time. This is why identity is now the primary security boundary What should be happening instead: • Enforce least privilege (especially for service accounts) • Use time-bound access (no permanent elevation) • Continuously audit and review all identities • Monitor service account activity like you would a human admin • Decommission anything tied to legacy systems

It seems counterintuitive, but by not actively selling or pushing yourself, you actually put yourself out there. I’ll explain. Recruiters, especially in tech, see through the bullshit. They are also very experienced. If you have substance, it does not stay hidden for long. Focus on what matters the most. Build non-trivial side projects, and most importantly have a clear career plan and focus. It is true that it’s difficult to get a job in tech, but imagine you’ve deliberately spent the last 5 or 6 years exclusively optimising for a career in e-commerce or fintech. Any interview for those roles or adjacent roles will be a walk in the park. And on visibility, it should be subtle. You don’t want to be the next LinkedIn banger boy. A lot of people ignore the important things like actually optimising their LinkedIn profile by investing time into the keywords in their header, a well written summary, endorsements of their skills and getting their CTO or manager to write a recommendation. They focus on writing posts that drive traffic without corresponding impact on their career. This is fine if you want to become a tech influencer. Pay attention and observe the people who have the roles you wish you had. Are they trying to be popular? What’s their LinkedIn activity like? It’s almost nonexistent. A few congratulatory comments or likes here and there, and that’s all. For devs, three things are like the flashpoints: your GitHub profile, LinkedIn page and an optional website or portfolio. This is what a recruiter looks at before reaching out to you. The 101 public repos with a project like Todo app, no portfolio project with actual users, sparse LinkedIn page, etc, does not lead a recruiter to your DM. Hold yourself to the highest professional standards you can think of. Something as simple as a proper profile picture on LinkedIn is more important than 30k followers on X. You must understand and define your audience.

Shell Graduate Programme 2026 They won't take many people, unlike NNPC and co, maybe maximum of 40. But worth the try if you are competitive. It's a life changing opportunity. And merit-driven, too. shell.wd3.myworkdayjobs.com/…

Please @mikrotik_com we don't need to go through all these stress just to reset a device manually.

Make una send us money oooo Na Man die and resurrect

Have you set your reminder??? Use this link x.com/i/spaces/1pKkOyPewqjKj

If you want to join the live interview prep session as a candidate to be interviewed, kindly reply this tweet👇🏾 CC: @jay_hunts x.com/i/spaces/1pKkOyPewqjKj

I need urgent 17M but na how to get am be the problem

Set your reminder x.com/i/spaces/1pKkOyPewqjKj

Y’all ready??

Please where is @TemitopeSobulo come out of your hide out.

To find greener pasture now come dey like death sentence The more you dey find the browner it becomes People way get backup no know way God do for them

📌 IAM - Also this comes with an individual Azure sandbox for use class.techpeaklab.com