Cybersecurity networks provide the “front-line” defense against many attacks. It is important for cybersecurity personnel to bolster their defenses of their IT infrastructure. Network engineers are an integral part of this process and provide many ways to carry out this task. Some of those ways include, but are not limited to, installing firewalls on each layer of the network, blocking ports that are not essential to keeping the business running, ensuring that wireless networks are protected with WPA-2 enterprise security so that packets cannot be intercepted, and finally, establishing demilitarized zones in the case that someone may need access to the internet, but is separate from the main network. To go in more depth, starting with firewalls, these prevent unwanted entities from accessing the network, while also preventing users of the network from accessing certain things from outside of the network. As for blocking ports, in my experience, many ransomware attacks have gotten to the network from an unblocked port; the port is 3389 and is for remote desktop protocol (RDP). In my encounters, every time an institution was exposed to ransomware, the port was unblocked, despite not using it. With wireless becoming as popular as it is, many people do not utilize the built-in security that encrypts all the packets traveling through air. Despite this, it should be incorporated into every business that uses wireless technology. This is because it uses AES-128-bit encryption so that if it were to be intercepted, the plaintext would be replaced with cyphertext and therefore, it would be unreadable. Finally, a majority of attacks take place from the carelessness of users on the internet. DMZ’s provide users with access to the internet without the possibility of carelessness leading to an attack on the network because the DMZ is a separate network. These are some responsibilities of a network engineer and how they make networks safer for users.