IP Network Engineer
Moro Hub Dubai
Total years of experience :9 years, 3 Months
✓ Provision Cloud Network Services to offer multitenancy.
✓ Provisioning of OSPF, BGP on NSX-T, FortiGate and Cisco Devices.
✓ Provision tenant on Cisco ACI that includes provisioning of Tenant, BD, EPG & Physical Domains.
✓ Provision Tenant and VRF across the network to offer multitenancy and geo redundancy.
✓ Managed Palo Alto firewall for perimeter security of Internet segment.
✓ Managed Cisco FTD in bridge mode for WAN security of Intranet segment.
✓ Managed F5 AWAF to offer WAF as a service to multiple customer.
✓ Managed Enterprise wireless spanning multiple location using Cisco WLC 9800 in SSO mode.
✓ Patch Management of Network Devices that includes upgrade of firmware.
✓ Management of Cisco ISE for centralize NAC policy.
✓ Plan and Execute Network Solutions for our Cloud Customer.
✓ Planned and execute Network Solution to offer Wifi-6 Services by Huawei IMASTER NCE.
Provision Cloud Network Services to offer multitenancy
Provisioning of OSPF, BGP on NSX-T, FortiGate and Cisco Devices
Provision tenant on Cisco ACI that includes provisioning of Tenant, BD, EPG & Physical Domains
Provision Tenant and VRF across the network to offer multitenancy and geo redundancy
Administered Palo Alto firewall for perimeter security of Internet segment
Operate Cisco FTD in bridge mode for WAN security of Intranet segment
Managed F5 AWAF to offer WAF as a service to multiple customer
Managed Enterprise wireless spanning multiple location using Cisco WLC 9800 in SSO mode
Patch Management of Network Devices that includes upgrade of firmware
Management of Cisco ISE for centralize NAC policy.
Plan and Execute Network Solutions for our Cloud Customer
Planned and execute Network Solution to offer Wifi-6 Services using Huawei IMASTER NCE
Onboarded Al Hilal Bank, RAW Bank and CBD Bank on cloud for Managed Campus network services
✓ Lead Network Projects and Team.
✓ Proposed and migrate published Internet and Intranet services from FortiWeb to F5 ASM 4600 for
Banking sector.
✓ Upgrade F5 LTM from i2600 to i4600 for Telecom Service Provider.
✓ Install and Provisioned NSX-T 2.4 for Educational Sector.
✓ Planned and deployed Cisco ISE at Banking Sector for Centralize AAA and NAC.
✓ Migration of 350+ spoke and two datacenters from static routing to OSPF offering failover between active and
DR.
✓ Planned and will execute deployment of A10 SSLi and McAfee NS9500 IPS at Defense Organization.
✓ Planned and execute Network Upgrade at 5 star hotel to offer Wi-Fi using Huawei NCE Campus across the
country.
✓ Meeting Customer for Requirement Collection and providing feasible Network Solutions.
✓ Developing Company Portfolio regarding Network Solutions that includes Team Building,
✓ Partnership Registration and arranging required Trainings.
✓ Managed NDC IP Networks and Security Nodes
✓ Design DR-DC in Active-Active Mode to offer Datacenter failover services including GSLB and VXLAN based
connectivity for co-location customers
✓ Composition of HLD and LLD diagrams of Datacenter Networks
✓ Evaluate and Mitigate Single Point of Failures in Data Center
✓ AntiDDOS service provisioning and monitoring
✓ Perform operational task at VMware VDC that include micro segmentation rules, Hairpin NAT, NSX edge firewall
rules, load balancer and L2 network expansion between cloud VMs and physical server
✓ Logs Analysis of WAF, Nginx Proxy, Webservers, Firewalls and IP Network nodes
✓ Provision and Troubleshoot WAF-as-service for API and Web Protection using FortWEB
✓ Provisioning of Application Load balancing, SSL offloading and Web Caching services
✓ Managed Multisite L2overIPSec, SSL and P2P IPsec VPNs on Fortigate and Huawei Firewalls
✓ Implements Virtual Systems and VDOMS to isolate customer and provisioned PBR to carry public address behind
Reverse proxy ✓ Deployed Open source SIEM (Wazuh & ELK stack) for better event correlation
✓ Design & Provisioning of VDCs at VMware Cloud as per Customer Requirement
✓ Meetings with vendor and customer for solution feasibility ✓ Knowledge transfer sessions with junior staff
✓ Defining and Auditing Network Security Zones & Policies for event correlation to mitigate security risks.
✓ Provisioned and troubleshoot eBGP with service providers and redistribute route to iBGP CORE.
✓ Designed and Deploy OSPF to exchange route between Branch and Datacenter.
✓ Administrated and tuned IDS on Juniper Edge Firewall to evaluate both statistics and signature-based screens.
✓ Configured NGIPS to cater attacks on Web, Email & DNS server by using updated Vulnerabilities Database with
signature & behavioral based filtering. ✓ Managed Cisco AMP (Advanced Malware Protection) to block APTs.
✓ Provisioned SSL Decryption on Cisco FTD ✓ Installed Fire EYE EX to mitigate malware & zero-day attacks delivery
via email & also Implemented Fire EYE FX to quarantine files stored in application server.
✓ Implemented Fire EYE NX to isolate already penetrated Malware from its lateral movement, call back activities &
zero-day attack via web requests.
✓ Automate Network Tasks and Migration activities using Python Scripting ✓ Managed Central Authentication and
Accounting using Cisco ISE.
✓ Configurations and troubleshooting of VRFs & L2/L3 MPLS circuits
✓ Managed OSPF as IGP and eBGP adjacencies with Enterprise Customers
✓ Part of team to expand ISP CORE Ring capacity to 80Gig
✓ Part of team to expand Core Network in Central Region
✓ Monitoring of Network nodes using SNMPv2 on SolarWinds
Master in Information Security
Bachelor of Electrical Engineering with specialization in Telecom