Rami Al-Soufi

Planned, designed & built EA offices for customers in GCC area in away aligned with industry standards / frameworks(TOGAF, NORA & QEA), and customers vision & mission and strategic business objectives.

Designed & developed roadmap for EA office based on initiative cards originated from technology & application gaps.

Evaluated & and adopted emerging technologies for application & technology domains to foster innovation for each customer.

Conducted maturity assessment of EA office for each customer.

Prepared cloud migration strategy to be used as a guideline for cloud adoption project for the customers.

Ensured EA office governance by checking compliance with ITIL, security, risk, and audit frameworks.

Configured EA office tool / Alfabet according to architecture artifacts and deliverables for technology & application layers .•Collaborated with executives and stakeholders for each customer to translate business needs into technical solutions.

Conducted architecture design review with the development & infrastructure teams for the customers legacy applications.

Generated all reports needed for obtaining the certificate of compliance for the governance authority of each customer.

Communicated regularly with executive leadership to provide updates on EA office initiatives and artifacts/deliverables.

Assessed current infrastructure for organizations to identify the gaps and design a cloud migration strategy that would support the growth for them .

Conducted a thorough analysis of the existing infrastructure & applications to determine cloud adoption factor for each application / infrastructure component .

Designed, developed, and implemented security systems & solutions to protect an organizations information technology assets .

Monitored industry regulations to maintain compliance across all technology implementations for organizations .

Designed a cloud migration plan (based on previous assessment) that leveraged the scalability and flexibility of a major cloud provider .

• Assessed current infrastructure for organizations to identify the gaps and design a cloud migration strategy that would support
the growth for them.
• Conducted a thorough analysis of the existing infrastructure & applications to determine cloud adoption factor for each
application / infrastructure component.
• Designed, developed, and implemented security systems & solutions to protect an organizations informations technology
assets .
• Monitored industry regulations to maintain compliance across all technology implementations for organizations .
• Designed a cloud migration plan (based on previous assessment) that leveraged the scalability and flexibility of a major cloud
provider.

Developed a comprehensive cloud migration strategy for EastNets US DCs in a way that is aligned with EastNets objectives.

Designed EastNets cloud environment, including infrastructure components (networks, servers, storage, security ), application & data architecture & security measures.

Implemented & maintained security measures & controls to protect EastNets infrastructure, application & data in the cloud.

Communicated effectively with both technical & non-technical stakeholders, explaining complex cloud concepts & providing updates on cloud initiatives .

Continuously monitored & optimized EastNets US two DCs over Azure cloud for performance, scalability, and cost-efficiency.

Assessed the security risks associated with cloud network devices and ensure their compliance with SWIFT CSP & other security standards as: ISO 27K1, GDPR & NIST.

Developed a risk management & governance framework with policies & solutions for cybersecurity and compliance with ISO 27k & GDPR standards.

Designed and architected cloud network and security solutions based on SWIFT CSP standards, regulations & client requirements.

Developed security plans & policies for Incident Response, Disaster Recovery & Business Continuity Plan for EastNets On-prem and Cloud-based sites.

Configured data connectors in Microsoft Sentinel to collect and aggregate security data from various sources in EastNets environment over Azure cloud.

Monitored security events effectively using Azure Monitor to gain visibility into EastNets cloud environment.

Managed application access in Microsoft Azure Active Directory (known as EntraID now).

Implemented security controls and measures such as : threat protection, identity & access management/IAM for EastNets new environments over Azure & AWS cloud.

Evaluated and selected vendors for cloud networking & security solutions & systems.

Assisted in PoC setups for SASE solutions from varied vendors such as : Palo Alto, Cloud Flare and Scalar to nominate one SASE solution / vendor at the end for securing EastNets On-Prem and Cloud-based networks.

• Developed a comprehensive cloud migration strategy for EastNets US DCs in a way that is aligned with EastNets objectives.
• Designed EastNets cloud environment, including infrastructure components (networks, servers, storage), application & data
architecture & security measures .
• Implemented & maintained security measures & controls to protect EastNets infrastructure, application & data in the cloud.
• Ensured that EastNets cloud environment complies with relevant industry regulations and standards as : Swift CSP, ISO 27K,
NIST, GDPR .
• Developed & implemented security incident response plans to address security breaches, network outages over EastNets cloud
networks.
• Communicated effectively with both technical & non-technical stakeholders, explaining complex cloud concepts & providing
updates on cloud initiatives.
• Continuously monitored and optimized EastNets US two DCs over Azure cloud for performance, scalability, and cost-efficiency.

Configured & managed EastNets cloud services : as virtual machines, storage, networks, databases, virtual networks.

Deployed, managed and automated EastNets applications configuration over cloud, using containerization technologies as : Docker, Kubernetes, Terraform & Ansible.

Monitored the health & performance of EastNets DCs using tools as : Azure Monitor & Amazon CloudWatch to track metrics, identify issues, and ensure uptime of EastNets cloud environments.

Configured data connectors in Microsoft Sentinel to collect & aggregate security data from various sources over Azure cloud.

Diagnosed & resolved issues showed up in EastNets cloud environments to minimize downtime and ensure service availability.

Implemented security best practices & controls to protect EastNets infrastructure resources, applications & data over Azure & AWS cloud networks.

Participated in preparing Security Hardening Template for all security devices & servers installed on all EastNets sites.

Configured & troubleshooted network security devices: NGFW/VPN (PA, Cisco, Juniper), Juniper IPS, Cisco ISE and FMC for EastNets on-prem DCs.

Adopted a collaborative & comprehensive team environment, encourage knowledge sharing, cross-training, and continuous learning between team members.

Configured and troubleshooted EastNets new Data Centers based on Spine-Leaf Architecture by Cisco SDN (ACI) using APIC controllers.

Configured F5 Network Load Balancers (LTM, GTM) and applied security application policies using F5 WAF for EastNets internal network .

Created and configured Palo Alto Enterprise Data Loss Prevention (E-DLP) data patterns and filtering profiles to prevent accidental data misuse, loss, or theft.

• Configured & managed EastNets cloud services : as virtual machines, storage, networks, databases, virtual networks .
• Deployed, managed and automated EastNets applications configuration over cloud, using containerization technologies as :
Docker, Kubernetes, Terraform & Ansible.
• Monitored the health and performance of EastNets DCs using tools as : Azure Monitor & Amazon CloudWatch to track metrics,
identify issues, and ensure uptime of EastNets cloud environments.
• Configured data connectors in Microsoft Sentinel to collect & aggregate security data from various sources over Azure cloud.
• Diagnosed & resolved issues showed up in EastNets cloud environments to minimize downtime and ensure service availability.
• Implemented security best practices & controls to protect EastNets infrastructure resources, applications & data over Azure &
AWS cloud networks.

Designed & built virtual data center for EastNets DR site using VMware technology.

Upgraded EMC RSA Authentication server in for EastNets DR site from 6.1 up to 8.1 then to 9.0.

Installed & configured monitoring tool (ME Op-Manager), Desktop Central & Firewall Analyzer for all EastNets sites.

Upgraded virtual Data Centers running on ESXi 4.1 to ESXi 5.5, vCenter 6.0 & vSphere client 5.5.

Configured network security devices: NGFW/VPN (PA, Cisco, Juniper), Juniper IPS, Cisco ISE and FMC for EastNets on-prem data centers.

Enhanced & tuned network performance by configuring QoS, FHRP, HSRP, policy-based routing (BPR), Port-Aggregation, IP-SLA on the required NW & Security devices for on-prem EastNets networks.

Configured & troubleshooted s2s vpn connections on Juniper & Fortinet vpn devices existing at remote customer sites.

Configured new VLANs, DMZs, Routing, firewall policies needed for publishing new swift services.

Prepared vpn connectivity troubleshooting guide & security hardening template for security devices & servers installed on all EastNets sites.

Participated in preparing EastNets incident & change management policy.

• Designed & built virtual data center for EastNets DR site using VMware technology .
• Upgraded EMC RSA Authentication server in for EastNets DR site from 6.1 up to 8.1 then to 9.0 .
• Installed & configured monitoring tool (ME Op-Manager), Desktop Central & Firewall Analyzer for all EastNets sites.
• Upgraded virtual Data Centers running on ESXi 4.1 to ESXi 5.5, vCenter 6.0 & vSphere client 5.5.
• Configured network security devices: NGFW/VPN (PA, Cisco, Juniper), Juniper IPS, Cisco ISE and FMC for EastNets on-prem
data centers .
• Enhanced & tuned network performance by configuring QoS, FHRP, HSRP, policy-based routing (BPR), Port-Aggregation, IP
SLA on the required NW & Security devices for on-prem EastNets networks .
• Configured & troubleshooted s2s vpn connections on Juniper & Fortinet vpn devices existing at remote customer sites .
• Configured new VLANs, DMZs, Routing, firewall policies needed for publishing new swift services .
• Prepared vpn connectivity troubleshooting guide & security hardening template for security devices & servers installed on all
EastNets sites .
• Participated in preparing EastNets incident & change management policy.

Set up the designs for the last-mile solutions compatible with backbone networks for ISPs as: Orange JO, Zain & Umniah (Formerly Batelco).

Installed & configured OneAccess routers as a POC for the customers.

Provided 1st & 2nd level of technical support to customers as ISPs: Orange JO, Zain & Umniah using phone calls or/and using support forums tickets.

Provided 3rd level of support to Orange JO engineers & helping them with OneAccess devices configuration.

Installed, configured & troubleshooted NW devices as: Cisco Routers & Switches.

Installed, configured & troubleshooted security devices as: Juniper SSG, Cisco ASA, Symantec DLPs & Blue Coat (Proxy SG & Cash Engine) on the customer sites.

Participated in configuring & commissioning Kulacom Wi-Max sites.

• Installed & configured OneAccess routers as PoC setup for the customers .
• Provided 1st & 2nd level of technical support to ISPs: Orange JO, Zain & Umniah .
• Provided 3rd level of support to Orange JO ISP engineers by helping them with OneAccess devices
configuration .
• Installed, configured & troubleshooted NW devices as: Cisco Routers & Switches .
• Installed, configured & troubleshooted security devices as: Juniper SSG, Cisco ASA, Symantec DLPs & Blue
Coat (Proxy .
CashEngine) on the customer sites .
• Set up the designs for the last-mile solutions compatible with backbone networks for ISPs as: Orange JO,
Zain & Umniah .

• Install & configure Core ATM SPS & MPS switches (New Bridge).
• Install & configure DSLAMs & (IP-based) DSLAMs (Alcatel-Lucent.
• Configure last mile CPE (routers & modems) using NW tools & utilities embedded within ATM Network Management System machine.
• Troubleshoot digital services lines (Physical Layer) using specific testing & diagnosing tools.
• Prepare & test IMMSP platform to provide Triple Play services (ADSL, Video on-Demand (VoD), Audio (VoIP) over Fiber cables (FTTH, FTTO, FTTC) as a last mile connectivity.