Sherif Ali El-kholy, Network and Security Consultant

Sherif Ali El-kholy

Network and Security Consultant

Cisco System KSA -NCB Project

البلد
المملكة العربية السعودية - الرياض
التعليم
بكالوريوس, B.Sc. in Electronics and Communications Engineering
الخبرات
19 years, 4 أشهر

مشاركة سيرتي الذاتية

حظر المستخدم


الخبرة العملية

مجموع سنوات الخبرة :19 years, 4 أشهر

Network and Security Consultant في Cisco System KSA -NCB Project
  • المملكة العربية السعودية - جدة
  • أشغل هذه الوظيفة منذ سبتمبر 2014

Main Responsibilities:
• NCB Data-Center Migration, Planning, Implementation, Network segregation to blocks (Internet, Extranet, Data-Center and out-of-band Management Block) using N7k, N5k, N2k, C4k and C3750 switches, ASA and IPS.
• Prepare Design, Implement BGP, OSPF and EIGRP Routing protocol for Production, disaster Recovery, Non-Production and WAN networks.
• Manage DMVPN phase 3 Tunnel between MITC, K10 Datacenters and Branches.
• Manage Cisco 19xASA5585-x Firewall Active/Standby, IOS ver. 8.6, 9.2.3.
• Manage Cisco 5xASA5545-x Site-to-Site and Any-connect VPN.
• Manage, Reporting for 19x (IPS4510, IPS5585-SSP40 and IPS5585-SSP20)
• Manage Firewall ACL cleansing, justification Project to meet PCI ver.3 using Syslog server RSA enVision, Splunk and AlgoSec Firewall Analyzer.
• Prepare, Implement for DDOS Attacks Protection solution with Arbor Networks include External Cloud and Internal APS Appliance for Mitigation.
• Manage Juniper Firewall, SRX650, and SRX3400 in 19x corporate sites.

Network Consultant Engineer في Saudi Telecom Company (STC)
  • المملكة العربية السعودية - الرياض
  • يونيو 2012 إلى أغسطس 2014

Deep Packet inspection team, manage Service control engine solution SCE.

• Install and configure Cisco Service Control Engine (SCE).
• Manage and monitor up to 31 SCE in Riyadh and Jeddah.
• Generate reports through SCA-BB console and cisco inside.
• Manage and configure ACE Application control Engine module.
• Manage and configure Firewall service module.
• Manage and configure cisco WS-C6509-E, WS-C3750.

Network and Secuirty Supervisor في mobiserveholding
  • مصر - القاهرة
  • مايو 2008 إلى يونيو 2012

• Implement of new network solution and Modify existing network configuration for customer’s using Cisco product (Fixed and Modular Switches, Integrated Service Routers, ASA, Intrusion prevention appliance, Management Software).

• Cisco Product experience 2950, 2960, 3560E, 4510E, 6513, ISR 1841 ISR 2800 ISR 3800, 7200 series, PIX515E, ASA5505, ASA5510, ASA5520, ACS ver.4 and Cisco Management product.

• Implementation and management for 3Com 1700, 4500 series and HP ProCurve switches.

• Implementation and management for Mobinil IP-MPLS project in 12 Branches.

• Network and security Administrator for all Mobiserveholding network in Egypt and all subsidiaries like KSA, Bangladesh, Pakistan, Algeria, Dubai, Tunisia, Kenya and Morocco.

• FortiGATE Firewall implementation and management protection profile, Intrusion prevention, URL filtering, AntiSpam and create VPN and maintain IOS software up-to-date.

• FortiMAIL Anti-Spam implementation and management.

• Forti-Analizer implementation and management report generation.

• Fotinet Product experience FG100A, 80C, 110C, 310B, FortiMail 400B and Forti-Analizer 400B.

• Sophos Antivirus, Application control and Firewall implementation and management.

• Microsoft Forefront Antivirus implementation and management.

• Microsoft windows server update services implementation and management.

• Check & Assess the impact of new attacks & viruses on the environment on daily basis.

• Implementation and management for Riverbed WAN optimization.

Network and Secuirty Engineer في QuadraTech for Information Technology
  • مصر - القاهرة
  • يناير 2005 إلى مايو 2008

Premier Cisco Partner
Main Cisco Responsibilities:

• Build new network solution and Modify existing network solution for customer’s using Cisco product (Fixed and Modular Switches, Integrated Service Routers, ASA, Intrusion prevention appliance, Management Software).

• Install and Configure basic configuration for Cisco security Appliance (Router with IOS Advanced Security, PIX and ASA.

• Publishing server on DMZ for Cisco Appliance.

• Install and configure Cisco Appliance Failover as Active/Standby (Backup) or Active/Active (load Sharing) using security context feature.

• Install and configure Remote Access VPN with local or RSA server Authentication, to let Tele-workers access network via Cisco VPN Client or by Microsoft Client.

• Install and configure Site-to-Site VPN between Branches.

• Install and configure Site-to-Site V3PN between Branches

• Install and configure Small Network Management Solution (SNMS)

• CCME implementation, configuration. .

• Work as pre-sales for Passive/Active presentation, survey, Offers and tenders.



Main SYSTIMAX Responsibilities:
• Cabling (UTP and fiber) site survey, Offering, tender, follow-up technicians to complete test, labeling and as build.
• Install Intelligent Patch Panel software.

الخلفية التعليمية

بكالوريوس, B.Sc. in Electronics and Communications Engineering
  • في Helwan University-Faculty of Engineering
  • مايو 2004

*Graduation grade: Good. *Graduation Project: image processing and cryptography *Graduation project grade: Excellent.

Specialties & Skills

Cisco Switches
Cisco IOS
Cisco Security
MPLS VPN
CCIE Routing and Switching
Security Cisco , Juniper, fortigate

اللغات

الانجليزية
متوسط

التدريب و الشهادات

CCIE Routing and Switching (CCIE# 40364) (الشهادة)
تاريخ الدورة:
August 2013
صالحة لغاية:
August 2015
Cisco Certified Design Associate – CCDA (الشهادة)
تاريخ الدورة:
April 2006
صالحة لغاية:
August 2015
Cisco Certified Network Associate- CCNA (الشهادة)
تاريخ الدورة:
June 2006
صالحة لغاية:
August 2015
Cisco Certified Security Professional –CCSP (الشهادة)
تاريخ الدورة:
May 2007
صالحة لغاية:
May 2013