Ameer Aswad
Summary
Accomplished Senior Network Security professional at GKN Aerospace USA, specializing in data center migrations and comprehensive network security management. Demonstrates proven expertise in firewall management and network troubleshooting, ensuring strict compliance with industry standards. Exhibits strong vendor coordination skills and a dedication to delivering high-quality infrastructure solutions that enhance operational efficiency.
Overview
15
15
years of professional experience
1
1
Certification
Work History
Senior Network Security
GKN aerospace USA
08.2022 - Current
- Successfully Migrate the Entire Data centers include installing the new Hardware and moving all the physical/ logical servers, Network, and Firewalls
- Working closely with IT Departments and Applications owners and help with migrate all the servers/ Application to Data centers
- Report to the Regional Data Centre Manager whilst maintaining and administering computer networks, LAN/WAN and related computing environments including systems software, configuration and security in accordance with GKN Aerospace standards and industry best practices
- Troubleshoot, diagnose and resolve hardware, software and other network and system problems whilst supporting front line IT staff in complicated network related matters
- Document, track, monitor and communicate problems and business risks to ensure timely resolution and compliance
- Deliver network services to agreed SLA
- Troubleshoot problems associated with the network environment
- Work with hardware and software vendors to resolve technical support issues
- Coordinate and work with global architects and other regional data center teams
- Ensure infrastructure and systems meet GKN Aerospace standards in regard to functionality, security and maintainability
- Deploy industry best practice approaches and standards
- Procure and replace network hardware components when required
- Manage security risks in consultation with the Global Cyber Security Team
Network Security Engineer IV
MIC global services / Atlantic aviation
02.2019 - 08.2022
- Deployed Cisco nexus 9508 Switch, and Cisco Routers ASR 1001-X & PA5260 ground-up data center build-out on DC1 & DC2 with cross connect
- Utilized VPC along with HSRP and routing features
- Built out the top of rack switches 3850s, leveraged Ether-Channel back to the core
- Worked with PMO on developing an accurate count of items needed and on hand
- This was used to build out the budget for next year's IT spend
- WAN/LAN redesign and standardization, on Atlantic Aviation moving from Avaya layer 2 only switches and firewalls at every egress point to Meraki-based topology with firewalls at the edge routing at the core
- This project consisted of 70+ sites
- The goal was to standardize a nonstandard network
- Designed and built ASA & Palo alto conversion for Hawaii Gas data center
- ASA takeover and data center relocation
- Built out all policies both egress and ingress to the internet
- Main data center and secondary rebuild, design with the conversion from Forficate to Palo Alto 5550's
Sr. Network security Engineer
Brink's Home Security
05.2018 - 02.2019
- Design, implement and support secure, highly available network architecture running IOS & NX-OS, PAN-OS, ASA/PIX OS, F5 BIG-IP, Aruba Wireless, and Aruba Clear Pass supporting both data center and campus networks
- Migrate campus switches from 4059 to 3800 switches!
- Migrate Data center switches from 6509 to Nexus 9504's
- Collaboration with other Infrastructure Teams, Telecommunications and Application Owners in the design, implementation and support of redundant, secure network solutions
- Develop documentation of Data Center and Campus network infrastructure with a focus on network security
Sr. Network & Firewall Operations Engineer II
Altice, USA
02.2017 - 05.2018
- Consistently provide technical support on customer network, managing the entire gamut of operations including LAN/WAN setup, customer interaction and network support
- Implement and monitor Network Security in Firewall such as, Checkpoint, Cisco-ASA, and Palo Alto by configuring VPN (IPSec, Remote Access, SSL, RSA), NAT, Rule Base, Policy, Access-List (ACL) IPS, IDS
- Supervise Static and Default Configuration of Routers, using Dynamic Routing Protocols (EIGRP, OSPF, BGP) and assist LAN set-up using 3560, 3850, 6500 Cisco
- Effectively work on F5 Load Balancer and configure different Load Balance Method (Round Robin, Ratio, and Least Connection), SNAT, Persistence Profile, License, LTM Node/Pool/Member, Virtual Server (VIP), Static & Dynamic Load Balancing, and Priority Based Pool Member Activity, I Rule, I apps, Stateful HA, Qk View Files, Health Monitor, I Rule and I Apps
- Planned, designed, configured and implemented Cisco Router (800, 1900, 2900, 3900), Switch (3560, 3850 for Stacking, 4500, 6500), Wireless Access Point, F5 Load Balancer, Check Point, Palo Alto Firewall, Riverbed WAN Optimizer using various tool such as, Putty, TACACS, Jump box, Cramer, QIP and Smart Dashboard
- Led the configuration of switches using STP (802.1d), RSTP (802.1w), MST (802.1S), enabling Switch Port Security, Port Fast, BPDU Guard as well as Load Balance using Ether Channel, HSRP, VRRP, GLBP
- Developed VLAN's and configured Trucking Protocols (ISL, 802.1q), VTP & VTP Pruning, Inter VLAN Routing (SVI), Cisco Stack wise) while operating on Nexus 5K, 7K in Data Centre
- Successfully implemented short/long-term plans that facilitated the achievement of process objectives; met scheduled budget and timeline, maintaining all quality norms and adhering to SLA
Network Engineer
Associate Corporation
11.2015 - 02.2017
- Designed, built, implemented and supported core routers and switches as well as VPN Network for Enterprise level
- Implemented the deployment of a weekly backup for all the devise using Cat tools software from Solar wind; added and removed network devices from the monitoring system using Orion and Solar wind
- Supported and maintained ASA and Palo Alto Firewalls while enhancing network in 190 locations
- Successfully migrated branches from MPLS to VPN using ASA 5510 Firewall; deployed and utilized appropriate tools for reporting and routing of IP telephony traffic on the network
NCIS Network Implementation engineer ll
CITI BANK
08.2014 - 11.2015
- Effectively handled various day-to-day responsibilities including implementation of Global Network projects, troubleshooting and performing switching administrations as well as upgrading IOS
- Maintained and configured Cisco enterprise devices including, Cisco 2900, 3900 Series ISR Routers, Cisco Switches 2960, 3560, 4500, 6500
- Configured routing protocols OSPF and BGP, VPC, FEX and VDC's on Nexus 5K, 7K as well as VRFs, BGP VPN-tunnels on MPLS network
- Deployed route-filtering techniques that engineered the traffic flow; provided failover plans using HSRP redundancy protocol
Network Engineer
CompuCom Systems
11.2013 - 08.2014
- Installed, configured, and supported an organization's local area network (LAN), wide area network (WAN) and internet system or a segment of a network system
- Performed technical support for customer and internal networks and systems, effectively managing customer requests via the ticketing system thereby, increasing customer satisfaction rate by 90%
- Managed and monitored installation and maintenance of software/hardware on all systems; consistently improved system network performance and achieved organization's Service Level Agreements
- Troubleshot complex network and managed major incidents within specified SLA agreements; escalated and produced business notifications as per defined Major Incident Processes
Network Engineer
BP Iraq /SAA contractor
01.2010 - 04.2013
- Led the implementation of all networks related projects while working within established configuration and change management policies, facilitating awareness, approval and success of changes made to the network infrastructure
- Troubleshot network systems and application performance with packet capture and protocol analysis; investigated and resolved all network-related matters hence, providing technical support that increased performance and productivity
- Developed training tools and documentation, utilizing advanced methods, theories and research techniques in the investigation and solution of the complex network requirements and problems
- Configured and maintained Cisco routers, switches, and firewalls (IOS and NX-OS); monitored the Network Alarms in the smarts monitoring system, creating tickets as per the severity status
Education
Bachelor - Control & System Engineering
University of Technology
Baghdad, Iraq01.2009
Skills
- Network Infrastructure Planning
- Technical Reporting
- Infrastructure management
- Firewall management
- Network troubleshooting
- Routing protocols
- Vendor coordination
- Network security
- Data center migration
Certification
- CCNA Security
- CCNA Data center
- CCNP Routing & Switching
- Cisco UCS & Nexus switches
- Palo Alto (ACE)
- Palo Alto PCNSE
- Cisco Certified Meraki Network Operator
- Checkpoint
- F5
- NSE4 Fortinet Security Engineer
- Python automation
Timeline
Senior Network Security
GKN aerospace USA
08.2022 - Current
Network Security Engineer IV
MIC global services / Atlantic aviation
02.2019 - 08.2022
Sr. Network security Engineer
Brink's Home Security
05.2018 - 02.2019
Sr. Network & Firewall Operations Engineer II
Altice, USA
02.2017 - 05.2018
Network Engineer
Associate Corporation
11.2015 - 02.2017
NCIS Network Implementation engineer ll
CITI BANK
08.2014 - 11.2015
Network Engineer
CompuCom Systems
11.2013 - 08.2014
Network Engineer
BP Iraq /SAA contractor
01.2010 - 04.2013
Bachelor - Control & System Engineering
University of Technology
Similar Profiles
Akshay AithalAkshay Aithal
Senior Full Stack Developer at GKN Aerospace/GKN AutomotiveSenior Full Stack Developer at GKN Aerospace/GKN Automotive
Willie GullatteWillie Gullatte
Composite Worker at GKN Aerospace - Tallassee , ALComposite Worker at GKN Aerospace - Tallassee , AL
Menelaos AskordalakisMenelaos Askordalakis
Junior Group Lead at GKN AerospaceJunior Group Lead at GKN Aerospace