Accomplished Senior Network Security professional at GKN Aerospace USA, specializing in data center migrations and comprehensive network security management. Demonstrates proven expertise in firewall management and network troubleshooting, ensuring strict compliance with industry standards. Exhibits strong vendor coordination skills and a dedication to delivering high-quality infrastructure solutions that enhance operational efficiency.
Overview
15
15
years of professional experience
1
1
Certification
Work History
Senior Network Security
GKN aerospace USA
08.2022 - Current
Successfully Migrate the Entire Data centers include installing the new Hardware and moving all the physical/ logical servers, Network, and Firewalls
Working closely with IT Departments and Applications owners and help with migrate all the servers/ Application to Data centers
Report to the Regional Data Centre Manager whilst maintaining and administering computer networks, LAN/WAN and related computing environments including systems software, configuration and security in accordance with GKN Aerospace standards and industry best practices
Troubleshoot, diagnose and resolve hardware, software and other network and system problems whilst supporting front line IT staff in complicated network related matters
Document, track, monitor and communicate problems and business risks to ensure timely resolution and compliance
Deliver network services to agreed SLA
Troubleshoot problems associated with the network environment
Work with hardware and software vendors to resolve technical support issues
Coordinate and work with global architects and other regional data center teams
Ensure infrastructure and systems meet GKN Aerospace standards in regard to functionality, security and maintainability
Deploy industry best practice approaches and standards
Procure and replace network hardware components when required
Manage security risks in consultation with the Global Cyber Security Team
Network Security Engineer IV
MIC global services / Atlantic aviation
02.2019 - 08.2022
Deployed Cisco nexus 9508 Switch, and Cisco Routers ASR 1001-X & PA5260 ground-up data center build-out on DC1 & DC2 with cross connect
Utilized VPC along with HSRP and routing features
Built out the top of rack switches 3850s, leveraged Ether-Channel back to the core
Worked with PMO on developing an accurate count of items needed and on hand
This was used to build out the budget for next year's IT spend
WAN/LAN redesign and standardization, on Atlantic Aviation moving from Avaya layer 2 only switches and firewalls at every egress point to Meraki-based topology with firewalls at the edge routing at the core
This project consisted of 70+ sites
The goal was to standardize a nonstandard network
Designed and built ASA & Palo alto conversion for Hawaii Gas data center
ASA takeover and data center relocation
Built out all policies both egress and ingress to the internet
Main data center and secondary rebuild, design with the conversion from Forficate to Palo Alto 5550's
Sr. Network security Engineer
Brink's Home Security
05.2018 - 02.2019
Design, implement and support secure, highly available network architecture running IOS & NX-OS, PAN-OS, ASA/PIX OS, F5 BIG-IP, Aruba Wireless, and Aruba Clear Pass supporting both data center and campus networks
Migrate campus switches from 4059 to 3800 switches!
Migrate Data center switches from 6509 to Nexus 9504's
Collaboration with other Infrastructure Teams, Telecommunications and Application Owners in the design, implementation and support of redundant, secure network solutions
Develop documentation of Data Center and Campus network infrastructure with a focus on network security
Sr. Network & Firewall Operations Engineer II
Altice, USA
02.2017 - 05.2018
Consistently provide technical support on customer network, managing the entire gamut of operations including LAN/WAN setup, customer interaction and network support
Implement and monitor Network Security in Firewall such as, Checkpoint, Cisco-ASA, and Palo Alto by configuring VPN (IPSec, Remote Access, SSL, RSA), NAT, Rule Base, Policy, Access-List (ACL) IPS, IDS
Supervise Static and Default Configuration of Routers, using Dynamic Routing Protocols (EIGRP, OSPF, BGP) and assist LAN set-up using 3560, 3850, 6500 Cisco
Effectively work on F5 Load Balancer and configure different Load Balance Method (Round Robin, Ratio, and Least Connection), SNAT, Persistence Profile, License, LTM Node/Pool/Member, Virtual Server (VIP), Static & Dynamic Load Balancing, and Priority Based Pool Member Activity, I Rule, I apps, Stateful HA, Qk View Files, Health Monitor, I Rule and I Apps
Planned, designed, configured and implemented Cisco Router (800, 1900, 2900, 3900), Switch (3560, 3850 for Stacking, 4500, 6500), Wireless Access Point, F5 Load Balancer, Check Point, Palo Alto Firewall, Riverbed WAN Optimizer using various tool such as, Putty, TACACS, Jump box, Cramer, QIP and Smart Dashboard
Led the configuration of switches using STP (802.1d), RSTP (802.1w), MST (802.1S), enabling Switch Port Security, Port Fast, BPDU Guard as well as Load Balance using Ether Channel, HSRP, VRRP, GLBP
Developed VLAN's and configured Trucking Protocols (ISL, 802.1q), VTP & VTP Pruning, Inter VLAN Routing (SVI), Cisco Stack wise) while operating on Nexus 5K, 7K in Data Centre
Successfully implemented short/long-term plans that facilitated the achievement of process objectives; met scheduled budget and timeline, maintaining all quality norms and adhering to SLA
Network Engineer
Associate Corporation
11.2015 - 02.2017
Designed, built, implemented and supported core routers and switches as well as VPN Network for Enterprise level
Implemented the deployment of a weekly backup for all the devise using Cat tools software from Solar wind; added and removed network devices from the monitoring system using Orion and Solar wind
Supported and maintained ASA and Palo Alto Firewalls while enhancing network in 190 locations
Successfully migrated branches from MPLS to VPN using ASA 5510 Firewall; deployed and utilized appropriate tools for reporting and routing of IP telephony traffic on the network
NCIS Network Implementation engineer ll
CITI BANK
08.2014 - 11.2015
Effectively handled various day-to-day responsibilities including implementation of Global Network projects, troubleshooting and performing switching administrations as well as upgrading IOS
Maintained and configured Cisco enterprise devices including, Cisco 2900, 3900 Series ISR Routers, Cisco Switches 2960, 3560, 4500, 6500
Configured routing protocols OSPF and BGP, VPC, FEX and VDC's on Nexus 5K, 7K as well as VRFs, BGP VPN-tunnels on MPLS network
Deployed route-filtering techniques that engineered the traffic flow; provided failover plans using HSRP redundancy protocol
Network Engineer
CompuCom Systems
11.2013 - 08.2014
Installed, configured, and supported an organization's local area network (LAN), wide area network (WAN) and internet system or a segment of a network system
Performed technical support for customer and internal networks and systems, effectively managing customer requests via the ticketing system thereby, increasing customer satisfaction rate by 90%
Managed and monitored installation and maintenance of software/hardware on all systems; consistently improved system network performance and achieved organization's Service Level Agreements
Troubleshot complex network and managed major incidents within specified SLA agreements; escalated and produced business notifications as per defined Major Incident Processes
Network Engineer
BP Iraq /SAA contractor
01.2010 - 04.2013
Led the implementation of all networks related projects while working within established configuration and change management policies, facilitating awareness, approval and success of changes made to the network infrastructure
Troubleshot network systems and application performance with packet capture and protocol analysis; investigated and resolved all network-related matters hence, providing technical support that increased performance and productivity
Developed training tools and documentation, utilizing advanced methods, theories and research techniques in the investigation and solution of the complex network requirements and problems
Configured and maintained Cisco routers, switches, and firewalls (IOS and NX-OS); monitored the Network Alarms in the smarts monitoring system, creating tickets as per the severity status
Education
Bachelor - Control & System Engineering
University of Technology
Baghdad, Iraq
01.2009
Skills
Network Infrastructure Planning
Technical Reporting
Infrastructure management
Firewall management
Network troubleshooting
Routing protocols
Vendor coordination
Network security
Data center migration
Certification
CCNA Security
CCNA Data center
CCNP Routing & Switching
Cisco UCS & Nexus switches
Palo Alto (ACE)
Palo Alto PCNSE
Cisco Certified Meraki Network Operator
Checkpoint
F5
NSE4 Fortinet Security Engineer
Python automation
Timeline
Senior Network Security
GKN aerospace USA
08.2022 - Current
Network Security Engineer IV
MIC global services / Atlantic aviation
02.2019 - 08.2022
Sr. Network security Engineer
Brink's Home Security
05.2018 - 02.2019
Sr. Network & Firewall Operations Engineer II
Altice, USA
02.2017 - 05.2018
Network Engineer
Associate Corporation
11.2015 - 02.2017
NCIS Network Implementation engineer ll
CITI BANK
08.2014 - 11.2015
Network Engineer
CompuCom Systems
11.2013 - 08.2014
Network Engineer
BP Iraq /SAA contractor
01.2010 - 04.2013
Bachelor - Control & System Engineering
University of Technology
Similar Profiles
Akshay AithalAkshay Aithal
Senior Full Stack Developer at GKN Aerospace/GKN AutomotiveSenior Full Stack Developer at GKN Aerospace/GKN Automotive