PROFESSIONAL SUMMARY:

• Senior Network Security Engineer with 15 years of experience in researching development, design engineering, implementation, and administration of network security solutions. Skilled in supporting and troubleshooting operational issues related to network security Infrastructure.
• Extensive experience in information security and threat analysis and solution, supporting and troubleshooting network security infrastructure, connectivity, and operational issues. specialist in consulting of different security solutions for all phases of solution life cycle: planning, Architecture, Design, Implementation, deployment, troubleshooting and support, handover and documentation.
• Responsible for the implementation, design, engineering, and support of PaloAlto Firewalls on Panorama Platform and ASA firewalls, Juniper SSG firewalls and Juniper SRX Firewalls, and Juniper IPS.
• Expertise in the implementation, installation, and configuration of Cisco Catalyst Switches 6509,3750 and 3550 series, routing protocols (OSPF, EIGRP, BGP), ACLs, core and distribution switches and servers.
• Experience in implementation and troubleshooting of complex layer 2 technologies (VLAN Trunks, VTP, EtherChannel, STP, RSTP, MST, HSRP, VRRP, and default gateway redundancy)
• Expertise in endpoint security, centralized management of antiviral solutions (Kaspersky and Symantec endpoint protection products), potential malware analysis and prevention, and the creation of tools for machine cleaning and security.
• An efficient Team Player in a challenging and creative environment with excellent capacity to adapt new technologies and skills.
• Experienced in handling multiple changes on multiple systems with high troubleshooting skills.

KEY SKILLS

Systems: Windows (Server 2003, XP, 7, 8), Red Hat

Administration: Active Directory

Security: NAT, SSL,IPsec

Networking: VoIP, LAN/WAN, TCP/IP, OSI, SMTP, DNS, DHCP, OSPF

Fluency: English, French and Arabic

Firewalls: Cisco PIX, ASA, Juniper SSG, Juniper Srx, PaloAlto,McAfee NGFW

Intrusion Prevention System: Juniper IDP 800

Network and Security managers/Tools: Panorama, Juniper NSM, McAfee Security Management Center, CiscoWorks, Solarwinds, Algosec, Splunk, Infoblox .

Languages: JAVA,C/C++, MySQL, PHP, XML, XSL, HTML, JavaScript, Phython

Network and SecurityTools: Algosec, Splunk, Infoblox

PROFESSIONAL EXPERIENCE:

Network Security Engineer

Confidential Houston, Texas

Responsibilities:

• Implementing a USER - ID based solution for the Terminal Automation team on 30+ remote spokes firewalls across the globe. redesigned the management for the internet facing firewalls with all Virtual systems included facilitating the Automation task.
• Migration of the Internet Anywhere VPNs from the legacy Internet Anywhere firewalls to the new Communication Hub firewall on 30+ spokes sites .
• Updating F5 LTM devices over various platforms
• Integrating Palo Alto firewalls in new and existing environment
• Firewall OS upgrade, Firewall Hardware Refresh, Threat Prevention implementation+.
• Firewall Risky Policies/Rules traffic logs analysis and remediation
• Quality Assurance for the SNCS database records

Network Security Engineer

Confidential,Houston, Texas

Responsibilities:

• Installed, configured, managed, and troubleshoot security technologies on Juniper firewalls via CLI, NSM and Junos Space (Network Management Platform, Security Director, Service Now, and Service Insight).
• Acted as a tier 3 technical support engineer for all Juniper ScreenOS, JunOS-based SRX and PaloAlto firewalls which includes Migrating ScreenOS-based to JunOS-based configurations on SRXs firewalls; troubleshooting of IPSec VPNs, NSRP, High Availability/Chassis Clustering; creating, editing, and deleting Security Policies as needed; and Policy Based Routing.
• Participated in Project kickoff meetings to gather technical requirements from application teams to meet business needs. Troubleshot VPN, High Availability, OSPF, ALG, Policy Based Routing, etc. on Juniper Netscreen SSG and Juniper Junos SRX firewalls.
• Developed and deployed standard configuration templates such as SNMPv3 and Radius .
• Troubleshot and supported the VOIP infrastructure.
• Maintained, upgraded and reconfigured NSM Express on HA mode; that included getting all SSG firewalls managed
• Responded in time and with the fix for incident tickets on Confidential ticketing system and IBM ticketing system.

Network Security Administrator

Confidential, Algiers, Algeria

Responsibilities:

• Researched and implemented network security solutions for 80 remote sites and 5000 connected users using Juniper SSG 550M, SSG140, SRX210h on cluster mode, Juniper IDP800 and NSMExpress .
• Administered Juniper Firewalls ( Netscreen SSG and Junos SRX) and IDP800 using CLI, WebUI and NSMExpress; that included but not limited to: implementing new policies, implementing new security Zones (DMZ),creating and managing new VPN connections, and Recovering Firewalls and NSM crashes.
• Administered and troubleshot LAN and WAN solutions, that included Swithes and Router configuration, end user network settings using coding and scripting and Antiviral solutions (Kaspersky and Symantec).
• Designed, deployed, configured, managed and troubleshot new security solution for central sites and national agencies, decreasing operational time; secured servers in DMZs and eliminated maintenance fees for existing solutions implemented by a third party provider using Juniper Netscreen and JunosFirewalls and IPS .
• Planned integration of new security solutions in existing platforms by detecting and correcting network anomalies in switches and routers and migrating and/or upgrading existing security equipment using Juniper Netscreen and Junos Firewalls, Cisco Pix and ASA5520 Firewalls and McAfee Security Firewalls.
• Installed new security equipment, emergency integration included when existing equipment crashed
• Segmented network on several part and moved servers from LAN to DMZ that filtered access to servers from the LAN and between servers and secured servers.
• Defined and implemented target architecture in collaboration of banking services integrators on Swift (Society for Worldwide Interbank Financial Telecommunication) and Reuters News Agency Company platforms.
• Defined target architecture for VOIP solution and troubleshot issues during and after implementation
• Supported and troubleshot operational issues related to network and security infrastructure (Using OSI Model layers) on banking industry platforms (Swift, Bloomberg and Reuters) and technical platforms (VOIP, Active Directory, Symantec Netbackup, Oracle Database, Java web applications) emergency support included that maintained applications working without negative impact on the production.
• Wrote specifications document for acquiring equipment and evaluated vendor offers, this allowed the company to be secured with best technologies and less cost.
• Managed team of two engineers and three technicians, evaluated their performances and assigned responsibilities.

Computer Engineer

Confidential, Algiers, Algeria

Responsibilities:

• Developed new website of the division IST (Scientific and Technical Information) using SPIP, PHP and macromedia flash MX
• Maintained the 40 computers of the division, by cleaning and disinfecting them that facilitated the work for users
• Participate in the development of SYNGEB library management system using Java Builder 7 .