Professional skills

• Redis
• Windows Server
• Arabic
• Backbone
• Business
• CISCO
• Consultant
• CSS
• Design
• English
• Excel
• French
• German
• HTML
• Initiative
• iOS
• Java
• LESS
• Linux
• Linux administration

Original text

**************************** (mailto:****************************)

Tel: 00 Show contacts

Skype: *********.elkardoudi1

Driver License: B

Network Security specialist (Actually in Ukraine)

Professional experience (more than 8 years):

• Perfect knowledge of security, networking and systems products.

• Knowledge and expertise in security and telecom solutions.

• Creative, flexible, spirit of initiative, autonomy, problem solving and Stress resistance

• Excellent communication and soft skills.

• From March 2016 to Now: IT/Network security in Bank Société Générale (French Bank) -Morocco branch

• --Operations and Incident Management (N2 / N3) of the whole Bank infrastructure: network, servers, Database, web/reverse proxy, firewall, WAF, Antivirus, routers, switches ...

• --Providing audit of security breach for all Bank entities (making a risk management report with suggested risk mitigation following ISO 27001 standard).

• -- Implementation of SIEM RSA, IBM Guardium and Evidian SSO into production network and making LLD and SOP document.

Technologies:

• --Cisco ASA/ASR, Fortinet FortiGate, IBM Guardium, SIEM RSA, webgatway McAfee, RWEB deny all , F5 ASM, xROAD, SEP Symantec Antivirus, Evidian SSO.

• From ********** to ********* (1 year): Senior security consultant at HelpAG Corporation (German Service Integrator based on Multi-vendor leader in Security solutions),UAE – Qatar

-Design Solutions, implementation, deployment, and support (*********,3) for customers datacenters in networking and security (Firewalls ,Routers, Switchs, IPS/IDS, SIEM, Web filtering, mail-filtering, Content Filtering DLP) from different vendors: CISCO, F5 (LTM ASM APM), Palo Alto, Juniper, Fireeye, Splunk, Fortinet...

• ***************to 01/2015 (2 year): Network security design architect at WANA Corporation (French Moroccan Service Provider based on CISCO equipment), Casablanca – Morocco.

• Implementation, Support and maintenance of MPLS Backbone based on Cisco equipment :ASA, ISE, ACS TACACS, Nexus, Prime, CRS, ASR9000, ASR1000, 6500 series, GSR, ***************** series

• --Routing and switching Protocol: ISIS, OSPF, EIGRP,BGP, MP-BGP, MPLS, MPLS TE, LDP, QoS, L2VPN, L3VPN, and AToM.

• --Make HLD, LLD and NIP of network and service: backbone IP/MPLS IP RAN Access.

• --Handle connectivity within all platforms LTE PS IMS NGN CS and ADSL interconnection and integration into backbone ,

• IPv6 integration in INWI Backbone using 6VPE MPLS VPN technology.

• Implementation, Support and maintenance of Inwi - IP RAN ring Metro Ethernet Casablanca based on Cisco ASR Routers and Catalyst Switches.

• Integration of different IN and VAS platforms (USSD, OCS, UVC, VMS, SMSC…).

• Security: test performance and integration of ASA & Juniper SRX firewalls.

Test security of equipment penetration testing by tool IXIA (simulating traffic load attack DDOS, IP spoofing)

Implementation and configuration of VPN Methods

• --Site-to-Site IPSec/VPN Remote Access VPN, AnyConnect Full Tunnel, SSL VPN, Full Tunnel IPSec VPN.

• --Configuration of zoning and ACL

Implementation of Failover

• --Configuration NAT and HA with VIP Gateway for internal Servers

• --Integration with redundant architecture HA Failover (LAN and state links).

• --Failover Triggers interface Monitoring

• --Failover and State Links Configuration Replication

Implementation of Firewall Management Design

• --SSH Access CLI

• --Access to FW via HTTPS Access for ASDM

• Wireless ericsson: configuration of BNG and WIC implementation

• LTE : implementation of UGW subscriber concentrator

• Work onGGSNequipmentfor PS project(APN Gi Gy Gx )coordination.

• NGN VoIP: implementation of SBC equipment and knowledge on IMS HSS device and NGN architecture

• Datacenter Implement VSS,vPC between catalystSwitches and design LLD of Nexus Switchimplementation.

• Installation and deploying of F5.

• Huawei From 2010 to 2012 (3 year) Huawei Data Communication Engineer at HuaweiTechnologies, Rabat - Morocco.

• Maroc telecom Metro IP Network Project – IAM IP RAN project :

• --HSI (High Speed Internet), BTV (Broadband TV), VOD (Video on Demand) and VoIP (Voice over IP), fixed voice service, 2G , 3G and business VPN services integration.

• --U2000 NMS monitoring provisioning maintenance for all datacomm equipment

• --Technologies used: Working on IP RAN, IP/MPLS, MPLS VPN (Layer-2 & 3), MPLS-TE, MPLS-QoS, NMS, Routing (MP-BGP, IS-IS, OSPF), Multicast, IPv6, Switching, Security, U2000 Software Monitoring, High availability solutions, securing by tacacs and radius AAA

• Maroc telecom BRAS (Broadband Remote Access Server) redeployment :

• --Provide the technical support for the subcontractor till the final stage.

• --Preparing the LLD Migration plan of the BRAS brodband access server.

• --Implementation for the migration and testing the triple play: internet, VoIP and IPTV services.

• --Preparing the script and cut-over plan.

• --Communicate with customer and receive their requirement.

• --Supervisory for subcontractor and Handle the configuration for all the Datacom equipments.

• Maroc telecom Maintenance Team leader (duty phone handling) :

• --Preparing the RFC, upgrade document and implementing new software and patch for the severs Switch and routers.

• --Analyzing the existing design and make doc planning using MPLS TE and Carrier’s Carrier solution.

• --Daily operation and maintenance for IP-MPLS backbone.

• --Give a Support to the NGN, WCDMA, CDMA, IN and the Access Departments to solve their problems that are related to the Datacom Equipment.

• --Periodic inspection & health check for network traffic usage

• --Responsible for coordinating system upgrade and configuration.

• --Responsible for technical communication with Customer for deploying new services.

• IPv6 implementation IPv6 in Morocco telecom network.

• Training delivery for customer

• --Teach and present solution to customer providing training and technical support for the Customer and our company staff.

• Huawei 2008 to 2009(2 year): IP enginner Backbone expansion IP of Meditel.

• Installation and deployment of 6 PE routers and following project till acceptance and removing all reserve.

•  implementation of 2 CX routers and installing NMS network managing system U2000

Certifications

• ITIL foundation (Valid)

• CISSP (ongoing)

• CEH (Valid)

• Vendor certification:

• CCNP R&S (valid)

• CCNP security (valid)

• CCIE Datacenter written (valid)

• CCIE Lab(ongoing)

• JNCIA (valid)

• F*********(valid)

• F**********(valid)

• Palo Alto ACE (Valid)

• Palo Alto PCNSE (valid)

• Vmware: VCP-NV(valid)

• Fireeye junior system engineer (Valid)

• Huawei certification : certificate HCDP huawei certified design professional (certificate of design)

• Training huawei Datacomm and access network in Huawei's regional office in Egypt from du ************** to *************

• Products Data IP /MPLS :

• RouteurCisco :ASR, CRS, IOS, IOS-XE, IOS-XR.

•  Huawei :Net Engine core layer routeurs NE**********E

• Firewall : ASA,juniper SRX, Eudemon 1000/500/200.

• Accès : IP and ATM DSLAM

• BAS : BRAS MA5200G et ME60

• Management : Solarwind, Nagios,U2000

• DSLAM/MSAN : MA5200T

Technical Proficiencies:

• Networking technologies and models: TCP-IP v4, OSI, IPV6, LAN, WAN, WLAN, ATM, Frame Relay, ETHERNET, MPLS, VIOP/TOIP,QoS, Multicast,IPv6 and IPv4 Coexistence (http://msdn.microsoft.com/en-us/library/aa450080.aspx) and telecoms network.

• Router Configuration:RIP v1/v2, EIGRP, OSPF, RIPng, EIGRP v6, OSPF v3, BGP,ODR, route filtering and manipulation, redistribution, summarization,IP SLA , PBRand other advanced options.

• 

• Switch Configuration:VLANs, private VLANs, DTP, VTP, STP, MSTP, RSTP, HSRP, VRRP, GLBP, Trunking, Etherchannel,Multilayer Switching, Inter-VLAN routing, VACLand other advanced options.

• Network security: Attacks/Prevention, Encryption, AAA, PKI,ACL,Firewall, IPS.

• Datacenter: OTV FCoE Nexus

• Virtual Private Network: VPN IPSec/GRE, MPLS L3 and L2 VPN , VPN SSL.

• Securing networks with CISCO devices (Switchs, Routers, ASAs, PIXs…)

• Wireless Networks (Standards, protocols, deployment and configuration).

• Operating Systems: Windows 7, Vista, XP, Windows Server 2003, Linux Administration.

• Language and programming: Python, Java, HTML.

Education &Certification:

• 2008: Master in computer science in INPT (Institut national des postes et télécommunication) Morocco (grade : good).

• 2006: Bachelor of Science In applied mathematics in Hassan II University Morocco (ranked first of the promotion).

• 2003: Baccalaureate in science on 2003 college Mustapha elmaani morocco

Languages:

• English:fluent.

• French: fluent.

• German: A1 level ‘communicational’.

• Spanish : basic

• Arabic: mother Tongue

Interests & Activities :

• Travel, chess, ping pong.