IT Security Systems design, implementation, integration & administration.
Selected Accomplishments:
• Migration of YASREF Riyadh Data Center from Mobily to STC DC. Migrated 70+ network & security devices. Installed all devices in STC DC. Mainly includes ASA, FTD, Palo Alto, and Force Point Firewalls. McAfee NDLPs, NIPS, NSM, ATD, Cisco TG, FMC, ISE. Cisco and HP Routers and switches.
• Deployed Palo Alto NGFW 3220 and 3250 as perimeter and OOB firewall in YDC.
• Implemented Force Point 3201 firewall for new management network in Riyadh DC.
• Implemented Force Point 3301 firewall as an edge security appliance for YASREF Plaint Network in YANBU.
• Migrated ASA 5545, 5555, Palo Alto 3060, Network switches and other security devices.
• Firmware upgradations – Cisco 3850 stack switches (DMZ, EDGE, PRT, Server Farm switches)
• Upgraded Force Point SMC and Force Point, Palo Alto and ASA firewalls firmware.
• McAfee ePO administration. Experience with McAfee Endpoint security products and H-DLP.
• McAfee NSM and IPS administration. Worked on McAfee DXL, TIE, ATD and DE.
• IP SLA and ECMP deployment on ASA and Palo Alto firewall.
• Implemented Palo Alto 3060 as extranet firewall.
• Implemented IPsec Site to Site VPN, YASREF RDC to AVAYA Systems.
• Implemented Client to Site IP Sec VPN Gateways.
• Redesigned YASREF Riyadh Data Center Network and Security Infrastructure.
• Implemented McAfee Stone-Soft firewalls 3201, McAfee 3201 IPS Engine.
• Integrated Symantec and McAfee security systems for 2 factor (DUO) authentication.
• Citrix, HP, Cisco, Stone-soft Multi-vendor Ether channel configuration.
• Static routing, route preferences, default routing configurations.
• McAfee SMC routing and traffic management for multilink gateways.
• IOS Up gradation. (Cisco 3850, 2800, HP 7510, HP MSR 3060, HP 5500 & 3500yl, Stone-soft 3201, 1301, Citrix NetScaler.)
• McAfee SMC and log server administration.
Selected Accomplishments:
• Deployed Forcepoint Web Content Gateway (Web proxy in SAR HQ Premises)
• NCA / ECC Cyber Security Controls Assessment.
• Upgraded Palo Alto 3020 firewall and Global Protect VPN.
• Upgraded Symantec SEPM and EDR Appliance.
• Upgraded Fortinet D200 Firewall and FortiAnalyzer Appliance.
• Established IP Sec Tunnel between SAR and OCI.
• Established IP Sec Tunnel between SAR and NourNet.
• Upgraded Citrix NetScaler Appliances.
• Deployed SSL Offloading in Citrix for Web Application.
Selected Accomplishments:
• ROSHN HQ Data Center Migration from SAR Office to KAFD Office. Technologies includes Fortigate firewalls, Barracuda FW, Palo Alto Firewalls, and Trend Micro DDA. Core, distribution and access switches. Nutanix Servers, Call manager and voice gateway.
• Implemented Palo Alto 5220 as Core firewall in HQ Data Center.
• Deployed and configured ROSHN Riyadh Sales Center Network and Security Infrastructure including Core, Access Switches, Internet (FortiGate Firewall)
• Deployed and configured ROSHN Jeddah Office Center Network and Security Infrastructure including Core, Access Switches, Internet (FortiGate Firewall)
• Deployed and configured ROSHN Sedra City Experience Sales Office Network and Security Infrastructure including Core, Access Switches, Internet (FortiGate Firewall).
• Implemented Fortigate SDWAN with dual ISP links, connecting ROSHN DC and all branches.
• Deployed Aruba WLC in ROSHN Branch offices.
• Added Aruba WLC second node for HA in ROSHN HQ.
• Implemented IP Sec site to site connectivity between OCI and ROSHH DC.
• Fortigate, Barracuda, and Palo Alto firewalls OS upgrades.
• Trend micro apex central and apex one server’s upgrade.
• LDAP integration in Fortigate and Palo Alto firewall.
• Cisco core, distribution and access switches firmware upgrade.
• Solar winds server deployment for systems monitoring and traffic analysis.
• Minimum baseline security configurations in network switches and firewalls.
• IT operations tasks and maintained 99.9% uptime.