CV/Mission de Consultant juniper freelance

Exemple de missions de Hassen,
Consultant juniper habitant les Yvelines (78)

Expérience professionnelle

Security and Network Architect/Tech Lead (February 2022 – Present) – Freelance
▪ Design and implementation of security and network solutions on DC/AZURE Cloud.
▪ Preparation of migration plans to the Cloud and secure industrial infrastructures.
▪ Diagnosis and resolution of N3 incidents on critical industrial sites and DC.
▪ Training and skills transfer to local teams.
▪ Design and preparation of Datacenter relocation scenarios.

Security and Network Architect (October 2019 – February 2022) – Capgemini
▪ Design and implementation of security and network architecture solutions.
▪ Implementation of network/security infrastructures on Azure.
▪ Datacenter relocation.
▪ Preparation and implementation of network infrastructures in DC.
▪ Diagnosis and resolution of N2/3 incidents for clients in DC.
▪ Development of implementation, operation, HLD/LLD documents.
▪ Skills transfer from Build to Run.

Security and Network Consultant (April 2018 – September 2019) – Network Associates
▪ Design and implementation of security and network solutions.
▪ Conducting proof of concepts (POCs).
▪ Diagnosing and resolving level 2 and 3 incidents for clients with support contracts.
▪ Developing implementation, operation, High-Level Design (HLD), and Low-Level Design (LLD)
documents.
▪ Conducting training sessions on Cisco FTD, layer 2 attacks, and VPN technologies.
▪ Creating prototypes for new products.

Security and Network Consultant (July 2016 – March 2018) – Next Step IT
▪ Design and implementation of security/network solutions.
▪ Diagnosing and resolving N2/3 incidents for clients with support contracts.
▪ Developing implementation, operation, and HLD/LLD documents.
▪ Creating prototypes for new products.
▪ Commissioning Data & VoIP services with Ooredoo.

Projects

2024 : SAFT Total Energie
Preparation of a network infrastructure and relocation of the Datacenter EQX to CAV of Orange.
• Proposal and preparation of Move scenarios.
• Proposal and preparation of target architectures.
• Development of the HLD.
• Change of target design.
• Implementation of L3 config (OSPF, BGP) for interconnections on the new site.
• Troubleshooting and resolution of routing and firewalling issues.
Equipements/Solutions: Cisco Catalyst 9500, ISE, Fortigate 601F

2024 : Eclair preservation
Preparation and network/security migration of EP sites.
• Preparation of the design of a Core access architecture.
• Design of the primary site and migration from a shared infrastructure to an independent
infrastructure.
Equipements/Solutions : Fortigate, Fortimanager Cloud, Fortianalyzer Cloud, HP

2023 : SAFT Total Energie
Preparation and implementation of SDWAN architectures for SAFT Enterprise sites.
• Preparation of the design.
• Configuration of the pilot site.
Equipements/Solutions : Fortigate, Fortimanager, Fortianalyzer, Meraki, …

2023: EVA
Preparation and network/security migration of EVA sites.
• Preparation of the design of a centralized WAN Hub and Spoke architecture.
• Design of the primary site and migration from a shared infrastructure to an independent
infrastructure.
• Build of a new redundant and isolated Live network.
Equipements/Solutions : Fortigate, Fortimanager Cloud, Fortianalyzer Cloud, HP, Sophos Endpoint

2022 : SAFT Total Energie
Preparation, design, and migration of network/security architectures for SAFT Total US sites.
• Preparation of the design of a centralized architecture based on DMZs.
• Design and preparation of a new secure and isolated architecture on each American industrial
site.
• Design and implementation of inter-site links.
Equipements/Solutions : Fortigate, Fortimanager, Fortianalyzer, Catalyst, …

2022 : SAFT Total Energie
Preparation, design, and implementation of a hybrid DC/AZURE architecture for the enterprise part.
Preparation, design, and implementation of a cybersecurity architecture for SAFT Total industrial
sites.
• Design of the new hybrid architecture based on Fortinet and Microsoft Azure Hub and Spoke
solutions.
• Implementation and configuration of FortiGATE firewalls on AZURE Cloud.
• Implementation and configuration of the FortiGATE 601F cluster on DC.
• Configuration of IPSEC VPNs between DC and AZURE with BGP.
• Study of the AZURE/DC express Route link with a circuit via TelcoHUB Total.
• Development of the HLD/LLD for the Run team.
• Design and preparation of a new highly secure and isolated architecture for critical industrial
sites.
• Establishment of a standard enterprise/industrial architecture model to be applied to all sites.
Equipements/Solutions : Fortigate, Fortimanager, Fortianalyzer, ISE, AZURE Networking, VRF

2021 : SERVIER
Proposal, design, and implementation of a HUB/Sites architecture (Checkpoint, Meraki).
• Proposal and presentation of target architectures to the client.
• Study of the Legacy architecture/infra.
• Design and implementation of HUB Checkpoint firewalls.
• Workshop with the client to define a Network/Security model for all sites.
• Definition of the roadmap and migration plan for the pilot site with the client.
• Migration of the first site (Checkpoint FW Cluster) with the client.
• Development of the LLD.
Equipements/Solutions : Checkpoint 80.40 GW, SMA, CMA, MDS

2021 : POLE EMPLOI
Proposal and study of the migration of the Pole emploi client from the ODIGO Backbone to
Capgemini CIS.
• Study of the client's existing architecture.
• Collection of requirements.
• Proposal of a new Security architecture meeting all the context requirements.
• Proposal of two Firewalls (Palo Alto, Cisco), defined according to the client's needs and the new
architecture.
• Estimation of the implementation workload of the proposed architecture.
• Development of the HLD.
Equipements/Solutions: Cisco FTD, Palo Alto PA5220, Fortigate600D

2021 : GEFCO
Design and Build of a hybrid infrastructure covering AZURE Cloud/DC on Prem and Saas Fortinet.
• Workshop with the client and manufacturers (Checkpoint, Cisco, Fortinet, PaloAlto) to compare
and choose technologies related to needs.
• Study and design of the new architecture based on Fortinet solutions.
• Implementation and configuration of two FortiGATE clusters on AZURE Cloud (Front
FW/Back FW).
• Implementation and configuration of the FortiNAC cluster for user compliance check.
• Configuration of FortiEMS to manage FortiClient endpoints (Anti-Malware, Anti-virus,
Vulnerability Scan, Host FW, Web Filtering, and VPN package).
• Implementation and configuration of the FortiGATE 1500D cluster on DC.
• Configuration of IPSEC VPNs between DC and AZURE with BGP.
• Configuration of the AZURE/DC express Route link with a circuit via COLT.
• Configuration and association of AZURE routing tables.
• Configuration of NSGs for tier0 VMs.
• Configuration of TAG compliance policies in the entire Fortinet environment (DC/AZURE
FWs) using integration with Microsoft Intune and AD on Prem.
• Migration to Cisco ISE 3.0 and integration with AZURE AD for DOT1X WIFI connections and
TACACS management.
• Troubleshooting and resolution of VPN, Compliance, and Flow and Routing issues on AZURE.
• Development of the HLD and procedure document for the Run team.
• Migration of the Checkpoint 4800 cluster to the new Fortigate 1500D Vdom.
Equipements/Solutions : FortiEMS, FortiGATE, FortiNAC, FortiClient, Cisco ISE, Microsoft Intune, AD
AZURE, Checkpoint 80.20

2020 : Covéa Finance
Relocation of the Datacenter PAR3 to EQX.
• Preparation of cabling matrices for the Move of equipment.
• Move of equipment in several waves.
• Proposal of Move scenarios and preparation of inter-site links.
• Resolution of HA and Fortigate firewall architecture issues.
• Reconfiguration of IRF on HP switches.
• Development of the HLD.
Equipements/Solutions : HP 5700, HP 5300, F5, Fortigate 200D, Fortigate 600D

2020 : Capgemini OS
Preparation of a network infrastructure and relocation of the Datacenter PAR3 to DATA4.
• Failover, Move of routers and Fortigate, F5 firewalls.
• Resolution of OSPF and HSRP routing issues.
• Implementation of a new Leaf and Spine Nexus 9K architecture.
• Implementation of an out of band Nexus 3k and Fortigate 200D infrastructure.
• Integration of equipment on Cisco ISE.
• Proposal of Move scenarios for critical equipment.
• Development of the HLD and LLD.
Equipements/Solutions: Nexus 5K,2K,9K,3K, ISR4300, Fortigate 1000C, 200D, F5, Cisco ISE, VRF

2019 : GEFCO
Preparation of a network infrastructure and relocation of the Datacenter PAR3 to DATA4.
• Proposal and preparation of Move scenarios with the client.
• Preparation of an inventory of equipment implemented at the Datacenter.
• Proposal of equipment to replace end of Sale switches by Cisco.
• Development of the HLD.
• Move of VSS switches and inter-DC firewalls.
• Implementation of a Nexus and Catalyst infrastructure on the new Site.
• Implementation of L3 config (OSPF, HSRP, BGP, Static Routing, VRF) for services on the new
site.
• Troubleshooting and resolution of VPN, DNS, routing, and firewalling issues.
Equipements/Solutions: Cisco Catalyst 9400,6506, Nexus 5K,2K, Fortigate 100C, Checkpoint R80, F5,
IronPort proxy, SMA, Cisco WLC, VPC, MHSRP, STP, Cisco ISE, VRF, SNMP, TACACS

2019 : Tunisie Valeur
Design and Implementation of a network and security solution.
• Implementation of two Data Center NG Firewalls Cisco FTD 2100 in HA Mode.
• Integration of FTD with Cisco ISE 2.4.
• Activation of FTD IPS.
• Configuration of Cisco 9400 Switch with DNA advantage.
• Workshop with the client to present the solution and migration steps.
• Implementation of a DNS traffic security solution (Cisco Umbrella).
• Development of the HLD and LLD.
Equipements/Solutions: Cisco Catalyst 9...