Fragen?
+41 44 511 86 86
Oder schreiben Sie uns:
Anfrage abschicken

Vertrauen Sie auf GULP
TOP Personal Dienstleister 2015 (Focus)
GULP Schweiz AG bester Personaldienstleister 2018
BMEnet Gütesiegel für eSourcing / IT-Dienstleister
IZS Siegel Geprüfte SV-Zahlungen

Fachlicher Schwerpunkt dieses Freiberuflers

IT Networking and Security

gulp_id_picture
Kontaktieren
Available from
Dec 12, 2019
Availability
100 %
on customer site
100 %
Areas

D6

D7

D9

Cities
Mannheim
200 km
Contact Settings

I prefer getting offers for these sites. However, you may also contact me for interesting projects in other places.

Projects

08/2019 - Today

5 months

Industrial 4.0 Security

Roles
Senior Security Consultant
Customer
Caterpillar Energy Solutions GmbH
Place of work
Mannheim, Germany
Tasks
  • Industrial 4.0 Security, Evaluation and Documentation of a VPN Firewall solution to obtain ISO 27001 compliance
  • Migration of a Firewall management server hosting over 900 VPN Firewalls and implementation of a high availability solution within a cloud provider
  • VPN Firewall Developments for Remote Engine Management, migrations, new installations and troubleshooting
  • Information security policy documentation updates for internal and customers
  • Business as usual tasks

06/2019 - 07/2019

2 months

Traveling, Studying and Timeout

09/2018 - 05/2019

9 months

Cisco ASA firewall cleanup project

Roles
Senior Security Consultant
Customer
Orange Business Services
Place of work
Eschborn, Germany
Tasks
  • Worked for customers Carl Zeiss, Henkel and Audi.
  • Cisco ASA firewall cleanup project, rule base optimization, removal of unused rule of a worldwide firewall estate
  • Upgrade of Cisco ASA firewall to Cisco Firepower firewalls
  • Installation of a an ESXi Server to serve a Zscaler VZEN proxy solution
  • Implemented an access control policy to optimize Network Access controls for large scale Cyberark deployment
  • Information security policy documentation updates for customers

03/2018 - 08/2018

6 months

Installation, configuration, commissioning

Roles
Senior Checkpoint Consultant
Customer
Porsche AG
Place of work
Stuttgart, Germany
Tasks
  • Installation, configuration, commissioning, administration and monitoring of the IT Security infrastructure considering the current security aspects
  • Elaboration and execution of migrations from legacy systems to new devices of Checkpoint and Cisco ASA firewalls and F5 Load balancers, including the creation and updating of company documentations
  • Performed configuration work to optimize the system and maintain the availability of the firewall systems

01/2018 - 03/2018

3 months

Development of external connections documentation

Roles
Security Architect
Customer
ING DiBa AG
Place of work
Frankfurt am Main, Germany
Tasks
  • Development of external connections documentation, worked on ING DiBa security policies, including documents for Acceptable use of services, Security roles and responsibilities
  • Consulted on security architecture, liaison with stakeholders to gather information for documentation

12/2017 - 12/2017

1 month

Urgent replacement

Roles
Security Project Manager (Short Term Contract)
Customer
Klöckner Pentaplast
Place of work
Germany
Tasks
  • Project manager for urgent replacement of 20 Palo Alto firewalls
  • Coordinated, and managed all aspects of the projects. Oversaw delivery of firewalls, coordinated with onsite staff to get the devices racked and stacked
  • Configuration of Palo Alto firewalls, synchronized downtimes for migration worldwide out of business hours

06/2017 - 11/2017

6 months

Data Centre consolation

Roles
Network Security Architect (Contract)
Customer
Allianz
Place of work
Frankfurt am Main, Germany
Tasks
  • Data Centre consolation, Technologies: Check Point VSX, Cisco Nexus, BlueCoat Proxy
  • Self-sufficiently project managed medium and large-scale projects that align towards service and departmental goals
  • Coordinated, and managed all aspects of the projects, investigated internal process and obeyed to them. Oversaw the direction, development, and implementation of Allianz projects
  • Coordination of 3rd party Vendors, Cloud providers, managed escalations, tracked progress and reported to customers, maintained the line of communication to avoid misunderstandings and proactively addressed issues
  • Client project requirements gathering, liaison with customers as a project manager to translate the requirements into designs, Cyberark administration
Skills

Check Point VSX

Cisco Nexus

BlueCoat Proxy

11/2016 - 06/2017

8 months

Migration of legacy F5 devices

Roles
Senior F5 consultant (Contract)
Customer
SAP AG
Place of work
Germany
Tasks
  • Migration of legacy F5 devices to new hardware or F5 VCMP guests
  • F5 audit and improvement, conducted a F5 landscape review over several business units and created from the information collected an installation checklist, Load balancing Guidelines and operational handover documentation
  • General F5 System configuration, initial setup, software upgrades, troubleshooting
  • Networking: documentation and implementation of VLANs, Route Domains, Routes

07/2016 - 11/2016

5 months

Supporting migrations

Roles
Resident Engineer (Contract)
Customer
Palo Alto Networks Professional Services
Place of work
Eschborn, Germany
Tasks
  • On site, as resident engineer for the Customer Amadeus, supporting migrations from Cisco ASA to Palo Alto networks firewalls
  • Implementation of additional VSYS on firewalls, Layer 3 to Layer 7 migration, Dynamic blocking list, URL Filtering & Reporting, Panorama Templates stacks, User Based policies, Zone protection profiles and Zone based security polices, Data Filtering and Wildfire implementation
  • Deployment guidance to ensure that implementation is consistent with design specifications
  • Network troubleshooting and operations support, Network and configuration analysis
  • Acted as customer technical liaison for Palo Alto Networks support and development teams

06/2016 - 06/2016

1 month

Travelling

03/2016 - 05/2016

3 months

PCI-DSS and ISO 27k audit

Roles
Security Architect (Short term Contract)
Customer
Merlin Entertainments Group
Place of work
Chessington
Tasks
  • Trustwave, UTM’s, SIEM, Cisco Firewalls and Switching, Cyberark Enterprise Password Vault
  • PCI-DSS and ISO 27k audit. Scope of work, liaison of Pen test with Trustwave. Communication with all teams to maintain PCI compliance
  • Architected an enterprise EMEA and AMER Cyberark solution
  • Projects: PCI-DSS SSL migration, lead the project to replace all certificates which supported SSL, allocated resources. Trustwave UTM Firewall audit for PCI audit

01/2015 - 03/2016

1 year 3 months

Firewall audit and improvement

Roles
Network & Security Consultant (Short term Contract)
Customer
Grosvenor Estate
Place of work
London
Tasks
  • Palo Alto Network Firewalls, HP switches, F5 load balancers.
  • Firewall audit and improvement. Added DOS protection profile and SSL decryption policy on Palo Alto firewalls
  • Server and Desktop Endpoint protection evaluation, Vendor shortlisting, Budget, Stakeholder approvals, Resource management and technical oversight of the project
  • Cisco PIX to ASA firewall upgrade
  • Creation of Critical Incident management document and an ISO 27k audit

10/2015 - 12/2015

3 months

Cisco ASA firewalls with IPS

Roles
Network & Security Developer (Contract)
Customer
Financial Ombudsman
Place of work
London
Tasks
  • Cisco ASA firewalls with IPS, Check Point Firewalls with IPS, Threat Prevention, Antibot & Mobile Access, F5 LTM, Cisco Nexus routing and switching, Cisco Identity Services Engine, Qualys
  • Projects: F5 code update and GTM integration - HLD and LLD, Cisco IPS migration to Sourcefire IPS –HLD & LLD
  • IPS tuning and review, Firewall audit and improvement
  • Daily BAU task and implementation of changes and support

02/2015 - 10/2015

9 months

Palo Alto Network Firewalls

Roles
Network & Security Architect (Contract)
Customer
Cabinet Office
Place of work
London
Tasks
  • Palo Alto Network Firewalls using Global Protect with client certificates, Juniper Junos OS SRX firewalls and EX Switches using OSPF routing, Cisco Switches, F5 LTM Load Balancers used as SAML service provider and F5 APM LTM network access
  • Rollout of the Cabinet Office IT into google cloud. Consulting within Cloud deployments of network and security devices and service
  • Network and Security audit to comply with PSN Code of Connection (Public Services Network) and ISO 27k audit of the entire enterprise network services and creation of a supplier security policy adhering to legal, regulatory, and contractual requirements
  • Consultancy for risk assessment and establishment of Information Security and Business Continuity plan
  • Documentation of an Incident response plan to protect the government data and improved general network security
  • Lead F5 architect on several service migration projects, including the design and implementation of 3rd party SSL VPN access through F5 LTM, F5 reverse proxy and architected and deployed a government wide F5 APM/SAML user authentication to several business-critical applications, acted as 3rd line to investigate F5 network and security issues

12/2014 - 01/2015

2 months

Vulnerability assessment

Roles
Palo Alto Security Engineer (Short term Contract)
Customer
Sony
Place of work
London
Tasks
  • Response to the GOP Sony hack, consulted on security issues for the Palo Alto firewalls.
  • Vulnerability assessment, Security configuration Audit, Firewall rule-base audit.
  • Deployment of a Decryption Profile and Custom URL Category protection. Configuration of Security Profile Groups and adding Application awareness to the security rule-base on the Palo Alto Networks firewalls

Project History

Further projects on request.

Skills

Products / Standards / Experiences

PROFESSIONAL PROFILE

An accomplished certified technical and theoretical network and security expert with Check Point, Palo Alto, Cisco ASA and Juniper Junos OS firewalls, Cisco routing and switching, F5 Networks & Citrix Load Balancers, several IPS/IDS vendors and countless more expertise. Profound background knowledge and experience in the architecture, design, implementation, documentation and operational support of resilient security solutions. An enthusiastic professional who can adapt easily to either a purely technical or a more project-orientated role, with genuine passion for technology and its applications, well versed in the complexities of matching solutions with client requirements.

PERSONAL SKILLS

  • Excellent communication, negotiation and interpersonal skills at all levels
  • Organised and methodical with an eye for accuracy and attention to detail
  • Enthusiastic, hardworking, adaptable and reliable individual
  • Welcomes new challenges and opportunities to learn new skills and methodologies
  • Dedicated to delivering projects on time and within budget
  • Flair for problem solving with an ability to assimilate and interpret complex technical data

TECHNICAL SKILLS

Technical Proficiency

  • Planning, supervision and implementation of several large security solutions migration projects
  • In-depth knowledge of IT infrastructure concepts and structures as well as a good understanding of project management methodologies
  • Selection of a cloud solutions and delivery of their security requirements, Support of secure cloud solutions and conducting security audits of cloud solutions
  • Development and implementation of new security processes and including the documentation
  • Strong understanding of IT infrastructure concepts and architectures, and good understanding of project management methodologies and Solution Delivery, taking ownership of risks, assumptions, issues and dependencies
  • Development and implementation of a robust and secure VPN-based RAS solution for over 1000 users
  • VPN Site-to-Site Solution Architecture, Upgrade 280 Check Point Firewalls
  • Designed, project managed and implemented several large enterprise data centre migrations
  • High and Low Level designs, Risk management and ISO auditing and many more.

Routing & Switching:

Cisco IOS / CATOS / Nexus, VRF routing, VDC, Juniper EX Switches, Junos OS

Firewalls:

Check Point on all Platforms GAIA, Splat, Nokia & Crossbeam, Cisco ASA / Firepower, Palo Alto Networks Firewalls, Juniper SRX Junos OS, Juniper Firewalls ScreenOS

Load-Balancing:

F5 Big-IP LTM & GTM, Citrix NetScaler

Security:

McAfee Network & Host IPS, Toplayer IPS, Sourcefire IDS/IPS, F5 BIG-IP ASM, TippingPoint IPS, Bluecoat Proxy and Websense Enterprise, RSA, IBM Network & Host IPS, Check Point IPS, Palo Alto Threat Protection

SIEM:

McAfee ESM, Splunk, HP Arcsight, QRadar, Trustwave

Remote Access:

Juniper SSL VPN, Check Point Secure Client, Palo Alto Global Protect, RSA & AAA authentication, F5 APM Network Access, Cisco anyconnect

Network Monitoring:

Solarwinds , Nagios, Spiceworks, WhatsupGold, Packetshaper, Zabbix

Management tools:

Check Point Provider1, Juniper NSM, Palo Alto Panorama

Network Management:

Skybox, Algosec, Tufin

WORK HISTORY

10/2006 - 08/2007

Position: Support Engineer (Contract)

Customer: AIRPRODUCTS PLC, Hersham, England

06/2006 - 09/2006

Customer: IT Systems Technician (Contract)

Position: SIEMENS BUSINESS SERVICES, Munich, Germany

09/2005 - 05/2006

Customer: IT Systems Technician

Position: COMPUSAFE DATA SYSTEMS AG, Munich, Germany

12/2004 - 06/2005

Customer: IT Support Technician

Position: BRITISH TELECOM, Munich, Germany

Education and Training

09/2003 - 08/2005

2 years

German National Vocational Qualification

Certification
Fachinformatiker - Systemintegration
Institute
Promind, Munich, Germany

09/1994 - 06/1997

2 years 10 months

German National Vocational Qualification

Certification
specialist in the restaurant business
Institute
Stadthallen Restaurant, Karlsruhe, Germany

Training History

Courses and certifications

  • TOGAF™ 9 Certified - Enterprise Architecture Framework
  • ISO/IEC 27001 Lead Implementer
  • AZ-500 Microsoft Azure Security Technologies
  • CCIE Security Cisco Certified Internetwork Expert Security written, CCSP Cisco Certified Security Professional
  • CCNA & CCNP Cisco Certified Network Professional & CCDP Designing Cisco Network Service Architectures
  • 600-199 SCYBER Securing Cisco Networks with Threat Detection and Analysis
  • CCSA & CCSE Check Point Security Administration I & II NGX
  • JNCIA-FWV & JNCIS-FWV Juniper Networks Certified Internet Associate & Specialist
  • F5 BIG-IP Local Traffic Manager (LTM), F5 BIG-IP Global Traffic Manager (GTM), F5 BIG-IP Application Security Manager (ASM) and F5 Firepass v6.x
  • ITIL V3 Foundation & C|EH Certified Ethical Hacker
  • Palo Alto Networks Firewall 7.1: Install, Configure, and Manage (EDU-201) (NO CERT)
  • Palo Alto Networks Firewall 7.1: Configure Extended Features (EDU-205) (NO CERT)
  • Palo Alto Networks Firewall 7.1: Debug and Troubleshoot (EDU-311) (NO CERT)
  • Palo Alto Networks Panorama 7.0: Configuration and Management (EDU-121) (NO CERT)
  • Palo Alto Networks Professional Services Special Topics & TAC Advanced Training for PAN-OS
  • Sourcefire 3D System, Toplayer IPS, ActivIdentity AAA, ActivID CMS and Websense Enterprise (NO CERTS)
Kontaktieren