a Randstad company

Cyber Security and Infrastructure Security Engineer Erfahrung: Privatbanken, IT-outsourcing, Versicherung, Industrielle, Cloud-provider etc.

Profil
Top-Skills
Firewall Check Point Blue Coat Proxy Squid Huawei Symantec Linux IDS/IPS Cisco ASA NGX R75 Trustwave sniffers Web Application Firewall VPN SSL-VPN RAS-VPN Englisch Muttersprache Deutsch Banking/Finance Banking Security Konzepte IT-Grundschutz Sicherheitsanforderung
Verfügbar ab
05.08.2022
Noch verfügbar - Schnell sein lohnt sich: Der Experte kann bereits für Projekte vorgesehen sein.
Verfügbar zu
100%
davon vor Ort
100%
Einsatzorte

Städte
Nürnberg (+50km) Zürich (+50km)
PLZ-Gebiete
Remote-Arbeit
möglich
Art des Profiles
Freiberufler / Selbstständiger
Der Experte ist als Einzelperson freiberuflich oder selbstständig tätig.

2016 - 2016: SABBATICAL & TRAVEL FOR 1 YEAR

Aufgaben:

  • Long Travels in many continents


2015 - 2015: Support, Proof of Concept, Design & Engineering

Rolle: CONSULTANT

Kunde: PUBLICLOUD.CH & SCHEUSS PARTNER

Aufgaben:

  • Develop Product Portfolio for Cloud, Storage,

  • Infrastructure and Security products to further improve Scalability, ?Fast IT? and Market appeal

  • Security audits & consulting to accelerate awareness to demonstrate POC?s for future Business in order position more intelligent or agile Cloud Solutions

  • Mainly with Cisco, HP, VMWare, Dell Storage, Microsoft technologies & Security Technologies


2014 - 2014: Pre-Sales, Sales Advisory, Design, Concepts & Engineering

Rolle: FREELANCE CONSULTANT

Kunde: SWISSCOM AG

Aufgaben:

  • Large scale Technological migrations with detailed Technology planning, Customer planning & Project Management

  • Moving various Technologies to onsite Cisco ASA in combination with Cloud Web Services providing dynamic offsite Security and Data Retention

  • Mainly with Cisco, Barracuda and Cloud technologies


2014 - 2014: Concept and Implementation of Office Infrastructure

Rolle: FREELANCE CONSULTANT

Kunde: OHC COMPUTER GMBH

Aufgaben:

  • Concept and Implementation of Office Infrastructure including Networking, Internet Infrastructure

  • Proxy Solution and Desktop/Server Virtualisation with thin Clients

  • Perform complete Company Infrastructure Audits and Penetration Testing

  • Basis of Cisco Switching/Routing, Bluecoat, Citrix, Hyper-V


2013 - 2013: Service Management

Rolle: ERVICE MANAGER

Kunde: SWISSRE / SCHWEIZER RÜCKVERSICHERUNG

Aufgaben:

  • Service Manager responsible for Contracts and Policies of Re-Insurance company Internet Proxies with over 10,000 active clients (Complex SSL & Antivirus setup)

  • Dealing with external Providers, Security Policies with Information Security department, Service Management platforms, Process development, setup Support infrastructures and improve implementation processes

  • Covering Cisco, Bluecoat, McAfee and RSA products


2008 - 2013: Security concepts, support & implementation for the Business part

Rolle: SPECIALIST ENGINEER

Kunde: VERIZON BUSINESS SWITZERLAND AG

Aufgaben:

  • Security concepts, support & implementation for the Business part providing consultancy mainly in Switzerland

  • Verizon Communications is mainly known as being the largest mobile, data infrastructure and landline provider in the USA (Similar to Swisscom in Switzerland)

  • Support & perform changes on:

    • Support various R55, R60 and R70 platforms based on SPLAT Management, Windows management, Nokia appliances ip440, ip530, ip395, ip695 & Checkpoint UTM1/Smart-1 (with Nokia load balancing and Checkpoint clustering). High availability clustering, 24*7 operations in highly complex Banking environments. Install & use of Tufin SecureTrack to optimise and analyse

    • Support various Proxy solutions Webwasher, Bluecoat, proxy pac and squid solutions, with clustering, high availability and many complex filtering functions (SSL-Intercept, Anti/Spyware)

    • Support of Forward proxy environment many locations and users with complex Anti-virus, malware, SSL/cert. check, upload and file type rules. Also the netcache reverse proxy

    • UNIX BIND Internet DNS, Windows DNS/DHCP, Infoblox

    • Cisco BGP OSPF spanning multiple locations with complex permanent and dial on demand networking with quadruple redundant paths. Including fully redundant full table BGP internet routers for private banking online customer portals

    • Routing & switching hardware with diversity from Extreme (6808/3802/3804), Cisco (c3750/c3750G/c6506-e/c4948/c3560G-PoE/c3750-PS/r3620/r2811/r2600/r2800), 3com Superstack (4400/3300) and additional marginal Vendors. Nortel Contivity VPN (1740). Various: Crypto AG, Lucent, Nortel, ADVA, Siemens devices

    • Support various management systems: Netview, Extremes EPI-Center, Windows ISS Server, Windows 2003, Windows 2000, Various FTP/TFTP Servers, SMS Gateways, and RADIUS. Wireshark, Sniffer

    • Support 3rd parties for example Bloomberg, Reuters, Telekurs/SWX, Olympic

  • Design & complete & implement:

    • Implement new online Banking portal websites based on Bluecoat, net cache and Cisco CSS hardware

    • New management and logging functions for Checkpoint R70 based on SMART-1 hardware

    • Design input and concepts for forward proxy environments with Bluecoat, User Groups, BCAAA, SSLIntercept, Anti/Spyware, ICAP and OPSEC plugins

    • Planning and input for proposals with various topologies with routing, firewalls, DNS, intrusions detection (IDS), intrusion prevention (IPS)

    • Analyse, engineer and implement changes banking hosting, server connectivity for potential security impact and categorise risks

    • Implement SSL VPN based on HOB DOD and Checkpoint Secure remote client

    • Design extranet connectivity for Bloomberg, Reuters (RMDS, Datascope, Radianz etc.), Telekurs/SWX, Olympic


1999 - 2008: Network Services/Enterprise Network Management/Global Network Operations Customer Industries:

Rolle: TELECOMMUNICATIONS ANALYST

Kunde: EDS INFORMATION SYSTEMS (NOW HP). SWITZERLAND

Aufgaben:

  • Banking, Private Banking, Reinsurance, Medicine, Industrial

  • Network Consulting supporting of Customers. Managed requirements of international private Bank including projects and enhancements. Fully redundant network designs and implementation with high performance 10 Gigabit backbones. Networks included Reuters & many 3rd party financial systems on the same network, was built for full redundancy with failover in low millisecond time spans (Zero outage trading systems)

  • Planning, design and implementation of fully redundant Internet access for Financial institutions with technologies such as, Bluecoat, Websense, ICAP, Finjan Vital Security and various anti-malware companies. Network representation and concepts for Tivoli implementation in complex customers environments with diverse Hardware and network translation (NAT on customer facing firewalls) ranging from small to enterprise customers. Customer phase in documentation and audits/inventories incl. ones of security nature. Project management and managing of large network rollouts or changes with a highly versatile technological basis. 3rd Line Support of network technologies including OSPF, MPLS, Checkpoint firewalls, Cisco routers, Cisco redundant MSFC, IBM networking, Financial systems with high requirements and uptime. Network Designs & Offers to customers as Projects for a variety of of network upgrades, replacements & complete renewals. Parallel productive migrations moving from Token Ring and FDDI including temporary bridging and routing. Design of E-Commerce websites using technologies SSL/HTTPS, Cisco CSS L7 Content Switch (Application Layer 7), sticky cookies, CRM, Oracle, Stonebeat utilising fully redundant multi supplier BGP Internet connectivity


1999 - 1999: Network Support

Rolle: NETWORK SPECIALIST

Kunde: BUNDESAMT FUR INFORMATIK (SWISS FEDERAL GOVERNMENT DEPARTMENT OF I.T.) BERN, SWITZERLAND

Aufgaben:

  • Government section/department for IT, working in the Network Support department supporting over 500 Cisco routers, 400 LAN devices excluding cipher boxes and odems

  • All Swiss government department except Military, METRO/LAN/WAN technologies where included in all parts of Switzerland

  • Typical actions are 3rd level problem solving, hardware exchange, configuration and services planning

  • Among the software used here is CiscoWorks, HP Openview, Optivity and UNIX variants. The writing of LAN Quick reference and technical setup guides was completed, with research and crossplatform testing on various Vendor equipmen


1998 - 1998: Management of Server Environment as Domain controllers for the Banks computational facilities

Rolle: NETWORK SPECIALIST

Kunde: COMPAQ/DIGITAL COMPUTERS SWITZERLAND & HYPOSWISS BANK

Aufgaben:

  • Upgrading of Systems including Server setups of SQL Server 7. Systems Management Server 2.0 for y2k software, hardware analysis and facilitation of upgrades

  • Implementation of automation, user scripting and data warehousing

  • Reorganisation of network. Hardware including Proliant Server hardware


1997 - 1998: Network design with the use of CISCO WAN Equipment and BAY Networking products

Rolle: NETWORK SPECIALIST

Kunde: AESCULAP SURGICAL LIMITED & BBRAUN MEDICAL AG

Aufgaben:

  • Network design with the use of CISCO WAN Equipment and BAY Networking products consisting of four UK sites

  • The LAN consisting of Bay Fast Ethernet products for the UK BBraun Headquarters site and utilising CISCO Frame relay products for x.25 connectivity throughout the UK. NT 4 Server Network Administration incorporating Lotus Domino server

  • AS/400 Administration, including user support, management of jobs, output queues, and devices

  • JBA Database software administration

  • Planning of DHCP, DNS, TCPIP services for the UK, including maintenance of network naming nomenclature


1996 - 1997: MANAGEMENT CONSULTING

Rolle: SUPPORT ANALYST

Kunde: BNFL ENGINEERING PLC & N J HENTHORNE MANAGEMENT CONSULTING

Aufgaben:

  • Programmed SQL and Access databases for financial & estimating purposes, including estimating bids, data processing and information reporting. Visual Basic Windows programs & utilities for specific requirements. Provided network hardware & software assistance, for PC?s and the Server. This ranged from customisation, based on Users needs, to providing repair functions in the event of Hardware failure.

  • Reduced the training response time and budget, by training staff in-house with Software, such as, Linkworks, Internet Mail and Microsoft Office Professional

  • 1997: Continuing Education Management Studies Certificate, Institute of Management - St. Helens College, Subjects including Personal Development, Managing People, Finance, Information, Operation & Service

  • Business Information Technology BTEC Higher Nat. Diploma Bolton Bournemouth Institute of Further Education. Attained overall Merit, not yet complete including subjects Social & Economic Framework, People Work & Organisation, Information Technology & Information Analysis, Business Accounting, Commercial Law, Beginners German, Introduction to Marketing, Introduction to Personnel, Advanced French.

  • Business & Finance BTEC National Diploma. Achieved an overall Merit grade, with subjects including, Database Management, Systems Development, Networking, Communication & Communications Systems. Distinction & Merit Outcomes. Studied a highly commercially relevant Business course, with a Distinction and Merit outcome. This Diploma was devised into, Personal Transferable Skills and Subjects including, Marketing, Accounting, Administration, Information Technology, Human Resources. Distinction & Merit Outcomes

  • GSCE, St Mary?s R.C. High School

Professional Training:

2012

  • Bluecoat Professional BCCPP Certification

  • BCCPA Training

  • CISSP 5 day Bootcamp

2006

  • ITIL Foundation Certificate in IT Service Management (Maxpert Frankfurt)

2005

  • Older Training: Cisco Configuring BGP on Cisco BGP Routers (Digicomp)

2004

  • Cisco Designing Cisco Network Service Architectures

2002

  • Cisco BSCN - Building Scalable Campus Networks

  • Cisco BSCI Building Scalable Cisco Internetworks

  • Upgrading to SQL Server 7.0 Digicomp Switzerland

  • Bay Networks Switching Solutions excluding Centillion

  • MCSE (Microsoft Certified Engineer Training)

  • Courses for Netware & Windows NT

  • including Security, Administration, Optimisation, Migration

  • Implementation, Network Media, Infrastructure Design at Centres such as, the Manchester University

  • Networking NVQ Level 2 & 3, Short NT & Netware Courses

  • Sitec Training & The Manchester University

English Fluent
German Fluent
Swiss German Spoken

Top Skills
Firewall Check Point Blue Coat Proxy Squid Huawei Symantec Linux IDS/IPS Cisco ASA NGX R75 Trustwave sniffers Web Application Firewall VPN SSL-VPN RAS-VPN Englisch Muttersprache Deutsch Banking/Finance Banking Security Konzepte IT-Grundschutz Sicherheitsanforderung
Produkte / Standards / Erfahrungen / Methoden

Profile:

Been working in Information Technology for over 15 Years now and seen a lot of different technologies finally I have reached a very interesting subject namely Security. Having started from the lower PC installations then to Server, later Networking finally have found my real interest in the ever changing subject of Security. Security has been my passion since around 8 years having worked for EDS around 6 and have now have now progressed to Verizon Business and Consulting work. Working mainly with Private Banks, Reinsurance, International Financial organisations, Medicine, Media, IT Services and some Industrial customers, have had the possibility to work with nteresting products from companies like Checkpoint, F5, Cisco, Bluecoat and many more. Lastly have been more exposed to Service Management, Pre Sales and consulting roles.

SECURITY CLEARANCES:

  • Medium level: Bundesamt Informatik (Swiss National Department for I.T)

PROFESSIONAL MEMBER:

  • auf Anfrage

Skills:

SECURITY PRODUCTS & SOLUTIONS

  • Checkpoint NGX, NG & Firewall-1 for SPLAT, Solaris and Windows Server setup & administration (Smart dashboard not Provider-1 setups). Based on R55, R60 and R70, running on Sun, Splat, UTM and Smart-1 hardware with Nokia clustering, HA, Stonebeat/Stonesoft, Cluster-XL

  • Various Proxy Solutions: based on Bluecoat forward/reverse, F5 Load balancing, netcache, and McAfee/Intel/Webwasher Web Gateway. Features including https/SSL-intercepting, Anti-malware, Anti-Virus, MIME/filetype filtering, Upload filters, reputation filtering, clustering, 4-eyes-principle anonymisation

  • VPN Networking (Linux, Cisco, Sonicwall), Intrusion Detection (ISS-Realsecure, Snort), Intrusion Prevention (Snortsam & Cisco reflective access lists). IPTables & various other hardware implementations of this with reflective actions based on SnortSAM

  • Cisco IOS Firewall & IDS Feature set. Checkpoint IPS, IDS & MAD

  • Cisco ASA for Site-to-site VPN, Cisco client VPN, SSL VPN (Clientless/web-browser), IDS, QoS, DMZ, Firewall

  • Ositis/Bluecoat E-Shield & Winproxy for realtime Antivirus and SPAM filtering. Bluecoat Proxy & Proxy AV (Network Security Gateways): for ICAP high for availability Proxy filtering with Websense different anti-malware Vendors and bi-directional realtime

  • Finjan Vital Security L7 Sandbox (Web Application Filter/Gateways)

SERVER PRODUCTS

  • Microsoft Windows 2008 & 2012

  • Vista Enterprise

  • Windows 7 & Home 32/64bit. Installation & Support for Solaris, Redhat, Ubuntu, Fedora, CentOS & Debian Linux variants with software running mainly

  • Samba, Apache, Squid, Mail (Sendmail/Postfix), SQL (My-SQL). Solaris. HP-UX. APPLE MAC OS

Older Knowledge

  • HP-UX to v.10

  • Novell 3 & 4

  • OpenVMS

  • Solaris 2.x

  • MS SQL Server 6.5/7.0

  • Systems Management Server 1.2/2.0

  • NT Server 3.51, 4.

  • Windows 98

  • Windows 95

  • DOS

  • NT 4

  • NT 3.5.

NETWORKING TECHNOLOGIES:

WAN PROTOCOLS

  • BGP

  • MPLS

  • OSPF

  • EIGRP

Older Knowledge

  • BRI

  • E1

  • T1

  • HSSI

  • ATM

  • x.21

  • RIP

  • IGRP

  • CLNS

  • IPX

  • IPX NLSP

  • HDLC

  • X25

  • Frame Relay

  • SMDS

  • PPP

  • ISIS

NETWORK MANAGEMENT:

  • Nagios

  • MRTG

  • Groundworks

  • Ciscoworks & CiscoWorks 4.0. CA (Computer Associates)

  • SPECTRUM Administration:

    • SNMP

    • RMON

    • RMON II. Bay Pocket Probe & RMON II Stackprobe

    • Cisco Netflow data collection and reporting with 3rd party tools

Older Knowledge

  • UB NetDirector

  • Bay Networks Optivity Enterprise v7

  • IBM LAN Manager. HP Openview NMM 3, 4 to 6 (HP-UX/Solaris)

  • All NNM applications

NETWORK ANALYSER & SNIFFER & Security:

  • Sniffer Network Analyzer

  • HP Internet Advisor

  • Ethereal

  • Snort. Fluke

  • Enterprise LAN Meter

  • Nmap

  • Backtrack

  • TippingPoint

  • CORE IMPACT

  • Tenable Nessus

Ihr Kontakt zu Gulp

Fragen? Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Jetzt bei GULP Direkt registrieren und Freelancer kontaktieren