Network Security Engineer and Fortinet Trainer and instructor. I am honored to be recognized by Fortinet as the Best New Certified Trainer 2025.
Aktualisiert am 22.04.2025
Profil
Freiberufler / Selbstständiger
Remote-Arbeit
Verfügbar ab: 22.04.2025
Verfügbar zu: 90%
davon vor Ort: 80%
Fortinet
Web Application Firewall
Trainer
Network Security
Cisco Router
Switch
IP-Routing
AAA
Extreme Networks
Firewall
English
Fluent
French
Intermediate
Persian
Muttersprache
German
B1

Einsatzorte

Einsatzorte

Deutschland
möglich

Projekte

Projekte

2 years 1 month
2023-11 - now

Courses

Fortinet Instructor, Professional Service Consultant
Fortinet Instructor, Professional Service Consultant
  • I am responsible for Fortinet Courses
Insoft Services
UK
2 years 4 months
2023-08 - now

L1, L2 and L3 support

Network Security Engineer
Network Security Engineer
  • I deliver some L1, L2 and L3 support
Germany
2 years 2 months
2021-06 - 2023-07

Information technology

Fortinet Product Consultant
Fortinet Product Consultant
  • The company has been made since 2016 to provide equipment, solutions and specialized services in information technology.
  • As a freelancer and consultant, I was responsible for Deploying Security Devices which are related to FORTINET products such as UTM and Firewall (FortiGate), WAF (FortiWeb), FortiMail and so on.
  • I delivered more than 100 projects for their customers.
Ressis Company
Iran, Tehran
3 years 9 months
2019-11 - 2023-07

Courses

Fortinet Trainer
Fortinet Trainer
  • I was responsible for some Fortinet Courses
Koenig-Solution Company
Main Office ? India
5 years 2 months
2018-06 - 2023-07

Installing, Developing, Hardening and Tuning of Firewalls

Senior Firewall Consultant
Senior Firewall Consultant
  • As a freelancer and consultant, I was responsible for installing, developing, hardening and tuning of Firewalls (FortiGate), FortiDB, FortiWeb, FortiAnalyzer, specially Log & Report, then Analyze and Correlate between related Logs and SIEM software (in SOC unit). 
Iran Khodro Company + Their subgroups
Iran, Tehran
7 years 5 months
2015-02 - 2022-06

Documenting Network Plan

Senior Security Network Consultant
Senior Security Network Consultant
  • The company is one of the subgroups of biggest Bank (the first Iranian bank) that is created to supply and improve Information and Technology requirements of Bank.
  • As a consultant for 5 years and Network Security Manager for 2 years, I was working as a Network Security Consultant in the scope related to Security Devices. 
  • UTM, Firewalls, WAFs and Anti-Virus are instances which are installed, deployed, optimized and tuned by me. 
  • Documenting Network Plan (L2/L3/per service) and Analyzing Security Logs are an another my activities in this company also. 
  • I provided some advice and solutions to prevent attack and anomaly.
OCS Co. (Rayaneh Khadamat Omid)
Iran, Tehran
4 years 6 months
2016-07 - 2020-12

Fortinet Training

Fortinet Trainer
Fortinet Trainer
Rayka Training Group (RaykaCBT)
Iran, Tehran
2 years
2016-08 - 2018-07

Development of using Information Technology

Senior Firewall Engineer
Senior Firewall Engineer
  • Development of using Information Technology in banking industry of country together with the enhancement of activities of financial and credit institutes and private banks not only increased selection domain and customers? demands variety but also made market more competitive. 
  • In these situations, Iran Melli Bank as the greatest banking institute in Islamic world aiming to utilize more of information technology capabilities and better services for society people took action to establish SADAD Informatics Corp. (sic). 
  • Therefore, SADAD Informatics Corp was registered in the Office of Companies and noncommercial Institutes Registration for an unlimited period.
  • I was senior firewalls engineer and in charge of maintenance, tune up, design, develop, install and executive to Fortinet Products and solutions. 
SADAD Co. (SADAD Informatics Corp)
Iran, Tehran
2 years
2016-04 - 2018-03

Advising some business plan to improve road map and prospect

Senior Consultant
Senior Consultant
  • I was working as a consultant in the scopes which are related to Business of Company including Network Security Solutions such as UTM, Firewall, Anti-Virus, DLP and advising some business plan to improve road map and prospect. 
  • I should forecast IT marketing in the domain that Company wants to continue or make new business related. 
ADPA
Iran, Tehran
2 years
2014-04 - 2016-03

Managing technical staff

Vice President
Vice President

I have worked as Technical Manager and Security expert. I provided some weekly reports and documents which were related to my tasks for headquarters. Also, sometimes I made documents and presentations about our products to present and propagate to our customers or to find new customers. Additionally, I was responsible for R&D (Research and Development) for new products and solutions which are pertained to Company`s field. Furthermore, with the start of every new project, I was responsible for the successful initiation, planning, design, execution, monitoring, controlling and closure of a project as Project Manager. Defining Scope, Resource Planning, Developing Schedules, Time Estimating, Documentation, Risk Analysis, Team Leadership, Controlling Quality to reach and evaluate targets were some activities and roles at this position. I was in charge:

  • Managing technical staff
  • Providing security solutions for customers including network and edge such as monitoring, switching, routing, firewall, UTM (Unified Threat Management) or End-point solution such as Anti-Virus, DLP (Data Leakage Prevention).
  • Providing customer feedback for deployment of products (hardware & software).
  • Response to customers? requests in a professional manner.
  • Providing online, remote and local technical support to all Customers for applications & technical issues and Products related.
  • Research and Development of new products and solutions.

Iran, Tehran
1 year 5 months
2012-12 - 2014-04

Checking electrical equipment

IT Operator
IT Operator

This company is one of the great finance agencies in my country now. It has created since November 2009 and has 350 branches in Iran and works based on bank system. I was network administrator in DARBAND branch and sometimes as a cashier.

  • Checking electrical equipment in the branch consist of Cisco switches, router, Power Network Ethernet (POEs), electrical panels ATM and some like these.
  • Testing network communications between some branches together
  • Maintain and handle 5 clients
  • Checking digital cameras and software which was used to record
  • Updating anti-virus on clients and central console
  • And finally, I should gather some reports for manager


Additional activities:

  • Accounting
  • Marketing to find new customers


Reason for leaving:

  • Ending contract in March 2014

Financial and Credit Institute
Iran, Tehran
5 months
2012-08 - 2012-12

Checking electrical equipment

Network Administrator
Network Administrator

It has created since January 1967 and has 2 main offices in Tehran and Sponsored by agriculture organization. I was network administrator in the main office but supported both.

  • Checking electrical equipment in the Server Room including switches, routers, modems etc.
  • Testing internet connections and communications between clients with servers and shared printers
  • Maintain and handle about 30 clients per day
  • Checking digital cameras and software that was related to Security Department
  • And finally collecting reports to present to the manager.
  • Downloading updates for some software including Anti-Virus, Microsoft products
  • Monitoring network and clients
  • Checking software on servers such as active directory, ISA server, domain controller etc.


Reason for leaving:

  • Ending project in December 2012 and lack of official contract

Oilseed Crop Development Co.
Iran, Tehran
8 months
2011-11 - 2012-06

Checking electrical equipment

Network Assistant
Network Assistant

The nature of this company is industrial. I was network assistant in the main office and supported all the buildings.

  • Checking electrical equipment in the Server Room consisting of servers, switches, routers, modems etc.
  • Testing internet connections and communications between clients with servers and shared printers
  • Maintain and handle about 100 clients
  • Checking digital cameras and software related
  • And finally reporting to network administrator.


More activities:

  • Updating anti-virus on clients by central server
  • Monitoring traffic of network by some software such as Mylan Viewer.
  • Controlling internet bandwidth for any client
  • Checking software on servers such as active directory, ISA server, domain controller etc.

Behnam Sanat Paya Co.
Iran, Tehran

Aus- und Weiterbildung

Aus- und Weiterbildung

Kompetenzen

Kompetenzen

Top-Skills

Fortinet Web Application Firewall Trainer Network Security Cisco Router Switch IP-Routing AAA Extreme Networks Firewall

Produkte / Standards / Erfahrungen / Methoden

SUMMARY

I have worked as a Network Security Engineer more than 14 years.


Main Technical Skills:

  • Fortinet Products including FortiGate
  • FortiWeb
  • FortiAnalyzer
  • FortiManager
  • FortiMail
  • FortiNAC
  • FortiClient
  • FortiSIEM
  • FortiSandbox
  • FortiSwitch
  • FortiDB
  • FortiAuthenticator / Training NSE4, NSE5, NSE6, NSE7 / OWASP
  • Extreme Wireless Cloud and Access point / XIQ AP
  • Firewall Engineering
  • TCP/IP
  • Cisco Switching and Routing
  • Threat Analysis
  • Honeypot deployment


Additional Technical Skills:

  • Cisco
  • Switching
  • Routing
  • F5 LTM
  • Firewall
  • UTM
  • NGFW
  • Check Point
  • Palo Alto
  • Sophos
  • Cisco ASA
  • FMC
  • FTD
  • Kerio
  • pfSense
  • Juniper
  • DLP
  • Anti Virus
  • Zero Trust
  • LAN, WAN, WLAN, VLAN, AAA
  • 802.1X
  • Authentication
  • SOC
  • NOC
  • Centralized Management solution
  • Extreme Cloud
  • Cisco Meraki
  • Microsoft Azur
  • Amazone AWS
  • performance monitoring
  • error analysis
  • Optimization of security policies and access controls


Entry Technical Skills:

  • FortiEDR
  • FortiXDR / FortiADC / ZTNA / Microsoft Windows Services including WSUS
  • Active Directory
  • Domain Controller
  • DNS
  • DHCP
  • IIS
  • Exchange
  • Cisco ACI
  • Cisco ISE
  • NSX
  • Virtualization
  • Linux
  • PLSQL
  • SQL
  • JSON
  • HTML
  • XML
  • CSS
  • Network Cabling
  • Server and Storage
  • Technical L1/L2/L3 support


Non-Technical Skills:

  • Project Management
  • Network Administration
  • Team Leader
  • Reporting and Documentation
  • Business development
  • Sales and Pre-Sales
  • Client support
  • Professional Service Consultant
  • Presentation
  • Solution Providing
  • LOM and RFP
  • Technical Content Production
  • Communication
  • Free Thinking
  • Problem Solving
  • Troubleshooting
  • Fast learning
  • High Adaptivity
  • Multi-Tasking


Fortinet Experiences:

FORTIGATE (More than 200 projects)

  • Integrating FortiGate with third-party solution like as Cisco switches, routers, Blades, firewalls, Juniper switches, firewalls, Mikrotik devices, HP&Dell switches, Palo Alto firewalls, Sophos firewalls, Kerio firewalls, F5 LTM, pfSense, Microsoft, VMware, Cyberoam.
  • Deploying 802.1x by integration of FortiGate, FortiNAC and Cisco switches.
  • Physical and Virtual appliance installation, Configure, Tune up, Maintenance, Troubleshoot from small branch model series up to enterprise model like as Datacenter series.
  • Network and Security Features including SD-WAN ( WLLB in old versions ) / Load balancing / Routing ( Static and Dynamic ) / PBR / Multicast Policy / Tunnels / Transparent(TP) and NAT opmode / SNAT-DNAT-VIP / VPN ( site-to-site & client-to-side ) / DHCP ( relay & server ) / Device detection / Traffic shaping / User Authentication ( local & remote server ) / Certification / VDOM / HA ( Clustering A-A, A-P mode ) / IPS / DOS / ACL / Application Control / DLP ( File and Video Filter ) / Web Filtering / DNS Filtering / Antivirus / Email Filtering (Anti-Spam) / WAF / SSL inspection / Local and Remote Log Server / Report.
  • FortiOS 4.x, 5.x, 6.x and 7.x Web GUI, Cli FortiOS family


FORTIWEB (More than 50 projects)

  • Physical installation, Configure, tune up, Maintenance, Troubleshoot from small branch model such as 400 series up to enterprise model like as 3000 series.
  • Network and Security Features including Routing / Port Aggregation / PBR / Revers Proxy-Transparent(TP)-Offline opmode / Full NAT ? Gateway mode for servers / User Authentication / Certification / SSL Offloading / ADOM / HA ( Clustering A-A A-P mode ) / Machine Learning ( Auto Learn in old version ) / Tuning Signatures including SQL injection, XSS ? Cross site Scripting - Trojan ? Generic Attack ? Known exploit ? Information Disclosure / Tuning HTTP protocol constraint / Bot Mitigation/ API protection / URL Rewriting / X-Forwarder ? X-Header / Regular Expression / DOS protection / IP protection / Custom Policy / Input Validation / Web-Anti Defacement / SSL inspection / Local and Remote Log Server / Report / Machine Learning.
  • FortiWeb 5.x, 6.x and 7.x Web UI and Cli including Config, Diag, Exe and like these which are used to Tshoot. 


FORTIANALYZER (More than 100 projects)

  • Physical and Virtual appliance installation, Configure, tune up, Maintenance, Troubleshoot from small model such as 200 series up to 1000 series.
  • Network configuration includes Routing, DNS, Remote Log Forwarding, ADOM (independent administrative domain), Log retention, Raid storage, Hard Disk replacement, Remote alert server.
  • Device registration / Integration with FortiGate, FortiWeb, FortiMail, other devices such as Cisco and Juniper as a syslog.
  • Log collection / FortiView / Event Handler / SOC / Playbook / Report (pre-defined and customized including char builder, dataset and SQL table).
  • Work as a Log & Report Analyzer and use it in Forensics and Risk Management.


FORTIMAIL (More than 20 projects)

  • Physical installation, Configure, tune up, Maintenance, Troubleshoot including devices like as 400 and 1000 series.
  • Gateway, Server and Transparent opmode.
  • Network configuration including Routing, DNS, Mail Settings, Maintenance, Config and Mail data remote backup, Remote Storage as a NAS, Remote Authentication Servers Verification, IP policy, Access Control Policy, Recipient policy.
  • Security feature including Session profile, Anti-Spam, Anti-Virus, Content inspection, URL Filtering, Disarm & Reconstruction, Greylist, Bayesian, DLP, Encryption, SPF, DKIM, DMARK
  • Log, Report and Tshoot by mail queue, history log and quarantine?s folders.
  • HA clustering A-P, A-A (config-only in old versions)


FORTIMANAGER (More than 30 projects)

  • Physical and Virtual appliance installation, Configure, tune up, Maintenance, Troubleshoot with small size such as 200.
  • Network configuration includes Routing, DNS, Remote Log Forwarding, Log Analyzer Feature, ADOM (independent administrative domain), Log retention, Raid storage, Hard Disk replacement, Remote alert server, Workspace and Workflow mode.
  • Device registration / Integration with FortiGate.
  • Policy package Deployment, Provision profile, Remote Cli Configuration, FortiGuard and Licensing, Upgrade Firmware.
  • Log collection / FortiView / Event Handler / SOC / Playbook / Report (pre-defined and customized including char builder, dataset and SQL table).


Other FORTINET Product (Per case Project)

  • FortiNAC
  • FortiSIEM
  • FortiDB
  • FortiSandbox
  • FortiClient
  • FortiEMS
  • FortiSwitch
  • FortiAuthenticator
  • FortiIsolator


Other Firewall Experiences:

CYBEROAM and SOPHOS (More than 50 Projects)

  • Configure and troubleshoot (UTM) Security Features including IDS/IPS systems / DOS/ Application Control / Web Filtering / Antivirus/ Email Filtering / WAF.
  • HA/Cluster Configuration and Tune up in the Active-Active and Active-Passive mode.
  • Configure and troubleshoot accounting feature such as Surfing Quota and Data Transfer based on Local Users / User Authentication mode integrated by AD server Groups.
  • Configure and Troubleshooting of Static Route/ Policy Route / Load Balance / VLANs / SD-WAN.
  • DNAT / SNAT / Virtual Hosts.
  • Report & Analyze Security Logs.


JUNIPER (Less than 10 Projects)

  • Physical installation, Configure, Maintenance, Troubleshoot SRX and SSG series like as 240, 650, 1500 and 4100.
  • Some Features including Static Routing / Port Aggregation-Trunk-Access / VRF / VPN Tunnels / SNAT-DNAT-Proxy ARP-Static NAT-MIP / DHCP (relay & server) / User Authentication (local & remote server) / HA (A-A A-P mode) / IPS / Remote Log Server.
  • Zone base and Interface base configuration / Global base configuration / Mostly Cli base configuration. 


CISCO ASA (5 project)

  • Maintenance and Troubleshoot ASA 5510.
  • Some Features including Static Routing / Port Aggregation-Trunk-Access / Virtual Context / SNAT-DNAT / Remote Log Server / FTD / FMC.
  • Zone base and Interface base configuration / Global base Policy. 


Switch and Router Experiences:

CISCO

  • Physical installation, Configure, tune up, Maintenance, troubleshoot and range of Cisco Switches such as a Catalyst series 2960,3750,3850,6500, Nexus, Meraki series, Routers like as a ISR series 1800,2800 and ASR 1001.
  • Some solutions including EtherChannel / VRRP - HSRP - VSS - VPC / Physical and Virtual Stack / Vlan and Segmentation / Interface Vlan / Port Security/ STP/ RSTP / VTP / ACL / Routing / L3 and L2 ARP cache / Mac table / Trunk / Access / AAA / 802.1x / Inter Vlan Routing / PBR.


Anti-Virus Experiences:

KASPERSKY and ESET (More than 100 times)

  • Install, configure and troubleshoot ESET Remote Administrator (ERA) 5.x / Kaspersky Security Centre (KSC) 8.x & 10.x.
  • Configure and tune up Task and Policy for clients.
  • Configure and tune up Anti-Virus features including Firewall/ Application Control/ Device Control/ Web Control/ Vulnerability Scan/ Patch Management.
  • Analyze Security Logs.


DLP (Data Loss/Leak Prevention) Experiences:

IP-GUARD (20 projects)

  • Install, configure and troubleshoot IP-Guard DLP solution.
  • Configure and tune up Policies including 14 modules such as App, Web, Email controller based on requests of organization to control clients.
  • Read & Analyze Security Logs to create Digital Fingerprint to find Vulnerabilities and Violations to enhance End-Point security.


Other Experiences:

  • Network and Security Management up to 10 staff.
  • Machine Learning, OWASP top 10.
  • Documentation with general software like Visio, Microsoft Office for presentation, network plan (L2/L3/Physical/Logical).
  • Creating and Writing General, Security, Statistic and Analytic Reports based on the organization?s requirements by the Logging tools like as a FortiAnalyzer or syslog servers.
  • Research and develop new security products and solutions such as SOAR, SIEM, SOC, NOC, detecting new Malwares.
  • Providing advice on a wide range of information systems issues and security solutions on the Edge, Internal or Endpoint in network.
  • Design and Plan strategy, policy, management, security and service delivery for organization.
  • Install and Configure Cisco solutions such as switches and routers in the LAN and WAN area.
  • Install and Configure Microsoft solutions such as Windows server, SQL server, Active Directory, Domain Controller and some like these.
  • Installation, Configuration and Maintenance VMware Esxi 5.x, 6.x, vCenter, vMotion, DRS, Clustering and like this.
  • Familiar with some programming C++, C# .net, SQL, Regular Expression, some OS Windows, Linux, Ubuntu, some services including IIS, RDP, DNS, DHCP, Mail etc.
  • Familiar with some products as a theoretical including FortiSOAR, FortiADC, FortiWAN, FortiNAC, FortiAuthenticator, Palo Alto, Penetration test tools.


Training Experience

FORTINET NSE4,5,6,7 ? More than 3000 Hours

  • Including FortiGate, FortiWeb, FortiMail, FortiAnalyzer, FortiManager, FortiDB, FortiSIEM, FortiSandbox.


ESET/Kaspersky Anti-Virus ? More than 200 Hours

  • Install, Deployment and Tuning anti-virus on network (Server and Client side)
  • Tuning security features and signatures including Av, App Filter, Firewall, heuristic, ?


Cyberoam and Sophos Firewall ? More than 500 Hours

  • Definition of old firewalls, UTM and NGFW (Next Generation Firewall)
  • Designing Network Layers based on Firewall (Edge, Core, Access)
  • Firewall communications with Switches, Routers, Servers (physical and virtual like as an ESXi), LDAP.
  • Installation and configuration network features such as routing, interfaces (Vlan-Trunk, Access, Aggregate port, Bridge), PBR, Load balancing, Zone, User Accounting, Log & Report, SNAT, DNAT.
  • Tuning security Profiles including AV, IPS/IDS, APP Controls, Web Filtering, Anti-Spam, WAF, DLP, SSL inspection.


DLP ? More than 100 Hours

  • DLP (Data Loss/Leakage Prevention) solution and modules
  • Implementation and configuration IP-Guard DLP
  • Deploy Best Practice based on organization policies.

Branchen

Branchen

  • Financial and Banking
  • Oil, Gas and Petrochemical organizations
  • Health
  • Insurance
  • Hospital
  • Public and Private sections
  • Automotive industry

Einsatzorte

Einsatzorte

Deutschland
möglich

Projekte

Projekte

2 years 1 month
2023-11 - now

Courses

Fortinet Instructor, Professional Service Consultant
Fortinet Instructor, Professional Service Consultant
  • I am responsible for Fortinet Courses
Insoft Services
UK
2 years 4 months
2023-08 - now

L1, L2 and L3 support

Network Security Engineer
Network Security Engineer
  • I deliver some L1, L2 and L3 support
Germany
2 years 2 months
2021-06 - 2023-07

Information technology

Fortinet Product Consultant
Fortinet Product Consultant
  • The company has been made since 2016 to provide equipment, solutions and specialized services in information technology.
  • As a freelancer and consultant, I was responsible for Deploying Security Devices which are related to FORTINET products such as UTM and Firewall (FortiGate), WAF (FortiWeb), FortiMail and so on.
  • I delivered more than 100 projects for their customers.
Ressis Company
Iran, Tehran
3 years 9 months
2019-11 - 2023-07

Courses

Fortinet Trainer
Fortinet Trainer
  • I was responsible for some Fortinet Courses
Koenig-Solution Company
Main Office ? India
5 years 2 months
2018-06 - 2023-07

Installing, Developing, Hardening and Tuning of Firewalls

Senior Firewall Consultant
Senior Firewall Consultant
  • As a freelancer and consultant, I was responsible for installing, developing, hardening and tuning of Firewalls (FortiGate), FortiDB, FortiWeb, FortiAnalyzer, specially Log & Report, then Analyze and Correlate between related Logs and SIEM software (in SOC unit). 
Iran Khodro Company + Their subgroups
Iran, Tehran
7 years 5 months
2015-02 - 2022-06

Documenting Network Plan

Senior Security Network Consultant
Senior Security Network Consultant
  • The company is one of the subgroups of biggest Bank (the first Iranian bank) that is created to supply and improve Information and Technology requirements of Bank.
  • As a consultant for 5 years and Network Security Manager for 2 years, I was working as a Network Security Consultant in the scope related to Security Devices. 
  • UTM, Firewalls, WAFs and Anti-Virus are instances which are installed, deployed, optimized and tuned by me. 
  • Documenting Network Plan (L2/L3/per service) and Analyzing Security Logs are an another my activities in this company also. 
  • I provided some advice and solutions to prevent attack and anomaly.
OCS Co. (Rayaneh Khadamat Omid)
Iran, Tehran
4 years 6 months
2016-07 - 2020-12

Fortinet Training

Fortinet Trainer
Fortinet Trainer
Rayka Training Group (RaykaCBT)
Iran, Tehran
2 years
2016-08 - 2018-07

Development of using Information Technology

Senior Firewall Engineer
Senior Firewall Engineer
  • Development of using Information Technology in banking industry of country together with the enhancement of activities of financial and credit institutes and private banks not only increased selection domain and customers? demands variety but also made market more competitive. 
  • In these situations, Iran Melli Bank as the greatest banking institute in Islamic world aiming to utilize more of information technology capabilities and better services for society people took action to establish SADAD Informatics Corp. (sic). 
  • Therefore, SADAD Informatics Corp was registered in the Office of Companies and noncommercial Institutes Registration for an unlimited period.
  • I was senior firewalls engineer and in charge of maintenance, tune up, design, develop, install and executive to Fortinet Products and solutions. 
SADAD Co. (SADAD Informatics Corp)
Iran, Tehran
2 years
2016-04 - 2018-03

Advising some business plan to improve road map and prospect

Senior Consultant
Senior Consultant
  • I was working as a consultant in the scopes which are related to Business of Company including Network Security Solutions such as UTM, Firewall, Anti-Virus, DLP and advising some business plan to improve road map and prospect. 
  • I should forecast IT marketing in the domain that Company wants to continue or make new business related. 
ADPA
Iran, Tehran
2 years
2014-04 - 2016-03

Managing technical staff

Vice President
Vice President

I have worked as Technical Manager and Security expert. I provided some weekly reports and documents which were related to my tasks for headquarters. Also, sometimes I made documents and presentations about our products to present and propagate to our customers or to find new customers. Additionally, I was responsible for R&D (Research and Development) for new products and solutions which are pertained to Company`s field. Furthermore, with the start of every new project, I was responsible for the successful initiation, planning, design, execution, monitoring, controlling and closure of a project as Project Manager. Defining Scope, Resource Planning, Developing Schedules, Time Estimating, Documentation, Risk Analysis, Team Leadership, Controlling Quality to reach and evaluate targets were some activities and roles at this position. I was in charge:

  • Managing technical staff
  • Providing security solutions for customers including network and edge such as monitoring, switching, routing, firewall, UTM (Unified Threat Management) or End-point solution such as Anti-Virus, DLP (Data Leakage Prevention).
  • Providing customer feedback for deployment of products (hardware & software).
  • Response to customers? requests in a professional manner.
  • Providing online, remote and local technical support to all Customers for applications & technical issues and Products related.
  • Research and Development of new products and solutions.

Iran, Tehran
1 year 5 months
2012-12 - 2014-04

Checking electrical equipment

IT Operator
IT Operator

This company is one of the great finance agencies in my country now. It has created since November 2009 and has 350 branches in Iran and works based on bank system. I was network administrator in DARBAND branch and sometimes as a cashier.

  • Checking electrical equipment in the branch consist of Cisco switches, router, Power Network Ethernet (POEs), electrical panels ATM and some like these.
  • Testing network communications between some branches together
  • Maintain and handle 5 clients
  • Checking digital cameras and software which was used to record
  • Updating anti-virus on clients and central console
  • And finally, I should gather some reports for manager


Additional activities:

  • Accounting
  • Marketing to find new customers


Reason for leaving:

  • Ending contract in March 2014

Financial and Credit Institute
Iran, Tehran
5 months
2012-08 - 2012-12

Checking electrical equipment

Network Administrator
Network Administrator

It has created since January 1967 and has 2 main offices in Tehran and Sponsored by agriculture organization. I was network administrator in the main office but supported both.

  • Checking electrical equipment in the Server Room including switches, routers, modems etc.
  • Testing internet connections and communications between clients with servers and shared printers
  • Maintain and handle about 30 clients per day
  • Checking digital cameras and software that was related to Security Department
  • And finally collecting reports to present to the manager.
  • Downloading updates for some software including Anti-Virus, Microsoft products
  • Monitoring network and clients
  • Checking software on servers such as active directory, ISA server, domain controller etc.


Reason for leaving:

  • Ending project in December 2012 and lack of official contract

Oilseed Crop Development Co.
Iran, Tehran
8 months
2011-11 - 2012-06

Checking electrical equipment

Network Assistant
Network Assistant

The nature of this company is industrial. I was network assistant in the main office and supported all the buildings.

  • Checking electrical equipment in the Server Room consisting of servers, switches, routers, modems etc.
  • Testing internet connections and communications between clients with servers and shared printers
  • Maintain and handle about 100 clients
  • Checking digital cameras and software related
  • And finally reporting to network administrator.


More activities:

  • Updating anti-virus on clients by central server
  • Monitoring traffic of network by some software such as Mylan Viewer.
  • Controlling internet bandwidth for any client
  • Checking software on servers such as active directory, ISA server, domain controller etc.

Behnam Sanat Paya Co.
Iran, Tehran

Aus- und Weiterbildung

Aus- und Weiterbildung

Kompetenzen

Kompetenzen

Top-Skills

Fortinet Web Application Firewall Trainer Network Security Cisco Router Switch IP-Routing AAA Extreme Networks Firewall

Produkte / Standards / Erfahrungen / Methoden

SUMMARY

I have worked as a Network Security Engineer more than 14 years.


Main Technical Skills:

  • Fortinet Products including FortiGate
  • FortiWeb
  • FortiAnalyzer
  • FortiManager
  • FortiMail
  • FortiNAC
  • FortiClient
  • FortiSIEM
  • FortiSandbox
  • FortiSwitch
  • FortiDB
  • FortiAuthenticator / Training NSE4, NSE5, NSE6, NSE7 / OWASP
  • Extreme Wireless Cloud and Access point / XIQ AP
  • Firewall Engineering
  • TCP/IP
  • Cisco Switching and Routing
  • Threat Analysis
  • Honeypot deployment


Additional Technical Skills:

  • Cisco
  • Switching
  • Routing
  • F5 LTM
  • Firewall
  • UTM
  • NGFW
  • Check Point
  • Palo Alto
  • Sophos
  • Cisco ASA
  • FMC
  • FTD
  • Kerio
  • pfSense
  • Juniper
  • DLP
  • Anti Virus
  • Zero Trust
  • LAN, WAN, WLAN, VLAN, AAA
  • 802.1X
  • Authentication
  • SOC
  • NOC
  • Centralized Management solution
  • Extreme Cloud
  • Cisco Meraki
  • Microsoft Azur
  • Amazone AWS
  • performance monitoring
  • error analysis
  • Optimization of security policies and access controls


Entry Technical Skills:

  • FortiEDR
  • FortiXDR / FortiADC / ZTNA / Microsoft Windows Services including WSUS
  • Active Directory
  • Domain Controller
  • DNS
  • DHCP
  • IIS
  • Exchange
  • Cisco ACI
  • Cisco ISE
  • NSX
  • Virtualization
  • Linux
  • PLSQL
  • SQL
  • JSON
  • HTML
  • XML
  • CSS
  • Network Cabling
  • Server and Storage
  • Technical L1/L2/L3 support


Non-Technical Skills:

  • Project Management
  • Network Administration
  • Team Leader
  • Reporting and Documentation
  • Business development
  • Sales and Pre-Sales
  • Client support
  • Professional Service Consultant
  • Presentation
  • Solution Providing
  • LOM and RFP
  • Technical Content Production
  • Communication
  • Free Thinking
  • Problem Solving
  • Troubleshooting
  • Fast learning
  • High Adaptivity
  • Multi-Tasking


Fortinet Experiences:

FORTIGATE (More than 200 projects)

  • Integrating FortiGate with third-party solution like as Cisco switches, routers, Blades, firewalls, Juniper switches, firewalls, Mikrotik devices, HP&Dell switches, Palo Alto firewalls, Sophos firewalls, Kerio firewalls, F5 LTM, pfSense, Microsoft, VMware, Cyberoam.
  • Deploying 802.1x by integration of FortiGate, FortiNAC and Cisco switches.
  • Physical and Virtual appliance installation, Configure, Tune up, Maintenance, Troubleshoot from small branch model series up to enterprise model like as Datacenter series.
  • Network and Security Features including SD-WAN ( WLLB in old versions ) / Load balancing / Routing ( Static and Dynamic ) / PBR / Multicast Policy / Tunnels / Transparent(TP) and NAT opmode / SNAT-DNAT-VIP / VPN ( site-to-site & client-to-side ) / DHCP ( relay & server ) / Device detection / Traffic shaping / User Authentication ( local & remote server ) / Certification / VDOM / HA ( Clustering A-A, A-P mode ) / IPS / DOS / ACL / Application Control / DLP ( File and Video Filter ) / Web Filtering / DNS Filtering / Antivirus / Email Filtering (Anti-Spam) / WAF / SSL inspection / Local and Remote Log Server / Report.
  • FortiOS 4.x, 5.x, 6.x and 7.x Web GUI, Cli FortiOS family


FORTIWEB (More than 50 projects)

  • Physical installation, Configure, tune up, Maintenance, Troubleshoot from small branch model such as 400 series up to enterprise model like as 3000 series.
  • Network and Security Features including Routing / Port Aggregation / PBR / Revers Proxy-Transparent(TP)-Offline opmode / Full NAT ? Gateway mode for servers / User Authentication / Certification / SSL Offloading / ADOM / HA ( Clustering A-A A-P mode ) / Machine Learning ( Auto Learn in old version ) / Tuning Signatures including SQL injection, XSS ? Cross site Scripting - Trojan ? Generic Attack ? Known exploit ? Information Disclosure / Tuning HTTP protocol constraint / Bot Mitigation/ API protection / URL Rewriting / X-Forwarder ? X-Header / Regular Expression / DOS protection / IP protection / Custom Policy / Input Validation / Web-Anti Defacement / SSL inspection / Local and Remote Log Server / Report / Machine Learning.
  • FortiWeb 5.x, 6.x and 7.x Web UI and Cli including Config, Diag, Exe and like these which are used to Tshoot. 


FORTIANALYZER (More than 100 projects)

  • Physical and Virtual appliance installation, Configure, tune up, Maintenance, Troubleshoot from small model such as 200 series up to 1000 series.
  • Network configuration includes Routing, DNS, Remote Log Forwarding, ADOM (independent administrative domain), Log retention, Raid storage, Hard Disk replacement, Remote alert server.
  • Device registration / Integration with FortiGate, FortiWeb, FortiMail, other devices such as Cisco and Juniper as a syslog.
  • Log collection / FortiView / Event Handler / SOC / Playbook / Report (pre-defined and customized including char builder, dataset and SQL table).
  • Work as a Log & Report Analyzer and use it in Forensics and Risk Management.


FORTIMAIL (More than 20 projects)

  • Physical installation, Configure, tune up, Maintenance, Troubleshoot including devices like as 400 and 1000 series.
  • Gateway, Server and Transparent opmode.
  • Network configuration including Routing, DNS, Mail Settings, Maintenance, Config and Mail data remote backup, Remote Storage as a NAS, Remote Authentication Servers Verification, IP policy, Access Control Policy, Recipient policy.
  • Security feature including Session profile, Anti-Spam, Anti-Virus, Content inspection, URL Filtering, Disarm & Reconstruction, Greylist, Bayesian, DLP, Encryption, SPF, DKIM, DMARK
  • Log, Report and Tshoot by mail queue, history log and quarantine?s folders.
  • HA clustering A-P, A-A (config-only in old versions)


FORTIMANAGER (More than 30 projects)

  • Physical and Virtual appliance installation, Configure, tune up, Maintenance, Troubleshoot with small size such as 200.
  • Network configuration includes Routing, DNS, Remote Log Forwarding, Log Analyzer Feature, ADOM (independent administrative domain), Log retention, Raid storage, Hard Disk replacement, Remote alert server, Workspace and Workflow mode.
  • Device registration / Integration with FortiGate.
  • Policy package Deployment, Provision profile, Remote Cli Configuration, FortiGuard and Licensing, Upgrade Firmware.
  • Log collection / FortiView / Event Handler / SOC / Playbook / Report (pre-defined and customized including char builder, dataset and SQL table).


Other FORTINET Product (Per case Project)

  • FortiNAC
  • FortiSIEM
  • FortiDB
  • FortiSandbox
  • FortiClient
  • FortiEMS
  • FortiSwitch
  • FortiAuthenticator
  • FortiIsolator


Other Firewall Experiences:

CYBEROAM and SOPHOS (More than 50 Projects)

  • Configure and troubleshoot (UTM) Security Features including IDS/IPS systems / DOS/ Application Control / Web Filtering / Antivirus/ Email Filtering / WAF.
  • HA/Cluster Configuration and Tune up in the Active-Active and Active-Passive mode.
  • Configure and troubleshoot accounting feature such as Surfing Quota and Data Transfer based on Local Users / User Authentication mode integrated by AD server Groups.
  • Configure and Troubleshooting of Static Route/ Policy Route / Load Balance / VLANs / SD-WAN.
  • DNAT / SNAT / Virtual Hosts.
  • Report & Analyze Security Logs.


JUNIPER (Less than 10 Projects)

  • Physical installation, Configure, Maintenance, Troubleshoot SRX and SSG series like as 240, 650, 1500 and 4100.
  • Some Features including Static Routing / Port Aggregation-Trunk-Access / VRF / VPN Tunnels / SNAT-DNAT-Proxy ARP-Static NAT-MIP / DHCP (relay & server) / User Authentication (local & remote server) / HA (A-A A-P mode) / IPS / Remote Log Server.
  • Zone base and Interface base configuration / Global base configuration / Mostly Cli base configuration. 


CISCO ASA (5 project)

  • Maintenance and Troubleshoot ASA 5510.
  • Some Features including Static Routing / Port Aggregation-Trunk-Access / Virtual Context / SNAT-DNAT / Remote Log Server / FTD / FMC.
  • Zone base and Interface base configuration / Global base Policy. 


Switch and Router Experiences:

CISCO

  • Physical installation, Configure, tune up, Maintenance, troubleshoot and range of Cisco Switches such as a Catalyst series 2960,3750,3850,6500, Nexus, Meraki series, Routers like as a ISR series 1800,2800 and ASR 1001.
  • Some solutions including EtherChannel / VRRP - HSRP - VSS - VPC / Physical and Virtual Stack / Vlan and Segmentation / Interface Vlan / Port Security/ STP/ RSTP / VTP / ACL / Routing / L3 and L2 ARP cache / Mac table / Trunk / Access / AAA / 802.1x / Inter Vlan Routing / PBR.


Anti-Virus Experiences:

KASPERSKY and ESET (More than 100 times)

  • Install, configure and troubleshoot ESET Remote Administrator (ERA) 5.x / Kaspersky Security Centre (KSC) 8.x & 10.x.
  • Configure and tune up Task and Policy for clients.
  • Configure and tune up Anti-Virus features including Firewall/ Application Control/ Device Control/ Web Control/ Vulnerability Scan/ Patch Management.
  • Analyze Security Logs.


DLP (Data Loss/Leak Prevention) Experiences:

IP-GUARD (20 projects)

  • Install, configure and troubleshoot IP-Guard DLP solution.
  • Configure and tune up Policies including 14 modules such as App, Web, Email controller based on requests of organization to control clients.
  • Read & Analyze Security Logs to create Digital Fingerprint to find Vulnerabilities and Violations to enhance End-Point security.


Other Experiences:

  • Network and Security Management up to 10 staff.
  • Machine Learning, OWASP top 10.
  • Documentation with general software like Visio, Microsoft Office for presentation, network plan (L2/L3/Physical/Logical).
  • Creating and Writing General, Security, Statistic and Analytic Reports based on the organization?s requirements by the Logging tools like as a FortiAnalyzer or syslog servers.
  • Research and develop new security products and solutions such as SOAR, SIEM, SOC, NOC, detecting new Malwares.
  • Providing advice on a wide range of information systems issues and security solutions on the Edge, Internal or Endpoint in network.
  • Design and Plan strategy, policy, management, security and service delivery for organization.
  • Install and Configure Cisco solutions such as switches and routers in the LAN and WAN area.
  • Install and Configure Microsoft solutions such as Windows server, SQL server, Active Directory, Domain Controller and some like these.
  • Installation, Configuration and Maintenance VMware Esxi 5.x, 6.x, vCenter, vMotion, DRS, Clustering and like this.
  • Familiar with some programming C++, C# .net, SQL, Regular Expression, some OS Windows, Linux, Ubuntu, some services including IIS, RDP, DNS, DHCP, Mail etc.
  • Familiar with some products as a theoretical including FortiSOAR, FortiADC, FortiWAN, FortiNAC, FortiAuthenticator, Palo Alto, Penetration test tools.


Training Experience

FORTINET NSE4,5,6,7 ? More than 3000 Hours

  • Including FortiGate, FortiWeb, FortiMail, FortiAnalyzer, FortiManager, FortiDB, FortiSIEM, FortiSandbox.


ESET/Kaspersky Anti-Virus ? More than 200 Hours

  • Install, Deployment and Tuning anti-virus on network (Server and Client side)
  • Tuning security features and signatures including Av, App Filter, Firewall, heuristic, ?


Cyberoam and Sophos Firewall ? More than 500 Hours

  • Definition of old firewalls, UTM and NGFW (Next Generation Firewall)
  • Designing Network Layers based on Firewall (Edge, Core, Access)
  • Firewall communications with Switches, Routers, Servers (physical and virtual like as an ESXi), LDAP.
  • Installation and configuration network features such as routing, interfaces (Vlan-Trunk, Access, Aggregate port, Bridge), PBR, Load balancing, Zone, User Accounting, Log & Report, SNAT, DNAT.
  • Tuning security Profiles including AV, IPS/IDS, APP Controls, Web Filtering, Anti-Spam, WAF, DLP, SSL inspection.


DLP ? More than 100 Hours

  • DLP (Data Loss/Leakage Prevention) solution and modules
  • Implementation and configuration IP-Guard DLP
  • Deploy Best Practice based on organization policies.

Branchen

Branchen

  • Financial and Banking
  • Oil, Gas and Petrochemical organizations
  • Health
  • Insurance
  • Hospital
  • Public and Private sections
  • Automotive industry

Vertrauen Sie auf Randstad

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.