Profileimage by Hessam Kassim CISCO, CCIE, IP Desig, Firewall, Juniper, MPLS, VPN from Duesseldorf

Hessam Kassim


Last update: 26.11.2019

CISCO, CCIE, IP Desig, Firewall, Juniper, MPLS, VPN

Graduation: not provided
Hourly-/Daily rates: show
Languages: Arabic (Native or Bilingual) | English (Native or Bilingual)


Firewall Switches Cisco CCie CCIE SECURITY WRITTERN Juniper MPLS VPNs IP MPLS IP Engineer Firewall Architecture


Hessam Kassim-CV.doc


Cisco switches Nexus 9k,7k/5k/2k, Cisco routers, ASR, Cisco, UCS, Cisco Nexus 1000v, Firewalls, Checkpoint VSX, Cisco FWSM, ASA, PIX, Fortinet, MX240, MX960, EX Series Ethernet Switches, BGP routing, IS-IS, OSPF, EIGRP, IGRP, RIP. SNA, IPSEC, L3VPN, L2VPN, MPLS, mGRE, L2TP, VXLAN, Alcatel, LTE, Routers, Wifi, IMS, Database, mobile network, roaming, MMS, data centres, BIG-IP, load balancing, juniper, firewall, OAM, M2M, 2G, virtualization, NSX platform, Dell, HPE Switches, LAN, Cisco Nexus 7000/ 2000K, Cisco Nexus 7000, Juniper M960, network security, MPLS WAN, Cisco ACE, Checkpoint VSX firewall, Nokia Check point firewall, F5 load balancers, Nortel Alteons load balancers, Cisco VPN, Cisco IDS-M2, Cisco ACEs, Check Point VSX, web browsing, scalability, DMZ firewalls, Citrix, data centre, SSL, wan, VPN, backbone, IPVPN, fault tolerance, Cisco IOS software, HSRP, GLBP, BGP, LAN/WAN, L2/3, Microsoft Windows NT, Red Hat Linux servers, dynamic routing, EIGRP and RIP, Wide Area Network, Data centers, data center, VOIP, OSI, SDH, AS 1273, ISDN, ADSL, Frame -Relay, ATM, ISIS, IPSEC VPNs, VPNs, Multicast, network design, WAN/LAN environment, bridges, hubs, Windows NT, Novell Netware, Cisco (IOS, CatOS), Juniper M-Series (JUNOS), Switches, Cisco Catalyst, Extreme Switches, Nexus 1KV, Nexus 2K , 5K and Nexus 7K, F5 Networks (Big-IP), Alteon, Networking (AON), Cisco ACE (Application Control Engine Module), Cryptography, Key Management, AAA Model, RADIUS, TACACS+, Kerberos, Cisco CAR, RADIUS Proxy, Cisco Authentication Proxy, Access Lists, IOS Firewall, 802.1x, IOS Security Features, DMZ set ups, CBAC, DoS, common threats prevention, Cisco IDS / IPS, Intrusion Detection / Prevention System, Cisco CSA, Cisco Works VMS IDS MC / Firewall MC, Certificate Authority, CA, PKI, Cisco Secure ACS Server, Cisco VPN Concentrator, Cisco ezvpn, Cisco PIX / ASA Firewall, VPN Client, Cisco Security Manager, CSM, Cisco MARS, Cisco NAC / CANAC, Checkpoint / Nokia VPN-1/Firewall-1 NG, Routing, Static Routing, RIPv1, RIPv2, RIPnG, BGPv4, ODR, GRE, IPv6, Traffic Engineering, Policy Based Routing PBR, Route Filtering, Redistribution, Summarization, Bridging Catalyst CatOS and IOS based Switches, VTP, STP, RSTP, Trunking, VLANs, VSS Layer 3 Switches, Logical Etherchannels, Transparent Bridging, IRB, CRB, DLSW+, MLS. LAN, Ethernet, FastEthernet, GigabitEthernet, FDDI, CDDI, Token Ring, ATM LAN Emulation Network, Ethereal, Paketyzer, Radcom, Etherpeek and others, Load Generators, Spirent Smart Bits, iperf, IPTraffic, Leased lines 64k - 155Mb, PPP / HDLC, Channelized lines, E1, T1, E3 / T3, 48 speed, Frame Relay, xDSL, Multi Homing, IOS, CatOS Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, HTTP, TFTP, FTP Management, IPv6 test projects, RAS Solutions, Cisco CNR, DHCP server, WRED, Queuing features, FRTP, CAR, RTP, Sparse-Mode, Dense-Mode, Sparse-Dense-Mode, IGMP, CGMP, Rendezvous Points, VoIP (Voice over IP) / IPT (IP Telephony), IP Telephony, FXS, FXO, Call Manager, QoS implementation

Project history

01/2007 - 01/2013
Senior Network and Security Engineer
Vodafone / Cable & Wireless Worldwide
Duties Include:
* Solutions design, implementation and support for this C&W Premier Customer.
* Dedicated team member tasked with the management of the customer's secure perimeter Network,
internal LAN, and E-Commerce platform.
* On site customer facing interaction and consultation.
* Remote management of C& W customer's MPLS WAN network, thereby coordinating with Core C&W
network management teams.
* Support of a diverse range of network kit, this included but not limited to, Cisco ACE,
Checkpoint VSX firewall, Nokia Check point firewall, Cisco FWSM, Cisco IDSM, BIG IP F5 load
balancers, Nortel Alteons load balancers, Cisco VPN concentrators and Blue Coat (Proxy SG,
MACH5 and Proxy AV).
* Responsible for authoring customer specific Solution Design Documents, in response to
customer specified high level requirements.
* Undertook proactive performance monitoring of the network.
* Authoring and maintaining customer support documentation.

Projects Included

* Working in project with core team to build a new switch network infrastructure to link
between Two data centres using OTV which include Nexus 7000,5000 and 2000.
* Worked on project to virtualized VMs which includes UCS (Unified Computing System), Nexus
Switch 1KV and MDS switches 9148.
* Worked on project to build a new Data Center which includes a new setup of (Cisco FWSM,
Cisco IDS-M2, Cisco ACEs, Check Point VSX).
* Worked on project to build a new web browsing setup, the solution involved a Blue Coat (SG
9000, SG 610 and SG 500).
* Worked on multiple projects to upgrade and improve the network infrastructure and network
* Re-architected the web front end network for better scalability and security which included
inserting border routers, DMZ firewalls and a technology refresh of the existing load
balancers. Vendors included Cisco and Citrix.
* Designed and Implemented data centre, processing 1.8 million financial transactions daily.
* Designed and Implemented Contents switching and SSL offloading solution, enabled
non-disruptive scaling of core products.
* Designed and implemented IPSEC-DMVPN based on 3G routers for M&S sites, allowing nationwide
secure remote office connectivity while minimizing wan connection costs.

01/2002 - 01/2007
Design Engineer
Cable & Wireless Plc
Projects Included:
* Contribute to new Services creation processes (specify, design, build), and coordinate
network infrastructure.
* Collaborating with and advising NDAs (Network Design Authorities) on new implementations and
enhancement to the existing network infrastructure.
* Designing and implementing network solution to connect a number of Cable and Wireless's
remote offices into the Corporate Network using VPN IPSEC tunnels.
* Designing and implementing network solutions to migrate the Cable and Wireless core sites
from a legacy ATM LANE backbone to an IPVPN QOS.
* Designing and implementing a fault tolerance solution for the Cable and Wireless corporate
network and some customer networks using Cisco IOS software technique, such as HSRP, GLBP,
PBR, Ether channel and routing protocols.
* Implementing MPLS based VPN network for clients in world wide configured and troubleshoot
MPLS and BGP for 500+ branches all over the UK Configuration of MPLS-CE devices with BGP
Provided vendor and onsite tech group management.
* Designed, supported and implemented corporate LAN/WAN using CISCO routers and L2/3 switches
Provided maintenance, administration and support for Microsoft Windows NT and Red Hat Linux
servers Provided infrastructure support for off site and on site application developers
Designed and deployed large scale networks using dynamic routing protocols (OSPF, BGP, EIGRP
and RIP) Designed and implemented Virtual LAN with Routing, Wide Area Network, and
Redundancy of all Active Devices.
* Designed and implemented self managed Enterprise MPLS backbone and connect the Data centers
and branches to the MPLS backbone. Worked on BGP as PE-CE protocol and MP-iBGP as PE-PE
protocol. Implemented five class QOS model using MPLS uniform mode.
* Designed and implemented the resilient state of art data center architecture using Cisco
7600 routers at WAN and Cisco catalyst 6500 switches at the services layer and aggregation
* Configured the BGP, EIGRP and OSPF as routing protocols within data centers.
* Designed and implemented vrf lite based routing architecture within data center.
* Designed and implemented dual ASA Firewall at the perimeter layer for internet connectivity.
* Configured End to End QoS to prioritize voice and critical applications

01/2000 - 01/2002
Network Operations Engineer
Cable & Wireless Plc
Duties Include:
* BAU centralized management of the Cable and Wireless MPLS core network.
* End-to-end management of Cable and Wireless customer MPLS-VPN networks.
* Remote management of C& W customer integrated enterprise VOIP solutions. Utilizing Cisco
voice gateways and PBX solutions (CCM).
* Remote management of the Cable and Wireless Corporate data WAN network.
* Management of the Cable and Wireless core element management infrastructure, consisting of
the, N2K network and the DCN network (Data Communication Network - A IP, OSI and bridged
network designed solely to manage the C&W SDH network and other transmission elements).
* Remote management of the Cable and Wireless internet service provider environment (AS
* Diagnosing and troubleshooting network related problems on a diverse range of technologies
including but not limited to IP, ISDN, ADSL, ATM LANE, Frame -Relay, ATM, EIGRP, OSPF, BGP,
CLNS, ISIS, IPSEC VPNs, MPLS VPNs, Multicast, VOIP, Cisco Call Manager etc.
* Responsible for authoring incident reports.
* Undertook proactive performance monitoring of the network.
* Authoring and maintaining customer support documentation.
* Liaising with the deployment and network design authority on all aspects of the MPLS
* Supporting wide area network of financial companies (Banks) such as HSBC & Royal Bank of
Scotland & Abbey and Experian.

01/1997 - 01/2000
Network Analyst
Astrik Network Systems
Duties Included:
* Responsible for the monitoring of the pro-active network management systems.
* Provide 1st & 2nd line support of all network communications.
* Maintaining and implementing the WAN/LAN environment.
* Installation and configuration of all network products, e. Cisco routers, bridges, hubs and
* Network Engineer.
* Installed and setup servers and workstations for Windows NT and Novell Netware, installed
dialup and leased line modems and configure multiplexers and Routers.

01/1995 - 01/1997
Network Operations Centre Engineer
Global One
Duties Included:
* Responsible for the maintenance and installation of the fund's two local and twenty-five
remote sites.
* Installation and configuration of all the Cisco routers and hubs
* Support of all Novell and NT workstations.
* Provide training and support to both users and peers on an 'ad-hoc' basis.

Time and spatial flexibility

75% Remote

Contact form

Contact details