Profileimage by Anonymous profile, Cloud Security Architect

Last update: 05.06.2023

Cloud Security Architect

Graduation: Postgraduate MASTERS MSc ICT
Hourly-/Daily rates: show
Languages: English (Full Professional)




Cloud Security Architecture AWS/Azure/GCP, SSO, IAM/PAM, Cyber ​​Security Consulting, Next Gen Firewalls consulting/auditing, Baseline IT Security, Firewall Consulting, AWS Well Architected framework, Togaf/Sabsa, Symantec, Cloud, CSCS Valid Card holder , EDBS/BPSS Cleared, CISA, CISM, CISSP
Cloud Security Architect with experience helping Global Corporations and SME's migrate to the Cloud (Public/Private Cloud), Cloud based Next Gen Firewalls Auditing, Security Operations, Risk Assessment, PCI DSS, GDPR, ISO27001, NIST, Firewall Policy Reviews, Cyber ​​Security, Incident Management, IPS/IDS, SEIM & Proxy, Endpoint Security, Cloud SOC (Security Operations Centre) - Cloud Security Consulting/Architect (

LLD/HLD Togaf/Sabsa)
- Security Operations/ Security management/IT risk assessment
- Risk Assessment including 3rd party assurance/ risk management / Governance
- AWS Solution & Security Architecture, Azure & IBM Cloud Consultancy (Designing & Implement Cloud solutions) SAAS, IAAS, PAAS
- AWS Security Controls SME, Ec2, VPC, AWS Lambda, Elasticache, Cloudfront, Cloudtrail, Cloudwatch, S3 Bucket / Glacier, Security groups, Nacl, Route tables, public/private subnet, CIDR, API, IAM, Terraform -Cloud AWS/AZURE
Security Controls/Compliance with Info Sec – Public Cloud Security – AWS/Azure/GCP Security Architecture
-Supplier Risk Assessments / Vetting / Data Protection / SAQ
- CASB (Cloud access security broker) / SAQ Assessment
- IAM (Identity Access Management) Architecture / Consultancy integration with Cloud Azure/AWS AD
- Cyber ​​Security Management/Cyber ​​Essentials/ITIL
- Cloud ServiceNow/Remedy/Alloy Change Management
- Firewall Auditing & Policy Reviews (illumio, skybox, nipper, algosec)
- Artificial Intelligence, Deep Technology / Machine Learning
- Incident Management / Disaster recovery Planning
- Threat & Vulnerability Management on Cloud
- Heat Map Data Collection / Risk Mitigation / RCSA
- IPS/IDS AD Vulnerabilities
- SIEM / LCP (Logging) Qradar, Splunk, Log Rhythm cloud based
- Proxy – Zscaler, Cisco Proxy, Kali Linux, Powershell
- Stealth watch/DNA-C/Cisco ISE
- Tenable Nessus Vulnerability Management Cloud based
- Endpoint / Network Security, WAF (Web application Firewall), VPC
- Building complete SOC (Security Operations Centre) from scratch
- Content filtering & Email security (Ironport/Proof point)
- Applications Security / migrations – CyberArk/Beyond Trust (PAM/IAM)
- Security Audit – Vulnerability Cloud Scanning, Qulays, Nessus/wireshark
- Threat Modelling/Gap Analysis/Business Impact Analysis (BIA)
- IT Baseline Security / Microsoft Baseline Security / Cisco Security Baseline – BSI
- Ethical Hacking consultations
- Penetration testing management / Cloud Pen testing
- Documenting all security process / workflows , Cloud IAM
- GRC – Governance, Risk & Compliance - SOX Compliance (SOC)
- Creation/amendments of security best practices
- IT Infrastructure / Database Security / Encryption / Saviynt (Cloud)
- SAML / SSO / MFA – Okta/Ping Identity/DUO/RSA / OPENID

Project history

England, United Kingdom
Tel: (Mobile) +447830907033
A very dedicated, enthusiastic, decisive and result oriented Network Security Consultant/Architect with a logical and analytical mind with many years IT experience in Network & Security Consulting/Architecture, IT Project Management, Deployment Management, Implementation management, Network Architecture, Network Roll out, 1st Line to 3rd Line Network Support, Complex Large scale IT Deployments/Roll outs & Providing High Level IT Solutions/Support for all types of Businesses & Public sector.
Available for roles on Contract, Remote, Out of Hours, Weekend, Public Holidays & Freelancing throughout the UK & International
Network Security Consulting/Architecture (LLD/HLD), Security Consulting, Next Gen Firewalls consulting, Network Support, Network Solutions, LAN/WAN, WLAN, MDT (Microsoft Deployment Tool kit), Cisco CCNA/CCNP, Ruckus, Mikrotik, Aruba, Juniper, Nexus 5k/7k, Avaya, Palo Alto, Checkpoint CCSA/CCSE, ASA Firewalls (firepower), Algosec Firewall Consulting, Routing & Switching Protocols, (Ospf/bgp/vlan/dhcp/natting/) HP, AWS Architecture, WAF, Togaf/Sabsa, Dell, Microsoft, Full Project Roll-out, Large Scale Complex IT Deployment,F5 Load Balancer, Imaging & building Machines from scratch, VM Ware, Skybox, Windows Server OS Installation/Configuration, Sysprep, McAfee, Symantec Ghost, Citrix, APP V,SCCM, Windows 7 & Windows 8.1 & Apple, Server 2008, Server 2012, Virtualization, Cloud, CSCS Valid Card holder,EDBS/BPSS Cleared
Next-Gen Firewalls Consulting/Architecture (NGFW):
  • Fortinet FortiGate
  • Forcepoint NGFW
  • Palo Alto Networks PA Series
  • SonicWall
  • Barracuda F-Series
  • Cisco (ASA) Firepower NGFW
  • Check Point Advanced Threat Protection
  • Sophos XG Firewall
  • Juniper Networks SRX
  • Huawei USG
Professional Experience:
May 2019 – Current            Vodafone - Legal & General
 Network Security Consultant
  • Network Security Consulting & Security Architecture HLD/LLD creation & amendments with Head of IT Security, Programme managers / Security Architects / Security MSSP
  • Network & Security requirement gathering from client, creation of network & security documentation, full technical ownership of security & Network Firewall projects
  • Firewall consultancy/Auditing of all Client firewalls including all Next GEN (Checkpoint/Palo Alto FW’s with Next gen capabilities) Develop firewall security policies / application protocols, application analysis, ports, illumio/nipper network segmentation audit, firewall best practices
  • Consulting with Network & Security vendors / MSSP to meet all technical security standards for client in respect of CISO Global Security & Operation policies, skybox firewall/network assurance/threat manager
  • Guiding network / server / database team on ensuring full network security is aligned to CISO Policies including support Solution architects & commercials
  • Providing architectural support for Governance & implementation for audits of pci dss or external audits / Risks
  • Chairing / leading technical client & internal meetings to discuss, update, amend, issues for all security projects including deadline & deliverables
  • Creating security processes for maintenance / hosting and/or mssp’s
  • Runbooks, Teams, Gira,SIEM Q radar Consulting analysis, technical reviews ensuring correct security logs are produced from FW’s
June 2018 – Current Humanity First (
Programme Manager – IT
  • Managing multiple IT Training centres installs/upgrades transformation projects globally with focus on African Countries ensuring programme is meeting objectives & deliverables
  • Working with Country Managers in various countries ensuring IT budgets, IT projects particulars are met & funds allocated correctly to IT Projects in each country – Directing & leading all aspects of the programme
  • Creating & developing relationships with Programme Management team, HF Directors & country representatives, assessing risk & issues management reporting to Programme Director
  • Prince 2 project management methodology / ITIL, maintaining all IT/Project Documentation
  • Organising & working with IT Project Managers/Contractors on International KFL Projects, managing multiple projects to ensure high standards of transformations have been achieved & following all procedures with GDPR/Data Protection guidelines
  • Tracking projects success with Jira/Trello status reporting’s
Evaluating / Assessing school upgrade programmes / reporting on success of projects to senior officials & HF Chairman’s / C Level Executives
February 2019 – May 2019           BlueKong Networks Ltd
Network Security Engineer/Consultant
  • Network Routers/Switches/Firewalls (Next Gen Firewalls) deployment & Configuration of Network devices at Data centres / Client sites
  • Network Security Consulting & creation of LLD/HLD for client proposals
  • Consulting with Head of IT Security, Programme managers / Security Architects
  • Complete Firewalls & network testing of devices & Configure/troubleshoot where necessary to bring in live traffic – Firewalls Auditing/Troubleshooting/Migrations
  • Firewall Rules configuration / IP Schema / Rules documented HLD/LLD
  • MPLS Circuit changes/ASA Firewalls new implementations/VPN
  • Checkpoint/Palo Alto Next Gen Firewalls Install/Migration to different security Vendors, 2nd/3rd Line support/Malware Analysis/User-ID/App-ID/VPN/NAT’s
  • Working with CPE Carriers to resolve any issues on ISP Side
  • Support of troubleshooting connectivity issues with network devices 2nd/3rd Line
  • VPN Site –to-Site IPsec Implementation/Support
  • Documentation of all Network upgrades/migrations keeping up to date
January 2019 – April 2019  Empowered
Network Engineer (Security)
  • Implementation/Configuration/Auditing of Cisco/Juniper/Mikrotik Routers, Switches, ASA/Checkpoint/Palo Alto Next Gen Firewalls, Modems, Access points
  • Next Gen Firewalls Administration/Implementation (Checkpoint/Palo Alto)  ASA Firepower, Rules Review, amendment, auditing rules
  • Routers / switches (Catalyst switches) correctly configured, network support
  • Working with ISP’s ensuring connectivity is confirmed troubleshooting network issues cpe/carrier equipment
  • Troubleshooting Network issues 2nd/3rd Line, ssl/tls Inspections/ working closely with Client
  • Upgrading / Migration of networks / network Designs
  • Producing viable solutions to clients needs in terms of their corporate Lan/Wan Network
  • SOW Statement of Works client requirements
  • Fibre optic testing connectivity with ISP
  • Working closely with Technical engineering team and Project Management
  • Datacentre network upgrades working with multiple clients
  • Sign off with Clients for network site completions
  • Auditing Network equipment, completing documentation of current network equipment, handover any sites to remote technical teams HLD/LLD
June 2018 – August 2018 SGN
IT Security Consultant (Network & Security)
  • Ensuring Network security of the whole company network/applications/servers & infrastructure of SCADA (Supervisory control & data acquisition) of UK Gas
  • Part of Security Architecture team working on securing/Designing LLD/HLD all IT projects with compliance requirements
  • Arranging Pen tests for Corporate network & applications security testing including hands on testing on premises and testing in detail with reporting to resolver teams to close ‘back doors/loop holes’
  • Consulting for on premise servers migration to AWS Cloud, with Disaster recovery & high availability/redundancy solutions
  • AWS Cloud Security projects, with security vendors cloud projects logging / SIEM / Malware / ssl/tls Inspections / WAF
  • Single sign on (sso) Okta integration with AWS Cloud security, security groups, routing, vpc, cloud trail, flow logs, s3 buckets, creating TCP/IP Rules Inbound/outbound
  • Firewall (checkpoint/palo alto HA Environment) / cyber security auditing including ISO27001/NIST standards framework / IDS, IPS
  • Indicators of Compromise
  • Advising Network / Firewall Engineers on network traffic flow & Device hardening
  • Vulnerability scanning/assessments with Qualys, remediating steps for inside/external threats reported
  • Regular meetings with CISO/Project Managers & stakeholders reporting on security projects, creating roadmaps for security projects & future security of company’s network
October 2017 – June 2018 Sony
IT Security Consultant (Network & Security)
  • Reviewing, advising & approving Sony Global Network Firewall rules, Checkpoint / ASA/Palo Alto Auditing/Implementation/Support
  • Security Architecture HLD/LLD of DMZ, LAN/WAN, VPN, changes, redesign, working with Solution Architects to ensure new Solutions meet security requirements
  • Global Incident Management Lead
  • Cyber Security Consulting
  • Working closely with the Security Management on security projects & Weekly Meetings
  • Risk management, Vulnerability, 3rd party supplier on boarding approval
  • Auditing Firewall rules, company security procedures
  • Operational Lead for all Security Devices upgrades at Data Centres
  • Advising all departments in network security, Skybox (ASA firewalls)
  • Jumpbox management for 3rd party suppliers connecting to Security Devices
  • Bluecoat Proxy Upgrade & audit of current rules
  • SIEM Splunk, Tacacs / Cisco ACS, AWS Security (Amazon Web Services)
  • Working with Citrix & AD Teams to onboard new employees, Apps, Vpn Services
  • Vulnerability Scans & Assessment Qualys / Nessus
  • Working on Remedy Security Q Tickets
  • Global Incident security response team lead, Incident management, Security devices regular upgrades management, Incident response procedures flow charts
  • Approving any Infrastructure system upgrades before Cab meetings identifying any security concerns
January 2016 – October 2017 IBM
Network Engineer (Firewalls)
IBM Cloud offering services to Global Clients in transferring to new Cloud Network Service Provider
  • Supporting all aspects of network Segregation through working directly with clients in all aspects of the network requirements
  • Working directly with clients ensuring the Prod/Non-Prod environments have been configured security, firewalls, nat, pat, vpn tunnels, dmvpn, checkpoint, mpls, ids/ips Vyatta/Juniper CLI – Firewalls Administration & Implementation
  • Firewalls Auditing Checkpoint/Palo Alto/Vyatta/Juniper
  • Creation of Network LLD/HLD to provide network solutions to clients
  • 2nd/3rd Line Network Support for Global Clients covering Network Security, Lan/Wan & Datacenters
  • Install/Configure all LAN/WAN Routers/Switches & Network security Devices/Next Gen Firewall Checkpoint/Palo Alto
  • Understanding all client requirements with meetings with clients in information gathering client regular requests and how there network will operate
  • Firewall Changes and ports have been open to allow specific client vlans, servers
  • DMVPN, IPSEC Vpn solutions, direct link configuration with new clients
  • Vyatta/Cisco Network Security updates with client engagements and meetings on security highlights
  • syslog routers analysis, Decommising & upgrade routers (ios)
  • Liaising with the Server & Applications team and clients to ensure all applications are fully working, the firewall requests to open communications has been implemented
  • Having all security documents updated appropriately per client requirements
  • Ensuring security risk is kept to minimum, working closely with client in security issue resolution
  • Connection of WAN network with the DMVPN Mesh nationally & connection of data centres located in each continent for various global clients
  • Working with Microsoft project to keep with deadlines and amendments with global stakeholders, Configuration of Linux Environment
  • Routing with OSPF/BGP in DMVPN
  • Zone based firewall configurations
  • TCP/UDP Http/https load balancer
  • F5 & Citrix Load balancing of servers to distribute loads efficiently across estate
  • Brocade Vyatta/Cisco based firewalls with VRRP, redundancy/failover capability
  • Troubleshooting routing/switching 3rd/4th line issues with Security IPSEC & Vyatta firewall tickets, NAT for traffic to & from Internet
  • Wireshark, Sudo TCP Dump traffic capture for detailed packet analysis, TCP/IP, ICMP
  • QOS Quality of service, ensuring network traffic is in correct routes, reducing loss of packets
  • Static/Dynamic Routing, testing tests of network routers, switches, security
  • Working alone and in team of network engineers, working closely with project managers to ensure all troubleshooting is resolved and participating in regular client meetings
  • Offering advice/consultations to project managers & clients in the direction of the network upgrades
  • Regular updates/meetings with Network Architects, Solutions Architects & Senior Network Management of all Progress/Issues, ITIL
  • Stakeholder management for discussing current & future changes to the network working jointly with multiple teams for
  • Ensuring service level agreements for clients have been fully adhered to and solving tickets within an agreed period to avoid/reduce critical downtime
  • Keeping all technical documentation up to date with detailed steps on each router/switch upgrade and network tickets
September 2015 - October 2015  BT (Rugby World Cup 2015)
Network Engineer
  • Working with Network Team, Network Engineers / Architects & Technical Authority at HQ Cisco Core Site for a successful implementation & 2nd/3rd Line Network support of the LAN/WAN
  • Ensuring security of network is managed correctly in set protocols with firewall change requests from clients
  • Implementation, Auditing & troubleshooting of Palo Alto
  • Changes to HLD/LLD documentation
  • Core site connected with multiple rugby stadiums across UK, Installation & configuration of Routers/switches, Juniper/cisco
  • Working with application/server team to tests applications running on the network and managing any changes in the firewall to allow communications of multiple applications
  • Creating site-to-site VPN’s in Juniper/Cisco Environment Configure & troubleshoot international clients / Firewalls Administration / Rule Reviews/Firewall Auditing/ Implementing all rules changes
  • Comms room, Racking, Stacking, Cabling Installations
  • Ensuring client requirements are fully met and adhered to ensuring other teams have full collaboration in keeping the client updated in the successful change requests
  • Meetings with many senior stakeholders in discussing issues, changes and future plans for the company network
  • Configuration of ASR 1K Routers with BGP/VRF for the Wan links with VSS enabled
  • LAN Layer 2 multi layer Cisco 3850 switches, install/configure security devices
  • Working With Prime Infrastructure for complete network Management with solar winds to detect each node
  • Upgrade of Primary & backup routers to improve network resilience including router ios router, test network routers/switches, full testing
  • Redundant Failover HSRP capabilities tested with secondary routers and secondary switches to ensure no downtime for any department
  • Wireless LAN Controller to connect lightweight AP's with IP Address Allocation in correct VLANS
  • Ospf Redistribution/Static/Dynamic Routing
  • Configuration of 802.11 protocol including wireless technology appraisal
  • SSID/Security Configuration for Staff/Guests and 3rd Party users such as Media
  • Cisco Unified Call Manager (CUCM) Voip/sip Phones for 7900 series, installation, configuration, upgrade & support with correct users with Cisco Unified Call Manager with voice over wireless and poe
  • Datacentre configs, troubleshooting with service provider & customer connected sites
  • Setting up, configuration and troubleshooting Audio visual AV equipment with focus on cisco unified video conferencing 3500 series and cisco telepresence with complete 3rd line support, mobile security 3g/4g
  • Provide room setup and support for users in cisco environment with testing each AV equipment to ensure high standards are adhered to & end users are 100% positive on devices deployed
  • Palo Alto, ASA & Checkpoint Firewall, IP Sec VPN
  • Configure ospf, bgp, mpls with dmvpn mesh
  • F5 Load balancing configurations with snmp, dhcp troubleshooting
  • Cisco debugging on with pack analysis
  • Ensuring ITV Studios in London as maximum bandwidth allocated with QOS for priority in summarisation
  • Wireshark/Iperf monitoring with packet capturing and inspecting to monitor & reduce packet loss
June 2015 - August 2015 Next PLC
Epos & Network Systems Support 3rd Line
Trouble shooting EPOS and networking issues with a UK wide epos upgrade
  • Managing a team of 6 Epos engineers for a successful phase 2 upgrade
  • Writing Training Documents for engineers on various sites to complete upgrade
  • Training staff on perfect upgrade of EPOS including training on Networking Troubleshooting, Networking Testing
  • SSL VPN Juniper config & troubleshooting with datacentre support
  • Checkpoint/Palo Alto migration/Auditing Firewalls
  • Network Monitoring Solar winds covering 2nd & 3rd Line Support
  • Diagnosing Layer 2 & Layer 3 Networking
  • Configuration and support of SQL Server 2012 for database setup for epos tills as managed by SQL database
  • Normalisation procedure in sql code, troubleshooting sql issues with t-sql and updating the database structure to ensure correct data modelling
  • Reading SQL logs to pinpoint exact issues and correcting
  • Data Warehousing modelling methodologies and structures
  • Server 2012 r2 with Hyper v Management for VMWare virtual machine testing environment of cisco switches in labs
  • Liasing with PM, Team Leads & Assistant PM's for change management
  • Working in ITIL Environment with strict SLA's to decrease network downtime
  • Ensuring Bandwidth network speed and QOS summary prioritization is correctly configured
  • Cisco 3750 Multi Layer switches/router installation & configuration
  • Spiceworks for Ticket systems for support
April 2015 - June 2015 Sainsbury's
Epos/Network Systems Engineer
Complex upgrade of retail EPOS/Network Systems for national supermarket throughout the UK
  • Configuration of AMT, BIOS, Network LAN/WAN
  • 3rd Line support for all network, epos issues
  • Epos Server configuration pre installation
  • Windows xp operating system in use for the upgrade
  • Diagnosing Networking issues to ensure full connectivity to the LAN/WAN has been established & showing positively on LAN Com
  • SQL Log reading to understand the logs for the upgrade & diagnosing issues on specific areas in a log
  • SQL Server 2012 with configuration with database for data warehouse modelling
  • T-SQL reports and error detection on codes
  • Working with database methodology structure with report writing on concepts and results
  • Cat 5/Power cable infrastructure according adhering to set rules & regulations
  • Epos user training to ensure any changes have been highlighted to the user & user is comfortable in working on systems
  • Ensuring scanners are upgraded from usb to serial connections with correct drivers & automatic patching of systems
  • ATM Software & component upgrade configuration in detail to enable the network correctly
  • Testing of epos systems to ensure correct equipment has arrived on each site
  • Communication with 3rd party vendors
  • Upgrading epos systems throughout the country on out of hours basis
  • Managing the night roll out of specific site for the epos installation
  • Documentation of any change management
  • Liaising with network engineers, software support & mission control for successful delivery of each site
  • Survey of many sites to establish the current IT systems in place for future upgrades
  • Cross over cable, switches configurations with IP Address allocations to each site
  • Ensuring vlan 2 network ports are in correct vlans according to each department for network segmentation
  • Cash drawer back office switch setting & configuration to determine if each lane is closed/open
  • Diagnosing any faults with the epos systems with various software's/tools
  • Ensuring the escalation process is adhered to effectively with excellent communication with relevant departments to minimize downtime
February 2015 - March 2015 Civica
Network Migration Engineer (Cisco Network/Server)
Major Network Infrastructure Upgrade for the Numerous Schools/Academies
  • Designing & implementing infrastructure solutions for the public sector
  • Configuring Routers/Switches on the Lan/Wan, diagnosing 3rd line network issues / Firewalls Administration / Implementing & changes of rules
  • Performing Microsoft Active Directory data migrations using ADMT
  • VPN Junper config/tshoot/ Firewalls Auditing Palo Alto
  • Migration of Server 2008 to Server 2012 r2, windows server
  • Migrations of systems which included Exchange and Office 365
  • Implementation and deployment of Active Directory & Microsoft Exchange
  • Complete upgrade of Cisco telephony throughout school
  • Racking of New servers and infrastructure in Hub Room including networking gear
  • Working with Microsoft technologies such as virtualization and cloud
  • Ensuring Microsoft servers 2012 & storage SAN & NAS have 100% capability
  • Troubleshooting 3rd Line Support technical difficulties on the estate or network infrastructure including install & configure all new routers/switches lan/wan
  • Upgrade planning, coordination and new system deployments
  • Day to day provision of a range of IT services for public sector departments
  • Working closely with Senior Head of Schools with meetings
  • Dealing with variety of technologies and applications with a focused customer base and IT Professionals working in a team environment
  • Managing the regional IT concerns and issues with sense of urgency and accuracy
  • Ensuring SLA's have been fully met and adhered to & metrics concerning team performances as a whole
  • Giving expert input, assisting in the Long-term IT Strategy including detailed analysis & research of new systems & full planning of all IT upgrades
  • Managing Low level engineers to ensure project is meeting deadlines accordingly to client specifications
  • Maintaining the high IT standards set by stake holders to resolving all network & server issues
  • Defining the environment for deployment of office 365 including Microsoft Exchange & Microsoft Lync working with the Cloud technologies
  • Ensuring high level of quality service by establishing & enforcing organizational standards
  • Develop & maintain a network infrastructure for local connectivity wireless, remote access & disaster recovery
  • Making sure security is of high concern of information systems, communication lines & equipment
  • Reviewing & developing the back-up & disaster recovery procedures & plans
  • Maintaining the effectiveness & efficiency by organising the delivery & supporting strategic plans for implementations of IT infrastructure
  • Communication with Vendors in discussing and placing orders with new IT equipment, software & up to date licences
  • Ensuring operational efficiency, enhancing service quality & optimizing delivery times
  • Responsible for the procedures & systems to mitigate any risks associated with migrations
  • Assisting in the design of the site architecture & solution public sector contracts
  • Supporting other IT departments such as 3rd Line IT support in high level complex tickets and troubleshooting
  • Ensuring focus is kept in mind with optimum end user experience & 100% success
  • Working with the clients on exact specifications
  • Collaboration with IT Team in producing documentations for project & end users
February 2015 Computacenter
Senior Customer Engineer (Networking)
Working in the Financial sector for a Major International Bank
  • Upgrade of the bank DBB online Banking system
  • Deployment, Planning & Implementation of all Banking IT Systems
  • Managing the design & deployment of infrastructure capabilities
  • Configuring Network Domain Controllers, routers, switches, ASA Firewalls & all network Gear
  • Troubleshooting the Windows/Linux environment
  • Configuring MAC OS & UNIX
  • Supporting the e-discovery application tools used by the IT Security department for safe banking
  • Monitoring any issues arising in the network and server infrastructure
  • Participating in Project Meetings with clients, stake holders, Project management
  • Producing training documentation for end users on how best to use IT Systems
  • Managing the development and implementation of business applications
  • Supervising IT Engineers in daily deployment tasks on the servers
  • Identifying the user needs & resolving all 1st-3rd Line IT support requests
  • Working with vendors & clients to exchange information, present new approaches & brainstorm equipment/system changes
  • Collaborating with Vendors contract negotiations for all new computer equipment and software purchases for end clients
  • Negotiate dependencies & priorities with the numerous stakeholders in Banking sector
  • Identifying upgrade concerns with IT & recommend viable solutions for growth & strategic planning
  • Interface with various departments including internal and external clients for developing short term project plans for the Banking environment
September 2014 – January 2015 BT
Network Implementation Manager (Cisco, Juniper, Checkpoint/Palo Alto)
Network Implementation Manager, managing successful Implementation delivery in a National Retail Chain with multiple Sites throughout the UK for deployment of an upgraded LAN & WAN network refresh
  • Technical Management of Installation of Wi-Fi, Wireless Network, Epos, Access points, routers, switches & wireless access points
  • Coordination of Network upgrade with 4-5 Network Engineers for successful implementation
  • Installation/configuration of Cisco 6500/4510 switches onto the Network & Routers also for the Wide Area Connection with Head Office & other branches throughout the UK
  • LLD/HLD Creation & changes working closely with Network team and stake holders
  • VPN Configuration and full 3rd line support Juniper/cisco (SSL) Juniper Firewalls. Firewalls Auditing of each site including migration/Troubleshoting
  • Network/Wireless 2nd/3rd Line Support including ISP Collaborating
  • Completing in depth Wireless surveys with Air Magnet tools on each site prior to installation
  • Working closely with clients on progress of each Network upgrade and implementation
  • In Charge of all IT related project tasks on site for each Engineer and Network Equipment
  • Working closely with project stakeholders, consultants & vendors
  • Managing multiple projects to influence positive outcome need for escalation. Communicating with stakeholders directly throughout the project business stake holders
  • Dealing with external 3rd party companies involved in the project to ensure successful collaboration
  • Executing detailed work plans, schedules, estimates, resource plans, status reports, issue management & risk mitigation
  • Completing UAT User Acceptance Testing forms for successful migration
  • Using appropriate governance & stakeholder involvement approaches for the project to ensure reliability of project & excellent communication
  • Using strong negotiation skills for business relationship management for business partner requests & decisions & providing that valued managerial expertise
  • When required to negotiate changes to project changes relevant to the scope of each project, the timings or resources to ensure that solutions are delivered with excellence
  • Ensuring projects are deployed on time with great quality, as per client specification, within budget, monitoring project issues & risks
  • Managing effectively project teams by coaching, positively influencing, mentoring & providing valuable feedback to Network Engineers, IT Staff & resource managers
  • Wireless LAN Controller configuration for Access Points
  • ASA Firewall, MPLS, Routing Protocols & VPN configuration
  • Using SNMP Manager to test all network connectivity
  • Cabling/Patching of all Cisco Devices to ensure full connectivity with testing & diagnosing of issues
  • Liaising with network Consultant in network department for Site upgrade
  • Configuration of switches & routers via putty, HT or serial console cable to check correct template and resolve all Network related issues
  • Configuration of Avocent Switches onto the network & testing with all relevant patching & cabling
  • TCP/UDP Port analysis & configuration
  • IOS upgrade on switches to perform to top standard on each site
  • Network Testing on site to test all network devices, giving 100% connectivity with ping commands and network tools, pre & post migration
  • Establishing strong working relationships with cross functional departments across the Solutions company and clients
  • Rack Patching with correct cables
  • Stake Holder, client management
  • Using Microsoft Project/Visio for progress of Projects, highlighting issues
  • Producing site reports to give up date on progress on each site post migration
  • Working with Senior Project managers to ensure client is acceptable to migration & Network engineers have completed all required tasks to completion with issues resolved
August 2014 – October 2014 NHS (Derby)
Wireless Network Engineer
WLAN Wireless Network Engineer for Wireless Network Deployment across Multiple NHS Sites in Multiple Counties
  • High Level Designing HLD & also LLD, Planning & execution of the complete wireless network
  • System configuration on wireless plans & network elements
  • Planning and performing wireless site surveys
  • Development and documentation of configurations
  • Making sure Network Architecture has consistency across all configurations of the IEEE 802.11 protocol, Wireless survey, FLUKE
  • Installation, deployment & Support with Cisco & HP Routers & Switches
  • Maintenance of controller based WLAN networks with more than 500 AP’s installed
  • Use of Wireless devices such as Air Magnet, Aruba Network, Ekahau & Spectrum Analysis Software for complex Wireless Assessments & analysis
  • 2nd/3rd Line Networking Support, 3-tier application architecture, leading and facilitating network troubleshooting
  • Create and maintain all wireless network technical documentation
  • Constant evaluation of the network solution& recommending expert level changes
  • Updating the wireless topology according to business requirements
  • Use of test and measuring tools to develop wireless network infrastructure
  • Solar winds for network analysis, performance & monitoring
  • Initiating Pilot test scheme & preparing results on pilot
  • TCP/IP, Spanning tree & EIGRP
  • Working on the WAN Architecture in data and voice circuits
  • In the field of wireless Access Point deployment models, antenna types, roaming solutions and coverage maps
  • Configurations on Network security methods PEAP, WPA (2) & EAP-FAST, Firewall & IPT. Firewalls rules amendments
  • Meetings and negotiating with Clients, Senior IT Project managers, Network Managers & vendors
  • Booking in sites for network upgrades
  • Creating project plans in regards to project phases of the Network Solution with regular communication to various parties
  • Understanding the clients requirements, each departmental IT requirements and business needs and how the network deployment will benefit the sites
June 2014 – July 2014 Capita IT Services
Network Deployment Engineer
New Infrastructure refresh and deployment on high end BSF (Building Schools for the Future) School
  • Working closely with the Project Manager for a New IT Infrastructure Roll out in the Education Sector
  • Providing an IT Solutions to a local school to improve technology hardware / software
  • Highlighting areas of project & presenting valid solutions
  • Working with Senior Network engineers and discussing the network requirements, issues present and how to implement the new network
  • Installation of new LAN and WLAN Wireless network with wireless testing and configuration using Cisco commands
  • Cisco ASA Firewalls Implementation/Support
  • Worked on network tickets from 1st - 3rd Line support
  • Cabling & patching of relevant devices in hub rooms to ensure all network devices are successfully installed
  • Installation of Windows 8.1 on client site on various devices including Mobile devices for, configuration, update of OS according to client specific requirements.
  • Wireless access points installation and configuration using high level commands
  • Virtualisation setup / TCP/IP Networking
  • Legacy equipment removal including chassis & cabling in server room
  • Working on first few machines as Pilot machines to analyse results and issues & progressing to project
  • Working with Apple MAC’s and Apple Mobile
  • Installation of new routers and switches
  • Configuring ports into correct vlans & port fast
  • Migration of User data to New infrastructure
  • Installation of Windows 7 /Migration
  • Installing/configuration of Office 2013
  • Cisco Telepresence and AV equipment installation with 3rd line support
  • Testing of VOIP and cisco unified video conferencing for end user satisfaction
  • Meeting room setup of all AV telepresence communication devices
  • Lifting Heavy IT/Network Devices for removal & installation up to 60kg in weight
  • Monitoring of network using monitoring tools and providing 3rd line network support
  • Patching Hub rooms with correct cabling in relevant switches to ports
  • Antivirus of McAfee software
  • Testing of all hardware / software
  • Working on Group Policy for os and client apps & Active Directory
  • Planning of IT gear deployed locations on all planning material
  • Having a complete survey of site done and meetings with Network, server & project Managers on how deployment will take place
  • Updating and presenting Client on project progress
  • Working with suppliers in business and outside 3rd party suppliers for deliveries of IT Gear
  • Producing IT Documentation in regards to client specifications/requirements or Engineer training manuals
  • Working through various phases of project, ensuring deadlines are met exactly
  • Supporting Technical engineers in various aspects such as Networking, SCCM, MDT
  • Taking responsibility of IT gear, deployments systems & client management
  • Having full knowledge of all new IT infrastructure being deployed and managed
  • Server installation support
October 2013 – June 2014 Egton Medical Information Systems (NHS)
Deployment Manager (Windows XP to Windows 7, System One/Digital dictation/iris)
Field Based Consultant to GP’s at multiple sites throughout East Midlands, Buckinghamshire & Northamptonshire
Management of Major NHS IT Upgrade windows XP to windows 7 Project with up to 50+ sites, with up to 10,000 Users throughout the country
  • Complete guidance and support to IT Engineers, Stake Holders & Project Directors in successfully roll out of Windows 7 and user migration
  • Complete management of all software Implementation used in GP’s on computers used by Doctors, Admin staff, nurses, receptionist and other 3rd party NHS staff working in GP’s
  • Management and training of all Emis System one software for patient records with training to all doctors, nurses and administrators on each GP or hospital sites
  • Offering detailed one to one and/or team training sessions to each site on specific details of the System one software with Emis regulations and training techniques with floor walking on every site until staff are competent with the software usage with EMIS Web a similar system to system one developed by Emis
  • Software implementation management across all GP sites includes: EPS – Electronic Prescription Service use of sending prescriptions electronically to pharmacy of the patients choice, SCR – Summary Care Record use of data collation of patients and sharing throughout England providing vital access to information to GP or NHS Staff when needed
  • Data Migration and complete management of installation of System one including patient data, patient records, history of all attendances to surgery, investigation of patient, medication prescription, Data warehouse modelling worked with SQL Server 2005
  • Management of installation of primary care and GP software such as Meddbase for GP practice management software used by GP Practice managers and/or Senior GP Partners for management of GP’s
  • IRIS Software installation working with team of engineers to manage each site for Practice Managers use to organise GP Accounts, Tax & Payroll. Gained the previous licences or contacted Iris to have new licenses in place as some previous licenses not eligible to work with new operating system windows 7
  • Management of installation of Choose & book software an E-booking software for patients requiring an outpatient appointment to choose the GP and date and time of appointment
  • Managing the installation of EMIS Web in some sites which do not use system one
  • Communication with IT Engineers and vendors of software’s to ensure correct procedure is being implemented and previous data has fully migrated to the new version of the software
  • Management of Lexacom Digital Dictation software for Doctors, Nurses or other staff for digital dictation to increase patient safety & accuracy
  • Ensuring software support contract is in place for each software being implemented, making sure it integrates with clinical system & will nurses or doctors be available to test it
  • Gathering software requirements at PUV Meetings with stake holders/GP Practice managers & doctors on what current software is in place
  • Confirming RAG Reports details, making amendments if necessary & completing sign off sheets
  • Arranging engineers to working client machines according to deadlines
  • Excellent ability in being able to support & liaise with Technical IT Professionals in achieving specified project objectives
  • Ensuring Site has been migrated to 1005 efficiency and site is complete uptime in a successfully migration
  • Proven ability in ensuring quality of work meets specification, & scope of project life cycle
  • Produced the UAT (User Acceptance Testing) Sign off form for completion for users, clients at each site
  • Risk/Stakeholder management
  • First two Migrations working on Pilot Migrations, analysing results/issues & progressing forward to further sites
  • Phoning sites for confirmation of dates of migration and testing
  • Overall complete Management of Migration of Windows XP to windows 7 in NHS General Practices
  • Meetings with Clients (GP’s/Practices managers) for the pre installation Site Audits
  • Fulfilling all customer set Service Level Agreements for contracted delivery time & service in all aspects of services, responsibilities, priorities, etc
  • Offering clients excellent customer service at all times showing positive, professional image of company
  • Being the on-site technical consultant for full support for all users
  • Producing Client/User specific IT training documentation throughout project
  • Documentation of Minutes with Client meetings for the Migration/deployment IT solution
  • On Going meetings with Clients for progress of project & discussion on any change or issues risen
  • Working closely with customer throughout project to ensure successful delivery
  • Installation, upgrade, ongoing commission & support for Network related hardware/software for general practice environment
  • Configuring SCCM and MDT setup
  • Use of MDT (Microsoft Deployment Tool kit)
  • Restoring user shares such as home drives and documents
  • Configuring IP Address, DNS, DHCP, Default Gateway, Subnet Mask & Wireless
  • Installation, configuration & testing of LAN, WAN, WLAN
  • Trouble Shoot, diagnose healthcare IT system/server Issues
  • Working with High end Cisco Routers, Switches & ASA Cisco Security Gear
  • Working in a team of Network consultants/Engineers to diagnose 3rd/4th Line High Level complex Network Issues also after project completion
  • Complete user data & desktop Migration
  • Proving guidance as a Lead engineer to lower engineers on the proposed delivery of the daily tasks
  • Installation & support of all Medical NHS Software’s
  • Use of APP V (Application Virtualisation) & Citrix
  • Windows Group Policy
  • Redo Backups/restore & Microsoft Migration Tools
  • Batch and powershell scripting
  • Networking client desktop PC’s for Full Project Roll-out
  • Contribution to the Network Discovery Plan for IP Networks
August 2013 – September 2013 Capita IT Services
Network Deployment Engineer
  • Worked on £1M BSF Academy Projects in an educational environment
  • Successful Delivery of High level Network deployment Project & delivery of new IT Infrastructure in an education environment
  • In depth communication with various departments for a successful project
  • Providing a complete IT solution to a local school with the implementation & deployment of all new ICT NETWORK systems
  • Installation/racking/stacking of Network Data Equipment. Encryption devices, servers 2012 r2, computer workstations & peripherals
  • Adding Network ports into correct VLAN’s
  • Installation of All Cisco & HP Network Infrastructure with High end Routers, Switches & Firewalls Checkpoint/Palo Alto
  • Building & setting up of all new computers/laptops/printers/servers/server racks
  • Network Patching on switches/POE in hub rooms
  • Setting up the WLAN Wireless network, wireless points and wireless testing
  • Monitoring LAN (Local Area Network), fixing all 3rd Line Network/IP Issues
  • Infrastructure support, assisted with sysprep for Windows 7 & Symantec ghost
  • Working in team of senior engineers, project managers, Technical Design Lead & Network designers for a successful deployment
  • Refreshing hardware, migrating to Windows 7
  • Installation of all new software & operating systems
  • Building, imaging and deploying machines
  • Proving support to Technical staff
  • Offering up to 3rd line support for Clients after deployments
June 2005 – July 2013      TJ Auto's UK
Junior Network Engineer
  • Network installation/Support and configuration for company, configuring DHCP, DNS and active directories, networking printers
  • Supporting Internal business services & engineers in the field for IT support 3rd line maintenance for all on site & remote users
  • HLD/LLD Assistance with Network Designers
  • Firewalls Rules reviews/Approvals/Auditing rules/Firewall upgrades/working with Vendors, Checkpoint, Palo Alto, Cisco ASA Firewalls including troubleshooting, upgrades Firewalls ios
  • Cabling, Racking, Stacking, Fibre optics cables / Cat 5/Cat 6
  • Trouble shooting network issues, installing NAS server
  • Installing desktops, configuring emails, connecting printers, updating etc
  • Backing up and restoring database
  • Updating software on MC70 terminals
  • Keeping up to date knowledge of cash registers, Printers, broad IT knowledge, Hardware and software builds in a windows environment.
  • Working knowledge of servers hardware
  • Deployment of Office 365
  • Performed IOS upgrades on Catalyst 3550 switches
  • Worked within the ITIL framework and SLA's to ensure the stability in network
  • Responsible for providing guidance for the design of the enterprise routed network to provide full fault tolerance, load balancing with F5 & sharing, and automatic fail over capabilities to support data over the TCP/IP network.
Adhere to strict change control, security policy and rollback procedures as agreed using remedy as the problem management and change management tool.
  • Used Cisco debugging commands and Network General Sniffers to solve complex network problems & configuration of Cisco Routers & Switches
  • Network support for LAN/WAN
  • Firewalls Installation/Administration/Implementation Cisco ASA/Checkpoint
  • Use of ICT systems to produce and manage business IT reports
  • Review all changes to network configuration for technical accuracy and impact and provide Multi-Protocol Network problem resolutions.
  • Configuration on Active Directory, PBX Phone sever, SQL Server, TCP/IP Network, Windows Server 2008, AVG Antivirus, Microsoft Office 2003/2008, Outlook 2013
  • VPN setup/configuration
  • Configuring VLAN’s & IP Telephony
  • Worked on VOIP systems/SIP Trunk Lines
  • Communicating with external IT solution companies vendors/suppliers
Jan 2009 – May 2010 University Of Greenwich Chatham Maritime (Kent)
MSc Information Communication Technology (Operations Technology)
Strategy and Management
  • Research Methodology
  • Individual Project and Dissertation
  • Operations Management
  • Developments in Internet Engineering
  • Supply Chain Management
  • E-Technology
Sep 2002 – June 2005 University Of Greenwich Chatham Maritime (Kent)
BSc (HONS) Information Communication Technology
  • Database Analysis (Entity relationship, mapping, modelling)
  • Management & Communications (Managing of IT software, communication at IT level)
  • Networking (LAN, WAN, topology & routers)
  • Dissertation project for final year (Security of the authentication of Windows)
Networking C&G Qualification
  • Basic Networks, OSI Model
  • Network Communication methods
  • TCP/IP Network Implementation
  • Network Protocols
  • LAN & WAN Implementation
  • Remote Networking
  • Network Operating systems
  • Issues, tools in network Troubleshooting
Technical Skills:
Operating Systems: Cisco IOS, Checkpoint)GAiA)/Palo Alto (PAN-OS) Next Gen Firewalls, VRP (Huawei), JUNOS (Juniper), Vyatta Brocade, Avaya, Aruba, Avocent, Ruckus, HP Networking, Windows XP, Windows 7, 2003, 2008, 2012 server
Networking: Wireless LAN & Wired LAN/WAN design and Network Architecture, TCP/IP, 3rd& 4th Line Complex Support of all Networking Architecture issues, Design, Consultancy, Pre/Post Sale, Implement, Troubleshoot
Hardware: Data Centre, PC / Server (assembly and repair)

Local Availability

Available worldwide
Happy to work on-site or remotely & re-location also acceptable


A very dedicated, enthusiastic, decisive and result oriented Security Architect – AWS/AZURE/GCP/IBM/ORACLE/ALIBABA with a logical and analytical mind with many years Cloud experience in Cloud Security Consulting/Cloud Architecture/Cloud Migrations for all types of Businesses in Private & Public sector for 20+ Years
Available for roles on Contract/Freelancing, Permanent, Remote, Out of Hours, Weekend & Public Holidays
Cloud Security Architecture AWS/Azure/GCP, SSO, IAM/PAM, Cyber Security Consulting, Next Gen Firewalls consulting/auditing, Baseline IT Security, Firewall Consulting, AWS Well Architected framework, Togaf/Sabsa, Symantec, Cloud, CSCS Valid Card holder, EDBS/BPSS Cleared, CISA, CISM, CISSP
Profileimage by Anonymous profile, Cloud Security Architect Cloud Security Architect