• Strengths and Skills
• Many areas of expertise span many Cisco products and technologies I have configured and worked with. Following is the summarized list of my specializations and skills I confidently possess in each of respective areas
• 1- Cisco Products and Technologies
• ? Worked and configured 25xx/26xx/36xx/40xx/Series Cisco Routers
• ? Worked and configured 29xx/36xx/37xx/35xx/39xx/55xx/6000/6500  Catalyst Series and Cisco Ethernet Switches
• ? Worked and configured Nexus 7000, 5000 , 2000
• ? Implementation and configuration of Access Control Lists
• ? ACS/NAC/NAC guest/ISE/ASA/
• ? Firewalls ASA, CheckPoint, Juniper and Fortigate 
• ? WLC/MSE/Autonomous Access point
• ? Cisco Works prime LMS/WCS/NCS
• ? Configure and troubleshoot Routing Protocols like RIP, IGRP, EIGRP and OSPF.
• 2- Operating Systems
• ? Experience in installation, upgrade, configuration, administration and support for the following operating systems:
• • Cisco IOS 10.x, 11.x and 12.x for Cisco Routers & PIX firewall
• • Cisco CatOS 4.x and 5.x for Catalyst Switches
• • Cisco NAC Manager and server
• • Windows NT Workstation/Server
• • Windows 2000/2003/2008 /2008R2l/Server
• • Windows XP/Vista/Seven Client
• • Linux Debian (Ubuntu),Red Hat.
• • MAC OS x  10.X
• 3-    (OS) Applications      
• ? Pacchetto MS Office 2003/2007/2010, Internet Explorer from ver. 5 to 9, Fire Fox, Outlook Express. Good at identifying and fixing problems. Typing Speed: 40 wpm
• 4- Technical Skills
• ? Implemented and designed 100 nodes LAN for Synergy Network Systems Ltd.
• ? Enterprise WLAN/WAN/LAN design, LAN cabling, Implement and support TCP/IP, DHCP, DNS, Cisco IOS, and VLAN.
• ? Design and implementation of Interior routing protocols like RIP, IGRP, EIGRP, OSPF
• ? OSPF: Advance Configurations of OSPF over Frame Relay, optimizing OSPF performance using Stub, Totally Stub and Not So Stubby Areas.
• ? Implemented and managed inter-vlan and intra-vlan traffic on catalyst 2900 switches.
• ? Configuration of Cisco Routers Series 26xx, Cisco 25xx, Cisco 36xx, Cisco 1900, 2950, and 3550 Switches etc.
• ? Implemented & Configured Standard and Extended access list on the router for security. Configured TFTP server to upgrade IOS in router.
• ? Well versed with LAN/WAN internetworking with extensive experience in IP addressing, routing protocols and CISCO routers.
• ? Successfully designed and implemented training and labs for colleagues for CDP, RIP, IGRP protocols and Frame-Relay
• ? Configure, manage and optimize routing protocols like RIPv2, IGRP, EIGRP, OSPF
• ? Understand hierarchical addressing using route summarization and VLSM.
• ? Excellent knowledge of TCP/IP addressing, subnetting, VLSM, and summarization.
• 5-    Security    
• ? Assuring Security by penetration Testing (red hat and back track linux ).
• ? Real time Network defense:   Petri network for firewall ids Proxy functionality.
• ? Cisco Network Access Control
• ? Cisco Network Access Control guest server.
• ? Operative system, network and software vulnerability.
• ? AAA Protocols Radius server.
• ? Firewalls: ASA, Check Point and Juniper.
• ? Load Balancer : Radaware and F5  
• ? LDAP and Kerberos encryptions.
• ? Active Directory Security Concepts

Maggio 2009_Msc Ingegneria informatica (Laurea spescialistica)Ottobre 2005_Bsc ingegneria informatic

01/03/2016 – Present: Network and Security Architect in NCR Edinburgh UK:
1-    US financial institutions WAN network maintenance
2-    Wireless network design and integration with ISE for user AAA and Posture assessment rules setup cisco WLC 5500.
3-    Wireless monitoring design (Cisco Prime solution) and integration with Cisco MSE for wIPs real time monitoring solution 
4-    Infoblox NetRMI Deployment and integration with (WNA and LAN networks).

15/09/2015- 03/2016: Wipro Technologies Dusseldorf Germany: Lead Consultant Nestle Data 
center migration Project (New Data Center Security built up Checkpoint VSX   integration with Cisco 95XX series solution and F5 data center deployment).

10/06/2015-11/09/2015: Cyber Security Manager Saudi Arabian transport project (ADA Riyadh)
Applying Cyber Security countermeasure for Public Transport Network. 
Wired Network HLD (Intelligent Information Network IIN)
Wireless MAN Network solution   using WiMAX 
Data center HLD using Cisco Nexus 9XXX in ACI mode. 

29/09/2014–09/06/2015: BNL-BNP Paribas Bank Italy (9000 Users) Network and Security Architect:
    Wireless network design and integration with ISE for user AAA and Posture assessment rules setup (cisco WLC 5500).
    Data Center redesign and development: introduction of Aggregation level using nexus 7000 series.
    Access Layer development using Nexus 5040 and, 2XXX series and MDS.
    Network bottleneck analyze and improvement (redeploying of F5 Load balancer and check points Firewalls). 
    Monitoring a WAN video traffic using cisco IP SLA.
    HLD and LLD of Three-tier BNL Tiburtina Head quarter office using SONA and SAFE cisco diagrams (Cisco 6800, 4500X, 38XX , 29XX Switches ).  

01/03/2013-27/09/2014: Energy Company ACEA S.p.A Italy : Leading engineer describe the ideal solution for the redevelopment of Acea’s campus network according to Cisco blueprint diagrams.
    Deploying and configuring of Cisco Prime NCS and Cisco Works.
    Adaption of wireless network (development and deployment) Solutions.
    Adaption of monitoring technology for all Acea’s network topology needed.
     Security and network project applying Cisco SAFE Framework, which will be applied on campus network. Huawei Teleprecense Design and integration: Design and deployment of video conference with Acea Voip network (Cisco CUCM) improving video and voice quality using QoS.
    Security Documentation and improvement (Firewalls ASA, Juniper and check point).

01/03/2012-28/02/2013: Italian ministry of finance (Istitutto Poligrafico e Zecca Dello Stato IPZS) Italy   Security and network project applying Cisco SAFE Framework which will be applied on campus network.
    Adaption of new Network Design, solutions and integration of new technologies to grantee high security control and monitoring with best network Performance. 
    Wireless network design (HLD and LLD) and integration with ISE for user AAA and Posture assessment rules setup, NAC upgrade to ISE. NAC integration with ASA5500 for VPN remote access in out of band layer 3 deployment. NAC deployment integration with wired network in out of band layer 2. Cisco VPN Anyconnect and RAS SecureID integration.
    Cisco WLC 5500 and ISE integration.

11/10/2011-28/02/2012: Sigma-Tau (Italy )  Real Time Network Defense Project using Cisco SAFE Framework which will be applied on Sigma-Tau campus network.

1-    Offensive Security Penetration Testing with BackTrack for overall view of Sigma-Tau Network Security.

2-    Set up of Sigma-Tau Network Simulation Lab. 

3-    Distribution Switches redundancy using GLBP Cisco Priority.

4-    Test and Set up of Cisco Wireless Control System (WCS) extending Sigma-tau wireless network security and control.

5-    NAC Extension for wired network using Cisco SAFE blueprint diagram (Campus Enterprise) 

6-    Integrating Cisco NAC with Cisco VPN Concentrators (OOB Layer 3) for the end point security status control.

7-    Securing Routing and switching network infrastructures using Cisco SAFE blueprint diagram (Campus Enterprise).

8-    Improve Firewalls Deployments and their performances.

9-    Traffic Classification.   

01/09/2010- 07/10/2011: Gruppo Energent Company (Italy): 
Describe the ideal solution for Segma-Tau campus
network and security according to Cisco Three Tier model and Cisco SAFE.
Wireless Network design and configuration (cisco WLC 4400 and AP LAP11442)
Wireless Integration with NAC and active Directory for User Authentication Server.  Security Enforcement rules for posture assessment Agent control.
Wireless Integration with NAC Guest for temporary guest account supervision.

0109/2008-01/09/2009    OLIB informatica S.r.l- via Tolmino 32,
         Rome, Italy 
(DVB, DVBT, DTT) Application Developments:
•    Configuring, Testing and Using Client and Server Colby Carousel for setting up DVB-T channel and video transmission under windows vista environment.
•    Video decoding and Streaming (MPEG transport stream) test Using Sorenson Squeeze and VLC Streaming Media for DVB and DVB-T channel transmission under windows vista environment. 
•    Installing and testing transmission of MHP applications on the Colby carousel client
•    MHP Applied through JMAG based on MHP technology to Develop a different Interfaces using Java TV Library.
•    Report and describe the test results and structures of DVB-MHP tech applied through COLBY-JMAG based on MHP technology to Develop a different interfaces using Java TV as programming language using office 2003 (Word and PowerPoint.

28/09/2006-14/06/2007    Leonardo Project EUR Training in ESAB Sweden Robotic Vision Software development. 
Roma Tre University Rome Italy 
Tutor in fundamentals of data structures in java.
•    Object Oriented Programming (In java).
•    Data Structures Main Concepts: Arrays, Stacks and Queues, linked lists, Trees, Graphs, internal and external Storing, Symbol Tables and Files.

01/02/2004- 01/01/2005:Orbit Satellite TV & Radio Network
 Via Costi, Rome, Italy 
Web Designer & Web Master
•    Web development editor Dreamweaver.
•    Graphics editors Flash4 and Photoshop 7.
•    Web languages (CSS, HTML, XHTML, java script).

Certifications and Specializations 

2013-2015    CISSP Certified Information System Security Professional
CCDP (Network and security Design)
        Checkpoint CCSA & CCSE
        F5 Big-IP
CCNA Data Center 
CCIE routing and switching Training course in SYNERGYXX LTD
London Waiting for practice exam (January 2015).

2012-2013     CCNP Security Exams and Training recommendations SYNERGYXX LTD London
        CCNA Voice 640-461 ICOM
 CCDA 640-864 DESGN.
Secure v1.0 Securing Networks with Cisco Routers and Switches
Exam: 642-618 – FIREWALL v2.0
FIREWALL v2.0 Deploying Cisco ASA Firewall Solutions 
Exam: 642-648 – VPN v2.0 
VPN v2.0 Deploying Cisco ASA VPN Solutions
Exam: 642-627 – IPS v7.0

2011-2012     CCNP Routing and Switching
  
CCNP Cisco exam Implementing Cisco IP Switched Networks 642-813
CCNP Cisco exam Implementing Cisco IP Route Networks 642-902
CCNP Cisco exam Implementing Cisco IP Troubleshooting Networks 642-832 
CCNA Wireless (WLC, WCS, Lightweight Access point) 640-722

2010-2011    Cisco Certified Network Associate Security 640-553.
Cisco Network Admission Control Specialist (4011 US government Security certified).
Cisco exam CCNA Routing and switching 640-801
Cisco exam Implementing Cisco NAC Appliance CNAC 642-591.
 802.1x deployment and implementation.
Microsoft MCDST and MCP
    High experience in Linux Red Hat and Debian.

11/2009-08/2010    Synergy Networks Systems Ltd, 80 Scrubs Lane, NW10 6RF
        Cisco Certified Network Associate         –         CCNA        
        Microsoft Certified Professional             –        MCP
        Microsoft Certified Desktop Support Technician    –     MCDST 

11/2005-06/2008:     MSc, computer Engineering (Artificial Intelligence & Networking) thesis in Robotic vision Orebro University Sweden under Leonardo project program finale grade 92/110.

09/2002-10/2005: BEng, Computer Engineering (Software engineering) thesis in Robot Planning and Navigation Orebro University Sweden Erasmus Program final grade 93/110.
    
09/1998-12/2000: Post Graduate degree in Physics Science Specialization: Optics, obtained with maximum votes Damascus University (Syria) final grade 87/100.

09/1997-07/1998    High school Degree (A level) Abd Alhamed Alzehrawi Highs cool (Homs-Syria).

Professional Lab Experience

CCIE Student         Synergy Network Systems, London 

My major accomplishments and responsibilities include the following:    

    Design and implementation of Interior routing protocols like RIP, IGRP, EIGRP, OSPF and BGP. 
    Implemented and managed inter-vlan and intra-vlan traffic on catalyst 2900 switches. 
    Cisco Data Center Switches: Access Layer :Nexus1000v, 2000, 5000 and MDS Aggregation Layer: Nexus 7000 series 
     Cisco: 26xx, 36xx, 7xxx, 65xx, 60xx series Routers and 29xx, 65xx, 3xxx series catalyst switches, Cisco Pix firewall series, Cisco VPN Concentrators.
    Implemented & Configured Standard and Extended access list on the router for security. Configured TFTP server to upgrade IOS in router. 
    Perform post installation configuration (user configuration, apply service packs, etc.)
    Monitor, manage, and troubleshoot access to files and folders
    Configure and troubleshoot local user and group accounts
    Troubleshoot the TCP/IP protocol. Configure and troubleshoot end user systems using remote Desktop and Remote Assistance.
    Administration of IP addresses. Proficient in sub-netting techniques. 
    Configure, manage and optimize routing protocols like RIPv2, IGRP, EIGRP, OSPF,BGP
    Understand hierarchical addressing using route summarization and VLSM
    Managing VLANS on Cisco Switches
    Well versed with LAN/WAN internetworking with extensive experience in IP addressing, routing protocols and CISCO routers. 
    Call-Logging & allocating customer queries
    Taking Ownership of the queries & seeking a satisfactory conclusion
    Escalate queries where necessary to ensure that queries are dealt with in a professional manner
    WAN technologies i.e. ISDN and frame-relay
    WAN PPP Authentication using PAP and CHAP
    NAT configuration and operation
    Successfully designed and implemented training and labs for colleagues for CDP, RIP, IGRP protocols and Frame-Relay
    Configure, manage, troubleshoot and optimize routing protocols like RIPv2, IGRP, EIGRP, OSPF and BGP.
    IPV6 OSPFv3, RIPng, EIGRP, BGP, QoS and Multicast.
    Excellent grounding in Windows Server NT 4.0/2000/2003/2008/2008R2 e Windows client XP/Vista/Seven  and installation.

Strengths and Skills

Many areas of expertise span many Cisco products and technologies I have configured and worked with. Following is the summarized list of my specializations and skills I confidently possess in each of respective areas

1-    Cisco Products and Technologies

    Worked and configured 25xx/26xx/36xx/40xx/Series Cisco Routers
    Worked and configured 29xx/36xx/37xx/35xx/39xx/55xx/6000/6500  Catalyst Series and Cisco Ethernet Switches
    Worked and configured Nexus 7000, 5000 , 2000 
    Implementation and configuration of Access Control Lists
    ACS/NAC/NAC guest/ISE/ASA/
    Firewalls ASA, CheckPoint, Juniper and Fortigate  
    WLC/MSE/Autonomous Access point
    Cisco Works prime LMS/WCS/NCS 
    Configure and troubleshoot Routing Protocols like RIP, IGRP, EIGRP and OSPF.

2-    Operating Systems 

    Experience in installation, upgrade, configuration, administration and support for the following operating systems:
•    Cisco IOS 10.x, 11.x and 12.x for Cisco Routers & PIX firewall
•    Cisco CatOS 4.x and 5.x for Catalyst Switches
•    Cisco NAC Manager and server 
•    Windows NT Workstation/Server
•    Windows 2000/2003/2008 /2008R2l/Server
•    Windows XP/Vista/Seven Client
•    Linux Debian (Ubuntu),Red Hat.
•    MAC OS x  10.X

3-    (OS) Applications       
    Pacchetto MS Office 2003/2007/2010, Internet Explorer from ver. 5 to 9, Fire Fox, Outlook Express. Good at identifying and fixing problems. Typing Speed: 40 wpm

4- Technical Skills
    Implemented and designed 100 nodes LAN for Synergy Network Systems Ltd.
    Enterprise WLAN/WAN/LAN design, LAN cabling, Implement and support TCP/IP, DHCP, DNS, Cisco IOS, and VLAN.
    Design and implementation of Interior routing protocols like RIP, IGRP, EIGRP, OSPF 
    OSPF: Advance Configurations of OSPF over Frame Relay, optimizing OSPF performance using Stub, Totally Stub and Not So Stubby Areas. 
    Implemented and managed inter-vlan and intra-vlan traffic on catalyst 2900 switches. 
    Configuration of Cisco Routers Series 26xx, Cisco 25xx, Cisco 36xx, Cisco 1900, 2950, and 3550 Switches etc. 
    Implemented & Configured Standard and Extended access list on the router for security. Configured TFTP server to upgrade IOS in router. 
    Well versed with LAN/WAN internetworking with extensive experience in IP addressing, routing protocols and CISCO routers. 
    Successfully designed and implemented training and labs for colleagues for CDP, RIP, IGRP protocols and Frame-Relay
    Configure, manage and optimize routing protocols like RIPv2, IGRP, EIGRP, OSPF
    Understand hierarchical addressing using route summarization and VLSM.
    Excellent knowledge of TCP/IP addressing, subnetting, VLSM, and summarization.

5-    Security     

    Assuring Security by penetration Testing (red hat and back track linux ).
    Real time Network defense:   Petri network for firewall ids Proxy functionality.
    Cisco Network Access Control 
    Cisco Network Access Control guest server.
    Operative system, network and software vulnerability.
    AAA Protocols Radius server.
    Firewalls: ASA, Check Point and Juniper.
    Load Balancer : Radaware and F5   
    LDAP and Kerberos encryptions. 
    Active Directory Security Concepts  

Istruzione 

Anno Maggio 2009 Titolo della qualifica Msc Ingegneria informatica (Laurea spescialistica)Ottobre 2005 Istituto di istruzione o formazione Bsc ingegneria informatica (laurea triennale )Settembre 2000 Luogo Bsc physical sciencesLuglio 1997

Lingue Lingua Arabic Capacità di lettura/scrittura Madrelingua Capacità di espressione orale Madrelingua

Lingua Inglese Capacità di lettura/scrittura Ottimo Capacità di espressione orale Ottimo

Lingua Italiano Capacità di lettura/scrittura Ottimo Capacità di espressione orale Ott