CV DATA LOSS PREVENTION (DLP) : Sélectionnez gratuitement les profils qui vous intéressent

Résumé des emplois de Robert,
freelance DATA LOSS PREVENTION (DLP) résidant dans les Bouches-du-Rhône (13)

• EDUCATION AND QUALIFICATION SKILLS

  Palo Alto Networks PCNSE certified
  Jan 2022 - Jan 2024

• Professional Cisco certified CCNP routing & switching
  Jan 2020 - Jan 2023

• Aix-Marseille University.
  Jan 2011 - Jan 2013

  Master’s Degree in Telecommunication Network Systems and Administration.Academic CCNP Routing & Switching certification.

• Degree in Computer Networking. University of Paisley, Scotland.

  Bachelor’s honours
  Jan 2010 - Jan 2011

  • Windows administration (DNS, DHCP, account maintenance, SNMP)
  • Signal transmission: flow analysis, impact of environmental effects on the signal
  transmission
  • Honour’s project:
  o Subject: Power consumption across Operating Systems:
  o Implementing a triple boot (Mac OS X, Ubuntu, Windows 7) on a Mac Book;
  Tests accomplished to determine which Operating System uses less power
  consumption.

• Franco-Scottish dual degree
  Jan 2009 - Jan 2010

  (validation of both Degree, in France and Scotland)
  • Vocationally oriented Bachelor of Science in Computer Networking and Network
  Security. University of Aix-Marseille II.
  • Bachelor’s degree in computer Networking and Multimedia. University of Paisley,
  Scotland.

• Two-year technical Networking and Telecommunications. University of AixMarseille II.
  Jan 2007 - Jan 2009

  • Project: TCS - Threaded Case Study (Organised by Cisco System enterprise)
  o Study of implementation of network architecture in the University of
  Toulouse.
  o Material choices, routing protocols choice and justification. Wiring scheme;
  Security policy investigation; Calculation of total costs
  • Academic CCNA certification
  APPENDIXES – Overview throughout my career
  To provide some examples:
  - Implementing a PA-5250 for ADNOV meant the HDL and LLD Conception. From the migration
  procedure to the migration itself. From the conception to the physical installation of the Appliances.
  This fact applies to all projects mentioned.
  - In some projects I have acted as Architect and Project Manager
  - JIRA / Confluence are parts of the tools I used in daily basis. The exploitation differs on the company
  policy though.
  - I have made Case Studies and Audits offering new approaches to deliver some projects.

• APPENDIXES – ADNOV Project details
  aujourd'hui

  Project of a new network service offer design:
  Design and conception of a new national network service offer for the French notary environment gathering
  around 60 thousand users spread around 5 thousand offices. The solution is SDWAN, and SASE oriented by
  implementing Ekinop and Palo Alto networks solutions. The project implied the Urbanisation, capacity
  planning, call for tenders, process scalability, impart advice and decisions.
  PAN Scripting (Set format) implemented to onboard on Prisma Access, Create IPSec VPN, PBF, NAT, SEC rule,
  static routes, tag et dynamic groups, GlobalProtect Database user feeding “on the fly” from a Panorama to the
  Managed Devices (PA-VM).
  Project 2nd layer of firewall:
  Integration of a second layer of firewall (PA-5250) with the migration of the entire zones of service (around 20
  zones migrated from the already implemented firewall to that new layer). The deployment has been done in
  two phases: First the PAN Appliances have been inserted to handle to routing part only (BGP interconnection,
  routes learning and advertising with the peers). Then, enabling of the entire Ruleset.
  Full physical installation into the DataCenter
  Project Migration of Internet traffic flows of the national notary parc:
  PAN Scripting (set format) to deploy around 500 rules in adequation with the naming convention and
  following the engineering process of the company policy. Then, shifting of the default gateway of the whole
  Notary VRF from the central routers of the MPLS Backbone to the PA-5250 firewall.
  Project Migration of the notary services traffic flows:
  Adjustment of the topology to reroute that specific traffic from the central MPLS routers up to the PAN
  firewall. Routes Learning and advertising control with route-mapping and PFS on eBGP peerings. Adjustment
  of the Ruleset accordingly with the requirements.
  Project Internet Resources:
  In charge of referencing the company as a LIR to the RIPE NCC. Obtention of a range of public IPv4 and public
  ASN. Processing the update of the RIPE NCC Database updates relating to the company evolution.
  Documentation & Global processes:
  Network Architecture documentation (Design HLD/LLD), company’s global schemes.
  Implementation of exploitation procedures and engineering rules to industrialize and harmonize the daily
  workload in respect of the company policy.
  Project to move firewall cluster from DC:
  Leader on physical move of firewall appliances (Fortinet & PAN) from one DC to another without any service
  interruption.

• APPENDIXES – ITER & MONEXT Project details ITER
  aujourd'hui

  Project 2nd layer of firewall on Edge zone:
  Rework of the network topology to optimize the traffic and flow securitization. Deployment of PAN features
  such as Sink holing & Antispyware, USER-ID & Captive Portal on a PA-850.
  Replacement of the PA-850 cluster with a PA-5220 cluster to be able to deploy additional consuming security
  features such as SSL decryption. Also, this replacement was necessary to handle the network load due to the
  remote work high increasement (COVID).
  Project DC-CORE:
  Rework of the network topology phase two with the implementation of a DataCenter Core switch (Cisco Nexus
  5K) in addition to the existing Campus Core (Catalyst 6509). Adjustment of layer 2 and layer 3 (Spanning-tree
  & OSPF Dynamic routing).
  Project Campus Network securitization:
  Deployment of Cisco layer 2 security features such as IP ARP Inspection, IP Sources Guard, DHCP Snooping
  over the whole Campus Network (around 300 access layer switches).
  Documentation & Global processes:
  Establishment of exploitation procedures to improve the interaction between the different teams covering the
  IT infrastructure and the end-user experience.
  MONEXT
  Project Cisco FWSM Firewall replacement:
  Replacement of Cisco FWSM firewall (6513 chassis cards) with PAN PA-5050. Implementation of 8 VSYS
  (virtual firewalls) with a total of around 22 thousand SEC rules and around 2 thousand NAT rules to be
  translated from Cisco philosophy to PAN. Then implementation of a M-100 Panorama cluster to centralize the
  firewall management.
  Project Core switch replacement:
  Replacement of the Main switch cluster (Cisco 6509) with a cluster of Cisco 6513.
  Project multipurpose Bash scripting:
  Bash script to automate the commits on the PAN firewall with additional checks such as commit results,
  verification of shadow NAT which could bring to potential production incidents. Alerting by email and on-call
  duty dynamic call according to the script result.
  Bash script to help alerting and invoice clients.
  Project NI-GigaStor:
  Implementation of a Network Instrument Gigastor probe to collect the full stack of the network packets
  (headers & data).