United Kingdom: Freelancer profile Robert Geerts from Bad Camberg, Netzwerk Engineer, Cisco, Netzadministrator, Netzwerkberater, CCNP, CCDP, CCNA, CCDA, ACSS, CCSA | Profiles from freelancers and companies
Robert Geerts, Network Engineer, Network Design, Network Administration, CCNP, CCDA, CCNA, CCDA, ACSS, CCSA
Robert Geerts
Dipl.-Ingenieur (FH)
Geerts Consulting
Network Engineer, Network Design, Network Administration, CCNP, CCDA, CCNA, CCDA, ACSS, CCSA
65520 Bad Camberg
available
Hourly-/Daily rates:
k.A.
Last update: 01.07.2011 14:53
Attachments
Language skills
german (business fluent)english (business fluent)niederländisch (business fluent)
Abilities, knowledge, experiences:
_______________________________________________________________________________________________
Personal Information:
Engineer Since: 1990
Formal Education: Completed High School and College, Hampton Virginia USA
Qualifications: CCNP, CCDP, CCNA, CCDA, ACSS, CCSA
Languages: English, Dutch, German
Skills:
Cisco Routing and Switching
Cisco VoIP, Siemens VoIP, Alcatel-Lucent VoIP, Avaya VoIP
Alcatel-Lucent Routing and Switching
Aruba Networks WiFi
Cisco PIX Firewall
Check Point Firewall-1/VPN-1
VMWare Workstation and VMWare ESX
Cisco:
IOS & CatOS
C6500-E Sup720, C6500-Content Switching Module (CSM)
C4500-E Sup6-10GE, Sup5-10GE, Sup2-10GE, Sup2-TS
WAN Service Router 7600, 7400, 7300, 7200, 7100
C4500 Classic, C3560, C3550, C2950, C2900XL, C5500, 2800, 3700
Information Security:
TACACS+, RADIUS, Cisco Secure ACS, RSA SecurID
Cisco PIX Firewall, Juniper Netscreen, Fortinet Fortigate
Check Point Firewall-1/VPN-1 NG-FP3 (Windows and Nokia IPSO)
Thales Mistral IPSec-VPN, Cisco VPN3000
Operating Systems:
MS-Windows 2003 Server, MS-Windows XP, MS-Windows DHCP,
Internet Authentication Server (IAS), MS-Windows DNS and WINS
VMWare Workstation, VMWare ESX
User level knowledge of UNIX, SUN Solaris, Linux and Apple OSX
Tools:
HP-OpenView, Concord, Spectrum, Prisma, Cisco Works, MRTG,
PRTG, Remedy Change Management
Network Analyzers:
WireShark, Ethereal, Fluke, Sniffer Pro, Dolch, tcpdump
Main Skills:
Network design, network optimization, network administration
TCP/IP
IP Routing MPLS, VRF-Lite, BGP, EIGRP, OSPF, ISIS, RIPv2, ODR
Policy Based Routing, Route Filtering, Source Routing
Network Address Translation (NAT)
Voice over IP, DSCP, 802.1p CoS, RTP, SIP, 802.3af PoE
IP Multicast Routing, PIM-SM, PIM-DM, DVMRP
Multicast Switching IGMP, CGMP
HSRP, VRRP, Server Load Balancing (SLB)
Spanning Tree 802.1d 802.1w 802.1s Rapid-PVST+, Trunking 802.1q
EtherChannel and Link Aggregation 802.3ad, VTP, CDP, Port Fast
DHCP Snooping, Dynamic ARP Inspection, Root Guard, Loop Guard,
BPDU Guard, UDLD, uRPF, Broadcast Suppression, Native Tagging
________________________________________________________________________________________________
Training and Certifications:
Cisco Systems Certifications:
CCNP Cisco Certified Network Professional, certified since 2000, renewed 2007
CCNA Cisco Certified Network Associate, certified since 1999, renewed 2007
Cisco Systems Training:
2008 Cisco Partner Product Training for the Cisco Catalyst 4500-E
2007 Implementing Secure Converged Wide Area Networks, passed 642-825 ISCW exam
2007 Optimizing Converged Cisco Networks, passed 642-845 ONT exam
2007 Building Converged Multilayer Switched Networks, passed 642-812 BCMSN exam
2007 Building Scalable Cisco Internetworks, passed 642-901 BSCI exam
2004 Building Converged Multilayer Switched Networks, passed 642-811 BCMSN exam
2000 All training courses plus exams required for CCNP certification
1999 All training courses plus exams required for CCNA certification
Alcatel – Lucent Certifications:
ACSS-6 Alcatel-Lucent Certified Omni Switch Specialist, certified since 2005, renewed 2007
ACSS-WiFi Alcatel-Lucent Certified Switch Specialist for Omni Access WiFi, certified since 2007
Alcatel - Lucent Training:
2007 Alcatel-Lucent Network Design and Troubleshooting Brest, France
2007 Alcatel-Lucent Certified System Specialist ACSS Madrid, Spain, passed exam
2006 Alcatel-Lucent OmniSwitch OS9000 OS6800 training in Paris, France
2005 Alcatel-Lucent Certified System Specialist ACSS passed exam
Aruba Networks WiFi Training (Alcatel-Lucent Omni Access WiFi OEM)
2007 Aruba Networks 3.1 WiFi Train the Trainer, Paris, France, passed exam
2006 Aruba Networks 2.5 to 3.0 Major Release Upgrade Training, Santa Clara, CA, U.S.A.
2005 Aruba Networks 2.5 WLAN Design and Troubleshooting
Check Point Firewall-1/VPN-1 NG Certification:
CCSA FP3 Check Point Certified Security Administrator, certified 2003
References:
________________________________________________________________________________________________
Timeframe: 07/2007 – to date
Customer: Allianz Versicherungen – Dresdner Bank, Frankfurt am Main
Assignment: Network Architect
Responsibilities:
Create the network design and migration plans for key Allianz office sites in Hannover (1800 ports) and Frankfurt (3000 ports). Define detailed site planning that enable installation teams to rollout the new network infrastructure. Write a high-level design for the future rollout of VoIP services on the privately administered MPLS core network. Draft an Allianz network design standards guide used as “the reference work” for deploying network equipment in the Allianz corporate network.
Protocols and Equipment:
MPLS, VRF-Lite, BGP, EIGRP, EIGRP Stub Routing, OSPF, VoIP Siemens HighPath 8000, Siemens OpenStage 40, Siemens OpenStage 60, Cisco C4503-E, C4506-E, C4507R-E, C4510R-E, Sup2-10GE, Sup2-TS, Sup6-10GE, C6500-E Sup720, PoE, QoS, C3560, 7600, 7300, 7206.
________________________________________________________________________________________________
Timeframe: 02/2005 – 06/2007
Customer: Alcatel-Lucent EMAI, Frankfurt am Main
Assignment: Professional Services Engineer
Network Design & Project Planning
For one key account I was the sole responsible Network Engineer for the design, planning, configuration and troubleshooting of a five office campus network in Wiesbaden. Network size consisted of 59 multilayer switches with a combined port capacity of 2800 Gigabit Ethernet ports. IP routing was based on a multiple area OSPF design and route summarisation was implemented between the areas. OSPF timers were tuned to reduce failover times on the 10Gbps core network.
Network Audits
On occasion I was required to perform network audits of customer networks. Audit tasks included traffic analysis, security assessments, network failover concepts and design changes. The audit also covered related subjects such as ways to improve change management.
Troubleshooting
Perform ad-hoc interventions for customers with high priority problem tickets. Each customer visit was concluded with an extensive site visit report and a customer survey. My site visit reports were adopted as “the standard reporting method” by Professional Services EMAI. Furthermore, I received top customer satisfaction ratings for all 114 cases that were assigned to me.
Training
I was also designated to evaluate Alcatel University instructors on their ability to deliver training courses on advanced network subjects such as network design and troubleshooting. On several occasions I was tasked to deliver training. I exclusively received A+ ratings regarding training skills and subject knowledge from network professionals attending my training courses.
VoIP Validation
Further responsibilities included verifying VoIP readiness of existing IP network infrastructures. This required reviewing existing network topologies and traffic levels, propose QoS schemes and perform proof of concept tests of the final network proposal.
Information Security
As a Pro-Services Engineer I played an active role in proposing Information Security solutions to end customers. This included optimizing firewall rules, logging policies, 802.1x deployments and designing IPSec based VPNs.
Protocols and Equipment:
Cisco C6500, C4500, C3550-EMI, 2800, 7300, 7200, Alcatel-Lucent OS9000, OS6850, OS7000, OS6600. Thales Mistral VPN, Mistral Management Center. Aruba Networks 200, Aruba Networks 800, Aruba Networks 6000, AP60, AP65, AP70, AP80, HP-OpenView, OmniVista, VMWare ESX, Wireshark, RF-Plan, OmniPeek, Windows 2003 Server
________________________________________________________________________________________________
Timeframe: 05/2004 – 01/2005
Customer: Hutchison 3G, Vienna
Assignment: Network and Security Administrator
Responsibilities:
Review and improve the security of H3G operated packet-switched and office IP networks. Tasks included identifying network traffic flows, validating and optimizing firewall rule bases plus VPN services and verifying network address translation policies. Administration tasks included management of various high-end Cat OS/IOS based Cisco components and configuring PIX/Check Point firewalls and Cisco VPN concentrators.
Corporate responsibilities consisted of participation in weekly H3G Information Security meetings and the drafting of internal Information Security documents. Other tasks consisted of presenting major design changes to the H3G Design Council for approval of concept.
On several occasions I was asked to join H3G technical staff intake interviews.
Protocols and Equipment:
Cisco C6500 + CSM, Cisco VPN 3030, Cisco PIX Firewall, Cisco Service Selection Gateway (SSG), C6500 Content Switching Module (CSM), Reflexive ACLs, VLAN ACLs, Route-Maps. Checkpoint Firewall NG-FP3, IPSO Voyager, MRTG, Cisco Works, NetVCR, IPSec, SSH, HTTPS, TACACS+, RADIUS, LDAP, RSA SecurID. eBGP, iBGP, OSPF, EIGRP
________________________________________________________________________________________________
Timeframe: 09/2003 – 04/2004
Customer: European Central Bank, Frankfurt am Main
Assignment: Network/Firewall Administrator
Responsibilities:
Administration of an EU wide Frame Relay network between the ECB and 15 National Banks. Initiate, coordinate and support the troubleshooting process between the ECB and National Banks. Validate firewall, switching, QoS and spanning-tree design for a Europe wide MPLS network. Optimise the existing OSPF routing design by implementing route summarisation. Give presentations to ECB staff regarding the European System of Central Banks network. Train staff on X.400 messaging and X.25 traffic encryption methods. Provide support for the X.25 network used for communication with 10 new member states. Validate and improve the fail-over capabilities for X.25 based network connections. Perform system administration and security policy management of several firewalls.
Protocols and Equipment:
Cisco C3750/C3550-EMI, QoS, DCSP, ToS, CoS, Checkpoint Firewall, OSPF, VRRP, NAT, RSA-SecurID, VPN, NetScout, What’s-Up Gold, HP OpenView
________________________________________________________________________________________________
Timeframe: 03/2003 – 08/2003
Customer: Hutchison 3G, Vienna
Assignment: Network Administrator
Responsibilities:
Provide detailed procedures that enable operations to implement network and firewall changes. Coordinate project related tasks performed by external vendors. Participate in the Hutchison 3G Cisco Service Selection Gateway SSG project. Perform system administration of several HP-UNIX 9000 systems. Deploy and administrate RADIUS and LDAP applications used to authenticate UMTS terminals. Improve resilience and load sharing of these services using Cat6500 Content Switching Modules. Activate LDAP database replication between distributed LDAP directories. Train operational staff in first and second line support of the RADIUS and LDAP applications. Provide detailed technical description and operational documentation. Define and verify application and system security requirements.
Protocols and Equipment:
Cisco C6500/CSM, Cisco VPN 3030, Cisco PIX Firewall, Cisco Service Selection Gateway (SSG), Content Switching. Checkpoint Firewall NG-FP3, IPSO Voyager, MRTG, Cisco-Works, NetVCR, IPSec, SSH, SFTP, TACACS+, RADIUS, LDAP, RSA SecurID, BGP, OSPF, EIGRP, RTSP
________________________________________________________________________________________________
Timeframe: 01/2002 – 02/2003
Customer: Credit Suisse - First Boston, Frankfurt am Main
Assignment: Network/Firewall Administrator
Responsibilities:
This assignment required me to manage the German part of a global network infrastructure deployed by Credit Suisse First Boston. Responsibilities included the handling of all Cisco routing and switching related issues and the Firewall Administration of six firewall pairs.
A major project required me to redesign a large section of the Credit Suisse Deutschland network as part of a business unit reorganisation. This network and firewall reorganisation effort lasted several months and was highly complex.
Another project required me to specify and design the Office LAN and WAN infrastructure for twelve regional bank offices. Project deliverables included the IOS configuration for each network component and the overall integration of each site into the CSFB IPSec based VPN. I also provided close support to the installation teams.
One project required me to provide a conceptual-level document regarding the internetworking of three Munich branch offices using ATM technology.
A major project required me to migrate the Credit Suisse Asset Management switched LAN from a Fast Ethernet core to a Gigabit Ethernet core infrastructure. The migration process had impact on several Messe Turm floors and was successfully completed in a single day.
Protocols and Equipment:
Cisco C6500, C5500, C3500, 7500, 7200, 3640, 2600, iBGP, eBGP, OSPF, EIGRP, Checkpoint Firewall, IPSO, Voyager, Concord, Spectrum, Netflow, Remedy, HP-OpenView, DNS, IE-Proxy
________________________________________________________________________________________________
Timeframe: 01/2000 – 12/2001
Customer: European Central Bank, Frankfurt am Main
Assignment: Network Consultant
Responsibilities:
This assignment required strong project and technical skills. Primary tasks consisted of supporting ECB project teams and performing network and security administration of the ECB network infrastructure.
The project related tasks consisted of providing conceptual-level documents as part of a project initiation phase. After acceptance of the network concept a detailed technical description was written allowing the proposed solution to be implemented and supported. Minimal external support was provided to me during this process.
One of the major projects required me to design and implement a remote access solution used by senior staff members travelling abroad. Another project required me to perform an extensive Virtual Private Network product evaluation followed by in-depth functional tests of Cisco and Nokia VPN solutions. Other projects such as the redesign of a European-wide network were performed in close co-operation with ECB team members. I also participated in a range of smaller projects that required specialised network solutions.
Typical day-to-day tasks included Check Point firewall administration, handling all Cisco equipment related issues and provide support for business critical applications such as Bloomberg, Reuters, S.W.I.F.T. and SAP. I was asked on several occasions to participate in security audits related to the Internet infrastructure.
Protocols and Equipment:
Cisco 7200, 4500, 2500, Checkpoint Firewall, IPSec, VPN, Bloomberg, Reuters, SWIFT, SAP, DDR, ACL, HSRP, VRRP, IP Routing, SNMP, NTP, Syslog, SSH, UNIX
________________________________________________________________________________________________
Timeframe: 07/1999 – 12/1999
Customer: Landesbank Baden-Württemberg, Mannheim
Assignment: Network Administrator
Responsibilities:
The main objective of this assignment was to migrate an existing Token Ring Network to a switched Fast Ethernet. My responsibilities included project planning and participating in the role-out of Cisco Catalyst Switches. I also provided the switch configurations and created traffic baselines of the completed network. After finalising the project, I had to take the existing Token Ring out of production, internetworking the remaining SDLC traffic over the LAN. Training IBM and Landesbank personnel regarding Cisco Switch concepts concluded the contract.
Protocols and Equipment:
Cisco 7200, C5500, C2900, 2500. EIGRP, UDLD, UplinkFast, PortFast, HSRP, ISDN-PRI, DDR
________________________________________________________________________________________________
Timeframe: 01/1999 – 06/1999
Customer: Deutsche Börse Systems, Frankfurt am Main
Assignment: Network Administrator (Permanent staff)
Responsibilities:
My primary task was to administrate the Eurex and Xetra trading networks and to help the network operations department solve major network problems. Project related tasks included the planning and rollout of new network access points in London and Paris. Another major task was to migrate the IP network from RIP and IGRP to an EIGRP routed network.
________________________________________________________________________________________________
Timeframe: 1992 – 1998
Customer: InterPay Nederland, The Netherlands
Assignment: Network Consultant (Permanent staff)
Responsibilities:
From 1992 until 1998, I worked for InterPay as a network consultant. InterPay provides a countrywide network service for the banks located throughout the Netherlands. The network service was predominantly based on a X.25 WAN using switches from Alcatel. At InterPay I was responsible for sizing the network infrastructure based on transaction forecasts. During my last year at InterPay this network had grown to process 150 transactions per second and over 2 million transactions per day. I used to provide detailed reports as to the number of core and access switches required, expected traffic flows through the network, required number of mainframe ports to process the transactions and the bandwidth upgrades required throughout the WAN.
One of my main responsibilities and accomplishments was to integrate the networks and systems of BeaNet the Bank Giro Centrale and Euro Card that merged to form InterPay. The networks consisted of various technologies in use at that time such as Ethernet, DecNet, X.25 and SNA.
InterPay has provided invaluable experience in the way banks conduct their transaction business. It also provided an insight in a wide range of bank related subjects such as ATM machines, chip cards, transaction terminals and the issues involved with self-built mainframe applications.
________________________________________________________________________________________________
Timeframe: 1990 – 1992
Customer: Getronics Service, The Netherlands
Assignment: Field Service Engineer (Permanent staff)
Responsibilities:
Network Field Service Engineer supporting key accounts in the Netherlands.
Temporal and spatial availability.:
April 2012
_______________________________________________________________________________________________
Personal Information:
Engineer Since: 1990
Formal Education: Completed High School and College, Hampton Virginia USA
Qualifications: CCNP, CCDP, CCNA, CCDA, ACSS, CCSA
Languages: English, Dutch, German
Skills:
Cisco Routing and Switching
Cisco VoIP, Siemens VoIP, Alcatel-Lucent VoIP, Avaya VoIP
Alcatel-Lucent Routing and Switching
Aruba Networks WiFi
Cisco PIX Firewall
Check Point Firewall-1/VPN-1
VMWare Workstation and VMWare ESX
Cisco:
IOS & CatOS
C6500-E Sup720, C6500-Content Switching Module (CSM)
C4500-E Sup6-10GE, Sup5-10GE, Sup2-10GE, Sup2-TS
WAN Service Router 7600, 7400, 7300, 7200, 7100
C4500 Classic, C3560, C3550, C2950, C2900XL, C5500, 2800, 3700
Information Security:
TACACS+, RADIUS, Cisco Secure ACS, RSA SecurID
Cisco PIX Firewall, Juniper Netscreen, Fortinet Fortigate
Check Point Firewall-1/VPN-1 NG-FP3 (Windows and Nokia IPSO)
Thales Mistral IPSec-VPN, Cisco VPN3000
Operating Systems:
MS-Windows 2003 Server, MS-Windows XP, MS-Windows DHCP,
Internet Authentication Server (IAS), MS-Windows DNS and WINS
VMWare Workstation, VMWare ESX
User level knowledge of UNIX, SUN Solaris, Linux and Apple OSX
Tools:
HP-OpenView, Concord, Spectrum, Prisma, Cisco Works, MRTG,
PRTG, Remedy Change Management
Network Analyzers:
WireShark, Ethereal, Fluke, Sniffer Pro, Dolch, tcpdump
Main Skills:
Network design, network optimization, network administration
TCP/IP
IP Routing MPLS, VRF-Lite, BGP, EIGRP, OSPF, ISIS, RIPv2, ODR
Policy Based Routing, Route Filtering, Source Routing
Network Address Translation (NAT)
Voice over IP, DSCP, 802.1p CoS, RTP, SIP, 802.3af PoE
IP Multicast Routing, PIM-SM, PIM-DM, DVMRP
Multicast Switching IGMP, CGMP
HSRP, VRRP, Server Load Balancing (SLB)
Spanning Tree 802.1d 802.1w 802.1s Rapid-PVST+, Trunking 802.1q
EtherChannel and Link Aggregation 802.3ad, VTP, CDP, Port Fast
DHCP Snooping, Dynamic ARP Inspection, Root Guard, Loop Guard,
BPDU Guard, UDLD, uRPF, Broadcast Suppression, Native Tagging
________________________________________________________________________________________________
Training and Certifications:
Cisco Systems Certifications:
CCNP Cisco Certified Network Professional, certified since 2000, renewed 2007
CCNA Cisco Certified Network Associate, certified since 1999, renewed 2007
Cisco Systems Training:
2008 Cisco Partner Product Training for the Cisco Catalyst 4500-E
2007 Implementing Secure Converged Wide Area Networks, passed 642-825 ISCW exam
2007 Optimizing Converged Cisco Networks, passed 642-845 ONT exam
2007 Building Converged Multilayer Switched Networks, passed 642-812 BCMSN exam
2007 Building Scalable Cisco Internetworks, passed 642-901 BSCI exam
2004 Building Converged Multilayer Switched Networks, passed 642-811 BCMSN exam
2000 All training courses plus exams required for CCNP certification
1999 All training courses plus exams required for CCNA certification
Alcatel – Lucent Certifications:
ACSS-6 Alcatel-Lucent Certified Omni Switch Specialist, certified since 2005, renewed 2007
ACSS-WiFi Alcatel-Lucent Certified Switch Specialist for Omni Access WiFi, certified since 2007
Alcatel - Lucent Training:
2007 Alcatel-Lucent Network Design and Troubleshooting Brest, France
2007 Alcatel-Lucent Certified System Specialist ACSS Madrid, Spain, passed exam
2006 Alcatel-Lucent OmniSwitch OS9000 OS6800 training in Paris, France
2005 Alcatel-Lucent Certified System Specialist ACSS passed exam
Aruba Networks WiFi Training (Alcatel-Lucent Omni Access WiFi OEM)
2007 Aruba Networks 3.1 WiFi Train the Trainer, Paris, France, passed exam
2006 Aruba Networks 2.5 to 3.0 Major Release Upgrade Training, Santa Clara, CA, U.S.A.
2005 Aruba Networks 2.5 WLAN Design and Troubleshooting
Check Point Firewall-1/VPN-1 NG Certification:
CCSA FP3 Check Point Certified Security Administrator, certified 2003
References:
________________________________________________________________________________________________
Timeframe: 07/2007 – to date
Customer: Allianz Versicherungen – Dresdner Bank, Frankfurt am Main
Assignment: Network Architect
Responsibilities:
Create the network design and migration plans for key Allianz office sites in Hannover (1800 ports) and Frankfurt (3000 ports). Define detailed site planning that enable installation teams to rollout the new network infrastructure. Write a high-level design for the future rollout of VoIP services on the privately administered MPLS core network. Draft an Allianz network design standards guide used as “the reference work” for deploying network equipment in the Allianz corporate network.
Protocols and Equipment:
MPLS, VRF-Lite, BGP, EIGRP, EIGRP Stub Routing, OSPF, VoIP Siemens HighPath 8000, Siemens OpenStage 40, Siemens OpenStage 60, Cisco C4503-E, C4506-E, C4507R-E, C4510R-E, Sup2-10GE, Sup2-TS, Sup6-10GE, C6500-E Sup720, PoE, QoS, C3560, 7600, 7300, 7206.
________________________________________________________________________________________________
Timeframe: 02/2005 – 06/2007
Customer: Alcatel-Lucent EMAI, Frankfurt am Main
Assignment: Professional Services Engineer
Network Design & Project Planning
For one key account I was the sole responsible Network Engineer for the design, planning, configuration and troubleshooting of a five office campus network in Wiesbaden. Network size consisted of 59 multilayer switches with a combined port capacity of 2800 Gigabit Ethernet ports. IP routing was based on a multiple area OSPF design and route summarisation was implemented between the areas. OSPF timers were tuned to reduce failover times on the 10Gbps core network.
Network Audits
On occasion I was required to perform network audits of customer networks. Audit tasks included traffic analysis, security assessments, network failover concepts and design changes. The audit also covered related subjects such as ways to improve change management.
Troubleshooting
Perform ad-hoc interventions for customers with high priority problem tickets. Each customer visit was concluded with an extensive site visit report and a customer survey. My site visit reports were adopted as “the standard reporting method” by Professional Services EMAI. Furthermore, I received top customer satisfaction ratings for all 114 cases that were assigned to me.
Training
I was also designated to evaluate Alcatel University instructors on their ability to deliver training courses on advanced network subjects such as network design and troubleshooting. On several occasions I was tasked to deliver training. I exclusively received A+ ratings regarding training skills and subject knowledge from network professionals attending my training courses.
VoIP Validation
Further responsibilities included verifying VoIP readiness of existing IP network infrastructures. This required reviewing existing network topologies and traffic levels, propose QoS schemes and perform proof of concept tests of the final network proposal.
Information Security
As a Pro-Services Engineer I played an active role in proposing Information Security solutions to end customers. This included optimizing firewall rules, logging policies, 802.1x deployments and designing IPSec based VPNs.
Protocols and Equipment:
Cisco C6500, C4500, C3550-EMI, 2800, 7300, 7200, Alcatel-Lucent OS9000, OS6850, OS7000, OS6600. Thales Mistral VPN, Mistral Management Center. Aruba Networks 200, Aruba Networks 800, Aruba Networks 6000, AP60, AP65, AP70, AP80, HP-OpenView, OmniVista, VMWare ESX, Wireshark, RF-Plan, OmniPeek, Windows 2003 Server
________________________________________________________________________________________________
Timeframe: 05/2004 – 01/2005
Customer: Hutchison 3G, Vienna
Assignment: Network and Security Administrator
Responsibilities:
Review and improve the security of H3G operated packet-switched and office IP networks. Tasks included identifying network traffic flows, validating and optimizing firewall rule bases plus VPN services and verifying network address translation policies. Administration tasks included management of various high-end Cat OS/IOS based Cisco components and configuring PIX/Check Point firewalls and Cisco VPN concentrators.
Corporate responsibilities consisted of participation in weekly H3G Information Security meetings and the drafting of internal Information Security documents. Other tasks consisted of presenting major design changes to the H3G Design Council for approval of concept.
On several occasions I was asked to join H3G technical staff intake interviews.
Protocols and Equipment:
Cisco C6500 + CSM, Cisco VPN 3030, Cisco PIX Firewall, Cisco Service Selection Gateway (SSG), C6500 Content Switching Module (CSM), Reflexive ACLs, VLAN ACLs, Route-Maps. Checkpoint Firewall NG-FP3, IPSO Voyager, MRTG, Cisco Works, NetVCR, IPSec, SSH, HTTPS, TACACS+, RADIUS, LDAP, RSA SecurID. eBGP, iBGP, OSPF, EIGRP
________________________________________________________________________________________________
Timeframe: 09/2003 – 04/2004
Customer: European Central Bank, Frankfurt am Main
Assignment: Network/Firewall Administrator
Responsibilities:
Administration of an EU wide Frame Relay network between the ECB and 15 National Banks. Initiate, coordinate and support the troubleshooting process between the ECB and National Banks. Validate firewall, switching, QoS and spanning-tree design for a Europe wide MPLS network. Optimise the existing OSPF routing design by implementing route summarisation. Give presentations to ECB staff regarding the European System of Central Banks network. Train staff on X.400 messaging and X.25 traffic encryption methods. Provide support for the X.25 network used for communication with 10 new member states. Validate and improve the fail-over capabilities for X.25 based network connections. Perform system administration and security policy management of several firewalls.
Protocols and Equipment:
Cisco C3750/C3550-EMI, QoS, DCSP, ToS, CoS, Checkpoint Firewall, OSPF, VRRP, NAT, RSA-SecurID, VPN, NetScout, What’s-Up Gold, HP OpenView
________________________________________________________________________________________________
Timeframe: 03/2003 – 08/2003
Customer: Hutchison 3G, Vienna
Assignment: Network Administrator
Responsibilities:
Provide detailed procedures that enable operations to implement network and firewall changes. Coordinate project related tasks performed by external vendors. Participate in the Hutchison 3G Cisco Service Selection Gateway SSG project. Perform system administration of several HP-UNIX 9000 systems. Deploy and administrate RADIUS and LDAP applications used to authenticate UMTS terminals. Improve resilience and load sharing of these services using Cat6500 Content Switching Modules. Activate LDAP database replication between distributed LDAP directories. Train operational staff in first and second line support of the RADIUS and LDAP applications. Provide detailed technical description and operational documentation. Define and verify application and system security requirements.
Protocols and Equipment:
Cisco C6500/CSM, Cisco VPN 3030, Cisco PIX Firewall, Cisco Service Selection Gateway (SSG), Content Switching. Checkpoint Firewall NG-FP3, IPSO Voyager, MRTG, Cisco-Works, NetVCR, IPSec, SSH, SFTP, TACACS+, RADIUS, LDAP, RSA SecurID, BGP, OSPF, EIGRP, RTSP
________________________________________________________________________________________________
Timeframe: 01/2002 – 02/2003
Customer: Credit Suisse - First Boston, Frankfurt am Main
Assignment: Network/Firewall Administrator
Responsibilities:
This assignment required me to manage the German part of a global network infrastructure deployed by Credit Suisse First Boston. Responsibilities included the handling of all Cisco routing and switching related issues and the Firewall Administration of six firewall pairs.
A major project required me to redesign a large section of the Credit Suisse Deutschland network as part of a business unit reorganisation. This network and firewall reorganisation effort lasted several months and was highly complex.
Another project required me to specify and design the Office LAN and WAN infrastructure for twelve regional bank offices. Project deliverables included the IOS configuration for each network component and the overall integration of each site into the CSFB IPSec based VPN. I also provided close support to the installation teams.
One project required me to provide a conceptual-level document regarding the internetworking of three Munich branch offices using ATM technology.
A major project required me to migrate the Credit Suisse Asset Management switched LAN from a Fast Ethernet core to a Gigabit Ethernet core infrastructure. The migration process had impact on several Messe Turm floors and was successfully completed in a single day.
Protocols and Equipment:
Cisco C6500, C5500, C3500, 7500, 7200, 3640, 2600, iBGP, eBGP, OSPF, EIGRP, Checkpoint Firewall, IPSO, Voyager, Concord, Spectrum, Netflow, Remedy, HP-OpenView, DNS, IE-Proxy
________________________________________________________________________________________________
Timeframe: 01/2000 – 12/2001
Customer: European Central Bank, Frankfurt am Main
Assignment: Network Consultant
Responsibilities:
This assignment required strong project and technical skills. Primary tasks consisted of supporting ECB project teams and performing network and security administration of the ECB network infrastructure.
The project related tasks consisted of providing conceptual-level documents as part of a project initiation phase. After acceptance of the network concept a detailed technical description was written allowing the proposed solution to be implemented and supported. Minimal external support was provided to me during this process.
One of the major projects required me to design and implement a remote access solution used by senior staff members travelling abroad. Another project required me to perform an extensive Virtual Private Network product evaluation followed by in-depth functional tests of Cisco and Nokia VPN solutions. Other projects such as the redesign of a European-wide network were performed in close co-operation with ECB team members. I also participated in a range of smaller projects that required specialised network solutions.
Typical day-to-day tasks included Check Point firewall administration, handling all Cisco equipment related issues and provide support for business critical applications such as Bloomberg, Reuters, S.W.I.F.T. and SAP. I was asked on several occasions to participate in security audits related to the Internet infrastructure.
Protocols and Equipment:
Cisco 7200, 4500, 2500, Checkpoint Firewall, IPSec, VPN, Bloomberg, Reuters, SWIFT, SAP, DDR, ACL, HSRP, VRRP, IP Routing, SNMP, NTP, Syslog, SSH, UNIX
________________________________________________________________________________________________
Timeframe: 07/1999 – 12/1999
Customer: Landesbank Baden-Württemberg, Mannheim
Assignment: Network Administrator
Responsibilities:
The main objective of this assignment was to migrate an existing Token Ring Network to a switched Fast Ethernet. My responsibilities included project planning and participating in the role-out of Cisco Catalyst Switches. I also provided the switch configurations and created traffic baselines of the completed network. After finalising the project, I had to take the existing Token Ring out of production, internetworking the remaining SDLC traffic over the LAN. Training IBM and Landesbank personnel regarding Cisco Switch concepts concluded the contract.
Protocols and Equipment:
Cisco 7200, C5500, C2900, 2500. EIGRP, UDLD, UplinkFast, PortFast, HSRP, ISDN-PRI, DDR
________________________________________________________________________________________________
Timeframe: 01/1999 – 06/1999
Customer: Deutsche Börse Systems, Frankfurt am Main
Assignment: Network Administrator (Permanent staff)
Responsibilities:
My primary task was to administrate the Eurex and Xetra trading networks and to help the network operations department solve major network problems. Project related tasks included the planning and rollout of new network access points in London and Paris. Another major task was to migrate the IP network from RIP and IGRP to an EIGRP routed network.
________________________________________________________________________________________________
Timeframe: 1992 – 1998
Customer: InterPay Nederland, The Netherlands
Assignment: Network Consultant (Permanent staff)
Responsibilities:
From 1992 until 1998, I worked for InterPay as a network consultant. InterPay provides a countrywide network service for the banks located throughout the Netherlands. The network service was predominantly based on a X.25 WAN using switches from Alcatel. At InterPay I was responsible for sizing the network infrastructure based on transaction forecasts. During my last year at InterPay this network had grown to process 150 transactions per second and over 2 million transactions per day. I used to provide detailed reports as to the number of core and access switches required, expected traffic flows through the network, required number of mainframe ports to process the transactions and the bandwidth upgrades required throughout the WAN.
One of my main responsibilities and accomplishments was to integrate the networks and systems of BeaNet the Bank Giro Centrale and Euro Card that merged to form InterPay. The networks consisted of various technologies in use at that time such as Ethernet, DecNet, X.25 and SNA.
InterPay has provided invaluable experience in the way banks conduct their transaction business. It also provided an insight in a wide range of bank related subjects such as ATM machines, chip cards, transaction terminals and the issues involved with self-built mainframe applications.
________________________________________________________________________________________________
Timeframe: 1990 – 1992
Customer: Getronics Service, The Netherlands
Assignment: Field Service Engineer (Permanent staff)
Responsibilities:
Network Field Service Engineer supporting key accounts in the Netherlands.
Temporal and spatial availability.:
April 2012
 |  |  |  |  |  |
 |  |  |  |  |  |
Register now
Profile Navigation
New profile
New Company Profiles
Statistic
The average daily rate of our Freelancer amounts to 507 €, the hourly rate 59 €.
The facewall
Do you know someone?
New projects
RSS feeds
Read the newest projects in your favorite rss reader.
 
|
|
Deutschland | Österreich | Schweiz | United Kingdom | USA | Russian Federation | España | Italy | Ukraine | Liechtenstein | Hungary | New Zealand | France | Slovakia | India | United Arab Emirates
Theme related Websites :