Mohammed Ibrahim Bakheet
IT Security Professional:
IT security professional having experience in IT infrastructure with hands-on experience in designing, implementing and managing various IT infrastructure technologies. Ambitious, energetic, and reliable individual with excellent communication skills. More focused on information security including Vulnerabilities and Malware, DLP, log analysis, Pen Testing, Cloud Security…etc.
CEH- Certified, CISSP - preparing for the exam, AWS Certified Solutions Architect Associate – Course completed, AWS Certified Security Specialty – Course completed, Palo Alto 8.0 Essentials Configuration & Management – Course completed, Cisco CCNP R&S – Certified, Cisco CCNA Security – Certified, Cisco CCIE R&S - Course completed, Cisco CCSP Security – Course completed, Linux+ - Course completed, COBIT 5 Foundation – course completed.
Areas of Experience:
Platform: Linux, Microsoft Windows Environment including Servers, domain, AD etc.
Routers: Cisco 870, 2800, and 2900 series
Switches: Cisco 2960, 3560-X, 3750-X, 4500-X, 4500-E, 6509 series, Nexus 7k.
Firewalls: Cisco ASA, FWSM, McAfee, and Palo-Alto firewalls, F5 LTM Load-Balancer.
Identity & Access Management: Cisco ISE, AAA Security Service, Security Protocols (Radius & TACACS+) etc.
Web Security / Proxy: Blue-Coat Proxy-SG 900 series and Proxy-AV AV1200.
IPS/IDS: McAfee, Cisco IPS 4200, QRadar SEIM Solution.
Nationwide Insurance (Columbus, OH, U.S.) (21st Aug 2017 - Present)
Contractor through Collabera Company
Working with Nationwide Network Engineering team, focused on security with the following responsibilities:
Securing the wired network by implementing 802.1x project using Cisco ISE across the company.
Understand and analyze behaviors of different endpoints using sniffing tools such as wireshark and Omnipeek in order to properly profile and provide right access to the network.
Deep understanding of PKI infrastructure.
Understanding the architect design of PaloAlto FW implementation, use of Expedition Migration Tool, and participate in testing the PA-220 implemented in lab to be used at remote offices as part of Building Automation System project.
Implementation of AWS cloud network infrastructure for one of Nationwide’s Business Units including VPCs, routes, NACLs, SGs, EC2s, VPC Peers, VGW…etc.
Participated in technical training of penetration testing tools used with hands on works, conducted at Nationwide.
Shadowing with Threat Intelligence team and understanding tools used such as MISP, creating force directed ego graph through D3 or NetworkX, Authentic8, dnstwister,…etc.
Analyzing and reporting the status and progress of the Dot1x project using Splunk by creating a live dashboard reports to be eventually used by the SOC team as part of identifying potential endpoints considered as threats.
Working on Nationwide’s Extranet with External Business Partners VPN infrastructure and automating the process of building and terminating desired business partner as per business needs.
Shadowing with the SOC team understanding the tools (such as SEIM, DLP, FireEye, SourceFire,…etc.) and process used to monitor and respond to threats including effectively working on offense tickets.
Helping other teams in logs analysis and creating useful and readable dashboard reports using Splunk.
Shadowing with DFI team “Digital Forensics Investigators” understanding different DFI processes followed starting by eDiscovery Management, Straight Forensics, and Incident Response as well as tools used such as EnCase, Protection, Source One Discovery Manager, NUIX, Write Blocker, Magnet Forensics, BlackBag…etc.
Implementation and documentation of Security DMVPN at 7 different remote cisco AP-Routers.
Ministry of Municipality & Environment (Doha/Qatar) (10th Aug 2015 – 2nd April 2017):
Sr. Network (Network & Security)
Manage MME's security infrastructure with advanced knowledge in installation and configuration of Cisco ASA, McAfee Enterprise Firewalls, Cisco ACS, VPN solutions, Blue-Coat, Qradar SIEM.
Evaluate system vulnerability by conducting vulnerability scanning tools and software, gather actionable analysis, report the threat and then provide recommended security improvements.
Install and update network and security software for the Ministry’s security controls.
Monitor the network and systems for malicious activity or policy violations using Ministry’s IPS/IDS tools.
Participated in implementing and managing of Shared Services Centers provided by the Ministry to the public at 8 locations distributed across Qatar.
Regularly working with different teams in Ministry to ensure all services are securely provided to the public through our security controls such as McAfee and ASA FWs.
Analyzed all policies in ASA and McAfee FWs, documented, and provided recommendations to management accordingly.
Understanding and analyzing the network and security infrastructure of all Ministry’s 50 branches across the country, rebuild and update documents, network & security diagrams and provided recommended security infrastructure improvements.
Analyzing, Planning and Designing all MME’s traffic filtration and distribution across its Perimeter Security Infrastructure in order to increase optimization and efficiency.
ITQAN Technologies (Doha/Qatar) (July 2013 - 6th Aug 2015):
Sr. Network & Security Engineer
Provide Designs with technical consultancy in Network and Security for both government & private sectors in Qatar. Developing technical designs and assessing their effectiveness with excellent project management.
Utilized expertise in Firewalls including Cisco ASA, Palo Alto, McAfee, Juniper SSG firewalls.
Daily duties included using Cisco Series Routers and Switches, and IP Routing Protocols EIGRP, OSPF, BGP.
Spearheaded the ISF (Internal Security Force) Duhail Campus Development Projects: Design and implement the network & Security infrastructure for 10 different consulting and supervision companies with the involvement in designing and preparing RFP, install and configure the network and security infrastructure including 2900 Router, 4500-X & 3750-X Switch, Juniper SSG 140 firewall, ASA 5555-X firewall, Cisco ISE, and Nexus 3048TP Switch.
Provide support in Palo Alto configuration as per client’s requirements including managing polices, vpn, etc.
Oversaw QDVC Q-Rail Qatar Metro-Line Stations Projects: Managed the project of MOI’s Network and Security infrastructure relocation for both M10-M11 and Q-Rail AMD Metro Stations at Doha International Airport.
Qatar Computer Services (Doha/Qatar) (December-2012 to February-2013)
QATAR EXCHANGE (Doha/Qatar)
IT Network Support Engineer
Provide daily network infrastructure operation support.
Participated in the project of Symantec Enterprise Vault deployment (for email auto-archiving).
SAVOLA FOODS COMPANY (Saudi Arabia) (June-2006 to July-2012):
Manage the network and security infrastructure of the company.
Hands on experience in configuring ASA and VPN implementation, manage company's Data Centre that includes Cisco Network core and access switches, and Security Cisco firewalls and F5 BIG-IP …etc.
Participate in Planning, Implementing and maintaining service level agreements SLA for infrastructure related support, and excellent project management.
As part of new Automated Sales Distribution System aligning with the new sales strategies, designed and implemented IP Security VPN Site-to-Site at 20 different branches distributed across the country.
Design and implement Nortel VOIP system in all SAVOLA FOODS regions within KSA as well as Dubai.
Managing the project of implementing network infrastructure of new branch at Dammam city including Server-Room, VOIP (Nortel BCM), LAN, and MPLS network.
AREES University, Houston, Texas (Affiliated with California University FCE) USA:
-Bachelor of Management Information Systems (MIS).
Understanding of all Security domains
Linux & Windows Administration
Design & implement Net. & Sec. Infrastructure
SIEM management: Qradar-Splunk
Routers & Switches management
QoS Monitoring Tools: MRTG, Prime
Security IPS management.
Security FW management
Compliance: PCI/DSS and HIPAA
Understanding of Exploits, Vulnerabilities and Malware
Log Analysis Tools: Splunk, Omni-peek & Wireshark
Understanding of Python & Shell Scripting.
Understanding & working on Pen Testing