Post Job Free

Resume

Sign in

Network Security Consultant

Location:
Brampton, ON, Canada
Posted:
July 09, 2023

Contact this candidate

Resume:

Imran Bhatti

Toronto, Canada adx61o@r.postjobfree.com 416-***-**** https://www.linkedin.com/in/imran-bhatti-pcnse/

SUMMARY

• Network Security Consultant with active secret clearance, specializing in supporting large enterprise and service-provider network and security infrastructures. Experienced in working with Palo Alto, Cisco, Fortinet, AWS, Azure, Zscaler, Juniper, Arista, Meraki, F5 environments and with major clients such as Government of Canada, CIBC, Facebook, Walt Disney, Rogers, Telus, Walmart and RBC.

• Highly motivated, dependable trouble-shooter and problem-solver.

• Customer-focused performer who is committed to quality in every task - from personal interaction with coworkers and users to high level of service provided to company/customer.

• Valued contributor who performs confidently and effectively under pressure and thrives on challenge.

EXPERIENCE

Network & Security Consultant Shared Services Canada, Government of Canada Jan-Jun 2023

• Supported workload migration from legacy network to more secure GC enterprise data center services and/or appropriate cloud platforms. • Replaced End of Life security devices with Next Generation Firewalls, ensuring enforcement and monitoring of security and Intrusion Detection/Prevention (IDS/IPS).

• Resolved network problems and conducted thorough troubleshooting to identify and address issues.

• Facilitated and guided the organization in planning, designing, and deploying infrastructure, perimeter security, and other necessary services for cloud migration, testing, and application activation.

• Led network architecture and design projects with a strong emphasis on security, conducting requirements gathering, proof-of-concept, implementation, and troubleshooting activities.

Network/Cloud Security Consultant CIBC (Canadian Imperial Bank of Commerce) Oct 2021 - Nov 2022

• Installed, configured and updated cloud and on-premises virtual Palo Alto Next-Gen firewalls and deployment of new Intrusion Prevention sites in the Azure and AWS cloud environment including troubleshooting activities using packet analyzers.

• Documented the existing cloud CIBC Palo Alto environment especially the change process steps and address translations to clarify the change process for other team members.

• Generated CPU and memory monitoring reports in cloud environment for system environment monitoring.

• Resolved complex technical, security, and application issues and improved security posture, productivity, and operational excellence by automating the security infrastructure and monitoring management tasks.

Network Security Consultant Syneos Health Sep 2020 – Jul 2021

• Troubleshot Zscaler proxy issues and provided support to users in resolving them.

• Demonstrated expertise in security engineering on AWS, including IAM, EC2, ELB, Cross-Account Auth, AWS Systems Manager, Amazon Inspector, AWS Config, web server log analysis, AWS KMS, AWS Service Catalog, and AWS Federated Authentication with ADFS.

• Executed changes and upgrades for FortiGate and Palo Alto firewalls and implemented CIS benchmark security controls in Azure/AWS.

Network Security Consultant Cineplex (Contract) Mar 2020 - Aug 2020

• Oversaw corporate network and information security, including the design and operation of security (firewall) systems.

• Administered, configured, and troubleshooted Palo Alto VM-300 firewalls, Fortinet UTM firewalls (FortiGate 60E/100E/501E v5.6.4 NAT mode, 1200D 5.4.5), FortiManager-VM64 v6.0.5, FortiAnalyzer v6.0, and FortiSIEM 5.2. Utilized CLI and FortiAnalyzer for firewall requests, cybersecurity, and cases. Upgraded FortiGate models from 90D to 100E and 101E to 200E.

• Led data center redesign, transitioning from Brocade to Cisco/Nexus in the Fortinet DMZ and data center-hosted environment. Facilitated integration of SAN storage.

Network Security Consultant Walmart (Contract) Mar 2019 - Mar 2020

• Conducted administration, configuration and troubleshooting of Palo Alto Panorama, Palo Alto firewalls and CLI for user firewall requests and Information security controls.

• Migrated from existing MPLS design to Rogers LTE backup design for 400 Walmart Canada stores Canada-wide including dynamic routing protocols (OSPF, BGP) troubleshooting, installation and configurations.

• Used PRTG Network Monitor, BMC TrueSight Network Automation, SolarWinds, VMware Horizon, VMware vSphere/vCenter, NetScout, Cisco ASA VPN, Nexus C5596UP, N2K-C2232PP, upgraded/migrated from Cisco Catalyst 6509 to Nexus9504 and Nexus7706 in the Walmart data centers and upgraded to Cisco Catalyst 9300 switches stack in Data Center and 400 Walmart Canada stores project and supervised technical personnel.

Network Consultant Royal Bank of Canada (Contract) Aug 2017 - Mar 2019

• Fortinet NGFW, AWS Palo Alto firewall configuration, Palo Alto Panorama platform 9.0.10 and user firewall request-based or new design-based rule changes including information security controls and security groups.

• Implementing Palo Alto firewall policies, changes and other next-generation features including operations supporting the appliance.

• Reviewed and remediated the Palo Alto environment by hardening Palo alto firewalls which included activities such as Password Policy, Zone Protection Profile, Anti-virus, Anti Spyware policy settings, reviewing of security policies and interface management Profiles etc.

• Worked from defining a solution using architectural design principles based on customer requirements and designed and integrated new Layer 3 LAN/MAN campus locations with MAN using dynamic routing protocols including OSPF.

• Used Infoblox IPAM DNS Services Platform for managing DNS and DHCP.

Network Security Consultant The Walt Disney Company (Contract) Mar 2017 - Aug 2017

• Worked on design and support for the enterprise-scale complex network environment which includes F5 BIG-IP LTM/GTM 8900/VPR-B4300/3900/PB200 v11.5.4 chassis, Juniper, Checkpoint, Cisco, Blue Coat proxy SG-9000, Avocent, Palo Alto Panorama platform etc. – quickly resolve high priority, impactful issues throughout the life cycle.

Network Consultant Facebook (Contract) Sep 2016 - Mar 2017

• Troubleshot, installed, and configured network hardware such as Cisco ASR9K, Nexus 3064, Juniper PTX, MX960, Arista DCS-7010/7508N/7060CX. Addressed software, link, device, and configuration issues, identified problems, resolved them, and collaborated with third-party hardware vendors and suppliers to conduct root cause analysis and implement solutions across various Facebook Data Centers worldwide.

Network Security Consultant Teranet (Contract) May 2015 – Jul 2016

• Used Check Point firewalls SmartDashboard R77.20, SmartView Tracker R75.46, SmartConsole R75.46, Palo Alto Panorama and ASA5550 to perform firewall change requests such as additions, modifications, removals of users/groups/rules.

• Hardware: Cisco WS-C6509-E, Blue Coat proxy, f5 BIG-IP 4000/2000 including build and troubleshooting

Network Security Consultant JD Irving (Contract) Oct 2014 - Apr 2015

Network Consultant Rogers Cable Inc. (Contract) Oct 2013 - Oct 2014

Network Engineer Telus Communications Inc. (Government of Canada and Government of Ontario ministries RCMP, AAFC, CIC, HRDC, Canada Post, CFIA, Justice, OPS etc.) May 2007 - Jul 2013

CERTIFICATIONS

Official (ISC) Certified in Cybersecurity (CC), ISC2 • 2022 Official CCSP Course Completion Certificate by ISC2

Certified Network Security Specialist (CNSS) ICSI (International CyberSecurity Institute)

NSE 4 Network Security Associate – Fortinet, FortiGate Essentials 6.2

PCNSE Palo Alto Networks Certified Network Security Engineer, Palo Alto Networks

AWS Certified Solutions Architect – Associate, AZ-104: Microsoft Certified: Azure Administrator Associate, AZ-900

Cisco CCIE Routing & Switching, Data Center (Written)

Google Cloud Digital Leader Training Professional Certificate

JNCIA-Cloud Juniper Networks Certified Associate, Cloud, JNCIA, JNCIS-ENT

CCNP Cisco Certified Network Professional, Cisco • 2022

SKILLS

Palo Alto NGFW Firewalls M-100, PA-220/PA-3220/5050/VM-300/500, Cisco ASA5545-X/5580 v9.8, FortiGate NGFW 60E/100E,501E,1200D, Check Point FW, Splunk, Meraki MX64 firewall, Juniper firewalls SRX 210/240/3400/5800 12.3, EX4550/8216, MX 960, MX2020, Cisco ACI, Catalyst family 9400/9500, 6500/6807-XL ASR 1K/9010/9922, Nexus 9k,7k,5596, Nexus 3064/2k/CSR1000V, CRS-8, f5 BIG-IP LTM/GTM 8900/VPR-B4300/3900/PB200/2000 v11.5.4, A10 Load Balancer, Arista DCS-7010/7508N/7060CX, MR33/MS220/MS410-32 VSS, MV21, Avocent AC S48/S6000, Silver Peak, Aruba C3000/225/325APs

Protocols used: VPC, VXLAN, OSPF, BGP, EIGRP, RIP, HSRP, STP, RSTP, PVST +, VTP, TCP/IP, wireless, 802.3ad, LACP, TACACS, RADIUS Technologies : AWS, Azure, Zscaler, VPN, MPLS, VSS, VDC, VDOM, ACI, APIC 4.1, MWG 9.2.16 Software: Splunk 7/8, SolarWinds-Orion, Netscout/nGenius 6.1.1, VMware vSphere 7/vCentre, HP OpenView, Remedy, DNA Center, Cisco Prime 2.1/DCNM 6.3, Cisco ISE 1.2, NIKSUN NetVCR 4.3, Python, F5 Ent Manager Virtual Ed. Z100, BlueCat/Proteus IPAM, NetMRI, JIRA, Confluence, BMC TrueSight, Brinqa v5.6.0, PRTG Network, Thinkst Canary, Nessus/tenable.io, Terraform, NetBrain 10



Contact this candidate