À propos de Fakhri
Experienced NetDevOps professional specializing in network and security architecture using DevOps principles. Proficient in Cisco switches(Catalyst and Nexus), firewalls (Checkpoint, Cisco Firepower, Fortinet, Palo Alto), and Cisco ISE using OpenAPI and ERS API. Skilled in automation with Python, Terraform, and Ansible for enhanced operational efficiency. Demonstrated success in managing large-scale projects, particularly with Python and API integrations. Proficient in Git, GitLab, CI/CD pipelines, Jenkins, and Docker. Strong problem-solving and collaborative skills in fast-paced environments.
Français
Bilingue ou natif
Accepte de travailler sur site
Paris (jusqu’à 50 km)
Expériences
- Thales Global ServicesNetDevOps EngineerAÉRONAUTIQUE & AÉROSPATIALEjanvier 2022 - Aujourd'hui (4 ans et 5 mois)Vélizy-Villacoublay, FranceParticipation in the design of the network security architecture( HLD and LLD)documents for a Multi-Layer architecture, incorporating Cisco ISE and CiscoFirepower FTD (including Cisco network devices such as Catalyst 9K XE, CiscoIOS, Cisco Nexus, and Cisco IE).Documentation of the NetDevOps solution, encompassing CI/CD (Continuous Integration/Continuous Deployment), IaC (Infrastructure as Code), Network Automation, Network Test Automation using PyATS, and Docker Containerization.Implementation of a network infrastructure automation solution based on Ansible,GitLab CI/CD, and PyATS Python Framework:Developing all roles in Ansible (Day 0, Day 1, Day 2) using Ansible modules,Jinja templates, Netconf API, and the YANG model. This includes 20 Ansibleroles related to network configuration such as VRFs, OSPF, BGP, AccessLists, PIM Multicast, and Port-channels.Automating network test scripts using the PyATS framework.Defining the workflow for network service deployment using Playbooks.Implementing the CI/CD pipeline with GitLab-CI.Deploying Cisco ISE, including the development of Python scripts to interact with the OpenAPI and ERS APIs. Automating end-to-end deployment tasks, including configuring the cluster, policies, Active Directory integration, and onboarding over 10,000 cameras as MAB (MAC Authentication Bypass) devices.Designing and deploying Cisco Firepower in FTD mode, including configuring the Cluster Failover, virtual routers, port-channels, OSPF routing, route leaking, filtering rules, and NAT (Network Address Translation).
- AXA SANetwork Security EngineerBANQUE & ASSURANCESseptembre 2020 - septembre 2021 (1 an)Paris, FranceProviding technical support to the client on products and meeting theirexpectations.Diagnosing problems to isolate the root causes of malfunctions and proposingworkaround solutions.Managing Change/Request/Task tickets in the Service Now tool, includingconfiguration of network protocols such as OSPF, VLANs, Trunk/Access Ports, Spanning Tree, Static Routing, and DHCP.Following up on WAN link upgrade requests with Verizon and Colt.Acting as a technical point of contact for Verizon and Colt, handling requests for ACL configuration, IP addressing, DHCP, and other changes in WAN routers.Configuring Cisco Aironet Wi-Fi access points and managing incidents related to wireless network issues.Administering network equipment such as Cisco 5520 Wireless, Cisco Catalyst 2960/37503/3850, Cisco ISE, Nexus 9k/2k, and HP ProCurve 24/48 Ports.Analyzing and processing requests for firewall rule openings in Checkpoint R80.Managing security incidents such as firewall blocks and VPN identity agent issues.Managing monitoring tasks using HPE Intelligent Management Center andZABBIX.Replenishing maintenance stock inventory. Updating incident managementdatabase with relevant information.Documenting and sharing knowledge within the team regarding incident resolution.Conducting knowledge transfer sessions with colleagues.
- EDF SANetwork Security EngineerENERGIEoctobre 2016 - septembre 2020 (4 ans)Montreuil, FranceManaging network equipment in the DataCenter, including IOLAN SCS32 Console Server for console management.Administering network equipment such as Cisco Catalyst (2960, 3750, 3850),4500-X series, Cisco Nexus 9318YC, Nexus 9348GC, Nexus 2248TP-E, and HP ProCurve switches.Implementing a supervision server using LibreNMS-Cacti, which includes features like WeatherMap, Mail Alert, and Graphs for network monitoring and analysis.Acting as the technical contact for OBS (Orange Business Services) for theprovisioning of ADSL, SDSL, and Fiber links for remote sites.Managing and configuring the LAN network across over 700 sites using Cisco Catalyst and HP switches.Handling security-related requests such as firewall rule openings in Checkpoint R80.Managing incidents in coordination with operational teams. Conducting H5-200 audits, which involve real-time collection of NetFlow and sFlow records from the network.Configuring security gateways such as Websense for web security, VadeRetro for anti-spam, and Juniper-RSA for gateway security.Project/Build:Participation in the project to migrate the IT infrastructure of CCAS (CaisseCentrale d'Activités Sociales) to the EDF Datacenter, involving tasks such asupdating Cisco IOS, configuring VLANs, STP (Spanning Tree Protocol),Trunking, Routing, ACLs (Access Control Lists), NAT (Network AddressTranslation), SNMP (Simple Network Management Protocol), and NTP(Network Time Protocol).Participation in the project to revamp the core network of CCAS, following a 3-tier architecture. This includes configuring Nexus 9318YC switches withfeatures such as vPC (Virtual Port Channel), Peer Link, RSTP (Rapid Spanning Tree Protocol), VLANs, and Trunking.
Recommandations
Soyez le premier à recommander Fakhri
Contribuez à la réussite de ce freelance en partageant votre expérience de collaboration avec lui.
Ces profils de freelance correspondent également à vos critères
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Formations
- Master's Degree (M2) in Computer Science, Specializing in Networks.UPMC Sorbonne University & TELECOM Paris Tech2016
- Master's Degree (M1) in Computer Science, Specializing in Networks.UPMC Sorbonne University2015