Vous êtes sur la page 1sur 4

KAMRAN NAHIDI 4513 Tipton Lane * Alexandria, Virginia 22310 * (571)226-0549 * kn13e4b40@westpo st.

net QUALIFICATIONS SUMMARY Highly creative and client-focused Information Technology Professional with over seven years of industry experience spanning every aspect of the design, impleme ntation, configuration, management and support of complex, mission-critical LAN/ WAN network security solutions for a virtual who's-who of Fortune 100 companies across the United States. Capabilities include an extremely broad knowledge base and familiarity with the latest cutting-edge technologies, including firewalls, VPN, IDS, and IPS. In-depth knowledge of TCP/IP, high availability, load balanc ing, and remote management complements outstanding relationship management, anal ysis, and problem resolution skills as well as outstanding organizational, multi tasking, and team building skills at all levels. Proven ability as a resourcefu l coordinator, quick to learn new skills in fast-paced IT environments. Speak Fa rsi and Portuguese. TECHNICAL SKILLS Firewalls: Checkpoint, Cisco Firewall Service Module, Cisco PIX, Cisco ASA, Nets creen Intrusion Detection & Prevention: Enterasys Dragon NIDS, Snort, Cisco Secure NID S, ISS Proventia Series, McAfee IntruShield, TippingPoint, Juniper IDP Network Security Tools: Nmap, Nessus, ISS InternetScanner Security Management & Log Retention Management: Netscreen Security Manager, Ente rasys Dragon Manager, Site Protector, ISS Internet Scanner Console, Cisco Works, Cisco Security Manager, IntruShield Manager, Cisco MARS, LogLogic, SkyBox Platforms: Microsoft Windows XP/2000/NT, Red Hat Linux, Sun Solaris UNIX, FreeBS D, & Nokia IPSO CERTIFICATION & TRAINING Checkpoint Certified Security Administrator (CCSA) Checkpoint Certified Security Expert (CCSE) McAfee IntruShield Technical Certification ISS Product Line Certification SkyBox Technical Certification PROFESSIONAL EXPERIENCE NETWORK SECURITY ENGINEERING TEAM LEAD JUNE 2010 - PRESENT BT COUNTERPANE - CHANTILLY, VA *Currently managing a team of eight security engineers who were responsible for building/deploying security devices in customer networks and for the full manage ment/maintenance of those devices *Responsible for playing a strategic roll by developing the team into a group o f highly technical engineers, in parallel implementing procedures and actions wh ich will act as proactive measures in providing value to our customers *In the process of creating the team SOP covering all operational and organizati ons policies and procedures *Provide Tier-3 troubleshoot support on all managed devices and supported techno logies *Responsible for handling customer escalation issues and putting together after

action reports when necessary *Migrated the team to a central email inbox so work inquiries become visible to the entire group *Putting auditable procedures in place to ensure work orders are addressed in a timely fashion *Building a formal Tier2-3 hands-on training program which will cover the operat ion, navigation, and troubleshooting for all managed devices and supported techn ologies *Project lead for migrating all customer terminating VPNs from Juniper technolog y to Cisco technology *Created a central knowledge base on an internal wiki server and filled it with popular KBs. Motivating team members to produce KBs in an effort to continue gro wing the information wealth on the server *Responsible for taking part in the design and implementation of the "follow the sun" model between the BT SOCs in the Americas, Europe, and Asia Pac. Currently working on linking procedures and work orders between the Chantilly SOC and New Jersey SOC. SECURITY ANALYST TEAM LEAD OCTOBER 2 009 - AUGUST 2010 BT COUNTERPANE - CHANTILLY, VA *Managed a team of ten security analysts who provide a security event analysis r oll, level-one network security engineering support, and a switchboard function for the SOC *Created a 100+ page SOP covering all operational and organizations policies and procedures *Empowered the team to be capable in providing level-one support for the Network Security Engineering team by providing formal hands-on training and by implemen ting step-by-step procedures *Ensured all team members understand and are onboard with the SOC mission statem ent and goals *Ensured the team has quarterly/annual objectives and goals *Ensured the team performs quality analysis of security events via routine audit s/coaching *Ensured the team provides customers accurate and insightful analysis of securit y events in a timely manner *Ensured all team members providing top notch customer service via routine audit s/coaching *Ensured all work within team is being recorded in a work order, copiously notat ed, and ensuring the requests are addressed in timely fashion *Ensured SOP processes and procedures are accurate, efficient, update-to-date, a nd scalable *Ensured Tier-1 team members stay motivated and always feel job satisfaction by providing incentives for excellent performance, training to keep the them challe nged, an advancement path for career growth, etc. *Created and instructed intensive internal technical/procedural training program (s) in place to continue raising the bar for technical/procedural knowledge with in the team *Ensuring sufficient coverage is in place for all three shifts 24/7 NETWORK SECURITY ENGINEER OCTOBER 20 06 - OCTOBER 2009 BT COUNTERPANE - CHANTILLY, VA *Provide 24/7 technical support for managed security services, security engineer ing, infrastructure, management, and sales groups. Manage and monitor client sec urity devices worldwide. *Perform installs, configure and troubleshooting on stateful inspection firewall s and inline/passive IPS/IDS sensors. *Perform firewall migration projects between different technologies.

*Serve as lead on configuration and troubleshooting VPN's on all vendor firewall devices. *Serve as Subject Matter Expert on global operations projects and architect netw ork security solutions for customers utilizing a variety of cutting edge technol ogies (firewall solutions, IDS, and IPS). *Perform Q/A testing on new network security technologies and appliances. *Provided technical expertise in pre and post sales engagements. *Maintain and develop content for the organization's internal technical knowledg e base as well as technical documentation and best practice procedures for the M anaged Device Team. *Develop business processes and improvement procedures for the Managed Device Te am. *Developed a technical training curriculum and serving as the technical trainer/ mentor for new and existing hires. *Provide advanced training seminars for the Managed Device team on managed secur ity platforms. *Provide high level support for FW/IPS platforms. *Uphold positions in providing 24/7 on-call support rotation for our managed cus tomer base. INFORMATION SECURITY ENGINEER MAY 2006 - OCTOBER 2006 (G OV. CONTRACT) LOCKHEED MARTIN - WASHINGTON, D.C. *Daily analyzed network traffic looking for trends and or malicious activities, created vulnerability report with action plans. *Briefed senior operations managers on quality assurance concerns, security impl ementations, and hardware inventories. *Teamed with partners and management to implement improved operational procedure s and advise customers on IT security best practices. *Defined/tracked 'how to' documents for supported FW/IPS platforms. *Configure and troubleshoot VPN's on infrastructure VPN devices. *Provided support for infrastructure FW/IPS platforms.

INFRASTRUCTURE SECURITY ENGINEER ONTRACT) APOGEN TECHNOLOGIES - WASHINGTON, D.C.

FEBRUARY 2006 - MAY 2006 (GOV. C

*Defined, tracked, and maintained standard baselines and configuration sets for NOC managed and monitored security devices, as well as technical expertise and o perational knowledge standards for the organization. *Performed network security equipment repairs, installs, removals and upgrades. *Performed audits on all vulnerable aspects of the Infrastructure and create vul nerability reports with patch recommendations. *Provided support to end-users, performed troubleshooting, and resolved network and software issues. *Interfaced with vendors and service providers ensuring that hardware or softwar e problems were dealt with efficiently and effectively, with minimal downtime.

NETWORK SECURITY ENGINEER May 2005 - December 2005 SYMANTEC CORPORATION - Alexandria, Virginia *Administered industry best practices in flagship security operations center (SO C). Direct organizational projects to timely completion and spearhead network se curity audits/modifications for clients. *Implemented and integrated new security solutions into existing customer networ k infrastructures and coordinate network security audits and changes with client

s. *Configured site-to-site and client VPNs and identify and resolve firewall and V PN connectivity issues. *Defined/tracked standard baselines and configuration sets for all SOC managed a nd monitored security devices, as well as technical expertise and operational kn owledge standards for organization. *Served on Technical Team that oversees every phase of highly complex global ope rations projects. Architect network security solutions utilizing a variety of cu tting edge technologies. *Ensured alignment of client requirements with operational capabilities. Deploy improved SOC operational procedures and advise customers on IT security best pra ctices. *Developed technical documentation and content for the internal technical knowle dge base. *Mentored new security engineers for the Managed Security Services group. NETWORK ENGINEER January 2001 - May 2005 MAN ENVIRONMENTAL SERVICES - Alexandria, Virginia *Set up and administered servers for development and production environments. Mo nitored and maintained aspects of information technology infrastructure and syst ems. *Maintained Local Area Network connectivity including switches, routers, wiring closets, and drops to the desktops. *Responded to emergency outages, disaster recovery, and the corporate firewall. *Analyzed and developed improved security procedures to increase productivity an d profitability. Performed security audits and patch development on production s ervers. *Provided support for internal network and system related trouble tickets. *Managed corporate Checkpoint Firewall implementing security rules and mitigatin g network attacks. *Deployed Site to Site and Client to Site VPNs utilizing Checkpoint Firewall-1/V PN-1 *Migrated previous corporate Checkpoint 4.0 Firewall-1/VPN-1 on Windows NT to No kia IPSO appliance for increased performance and stability. FORMAL EDUCATION Finishing Bachelor of Science, Business Administration (MIS concentration) George Mason University - Fairfax, VA IT & Network Engineering Studies, Northern Virginia Community College

REFERENCES Available upon request