Senior Network Design and Engineer

Designed and implemented network/firewall solutions and managed data center project management; responsible for design, architecture, implementation and 3rd level support of the data center networking landscape.

Created network and firewall design documentation and migrated Cisco network and Palo Alto PA-7050 firewall environments.

Designed and deployed large scale Nexus N7K and N9K based data center solutions leveraging VDC, vPC and VRF technologies.

Implemented FortiGate 3301E firewall cluster at data center sites in Germany.

Conceived and implemented network solutions around WAN, LAN and security; evaluated customer requirements, consulted and prepared service descriptions and solution designs during presales phase.

Served as interface between customers, service providers and partners.

Supported and further developed security infrastructure (clients, servers, networks); performed error analysis and implemented solutions within agreed service levels.

Created performance reports and RFOs (Reason for Outages); analyzed and diagnosed all security and network failures.

Coordinated with vendors, suppliers, and IT teams to resolve security, network and systems faults or upgrades; ensured support contracts for all security and networking equipment services were renewed and maintained.

Monitored system alerts and security log messages from security and networking equipment and took appropriate actions.

Designed, configured and deployed Microsoft Azure network for multiple applications; planned and migrated on-premises data center/applications to Microsoft Azure; deployed and configured network and firewall configurations.

Designed and integrated three data centers across Switzerland based on Nexus 7010 (N5K & N2K) platform.

Developed migration concepts for server and client access switches to Nexus 7010 data center environment.

Designed and implemented new MPLS backbone and network across Switzerland and Europe.

Served as IP network designer and planner for ALPIQ AG service product introduction; supported IP network design in various Swiss data centers.

Analyzed network requirements from business service integration projects and maintenance demands (end-of-life replacement, design optimization).

Documented network integration extensively in Product Network Design and System Network Design documents (English and German).

Aligned network design with system architects, security, transport network planning, testing and operations.

Developed and designed switch, router, load balancer and firewall configurations; documented configuration in Configuration Management Database.

Coordinated and troubleshooted execution of change requests and small maintenance projects in data centers from initiation to final delivery; produced project reporting.

Supported planning project lead in service integration projects.

Provided high level technical support of corporate data network and e-commerce infrastructure.

Configured, managed and monitored multi-tiered DMZs using Cisco routers and switches, and Netscreen firewalls for routing and security policies.

Created plug proxies on UNIX Bastion firewalls and Sidewinder virus scanners to permit communication between corporate network, DMZ and Internet.

Managed Bluecoat Cacheflows by modifying policy and forwarding files to optimize bandwidth and performance of browsing infrastructure.

Implemented load balancing solutions using Cisco Content Switches, global site selectors, distributed and local directors for fault tolerance and failover of web and application server farms.

Made tactical changes to Netscreen and Nokia Checkpoint-NG firewalls in response to market data and exchange services firewall change requests.

Implemented security solutions including standard and extended access-lists, NAT and VPN connections to third party clients.

Utilized network management tools (Spectrum, Concord and NetFlow) for daily health checks and anomaly identification.

Remotely accessed European branch networks and router logs to isolate outages, performance issues and intermittent behavior of network devices.

Maintained and supported Cisco 2500, 3600, 4000, 7200 series routers and Catalyst 5000, 5500 and 6500 series switches.

Performed multiple software upgrades (IOS/CatOS) across 1000+ devices in UK and Europe to remediate security vulnerabilities.

Organized QIP database for IP address allocation and management; coordinated with Global Engineering to ensure network devices conformed to defined standards.

Assisted in Frankfurt office relocations: infrastructure design, construction, deployment and evaluation; managed subnet assignments, IP address control, IPT rollout and out-of-band connectivity for Windows and UNIX servers.

Deployed and supported Juniper Netscreen firewalls and Cyclades Alterpath terminal servers; provided 2nd and 3rd line support.

Completed new office network installations (Berlin, Bielefeld, Braunschweig, Bremen, Düsseldorf, Frankfurt, Hamburg, Hannover, Köln, München, Nürnberg, Regensburg, Stuttgart).

Engaged in proactive monitoring/support of electronic trading applications; analyzed complex problems using network management tools/data.

Supported and consulted customers regarding HP, SUN and IBM SAN solutions; installed and configured SAN environments.

Provided and set up backup concept under Veritas NetBackup; produced operating guidance manual, tests and test reports.

Planned and introduced HP OpenView network management system with CiscoWorks and TeleAlert: procured hardware/software, installed and parameterized platform.

Planned and introduced Checkpoint Firewall-1 in Luxembourg: procured hardware/software, installed and parameterized platform.

Planned and introduced Desktalk Trend and TrendWeb WAN/LAN reporting systems: procured hardware/software, installed and parameterized platform.

Restructured active network infrastructure during head office relocation; converted token loop network to Ethernet for approx. 500 users.

Implemented IGEFI MultiFonds fund administration software for Luxembourg, Frankfurt and Switzerland; adjusted, Germanized and standardized business processes; centralized and outsourced system to bws; provided technical and personnel guidance of group, controlled development activities and deadlines; developed suggestions for improving economy, productivity and flexibility; promoted co-workers’ technical, methodical and social skills; participated in personnel requirement determination, selection, estimation and salary setting; responsible for project infrastructure, organization and successful date-, cost- and quality-assured completion.

Planned and introduced Vitria BusinessWare DAMA II enterprise application integration tool: procured hardware/software, installed and configured platform.

Planned and introduced DataWarehouse on SAS TS060 Rel. 6.12 on SUN E4501: procured hardware, installed and configured platform.

Cooperated in preliminary study of order management system (Fondsmanager).

Planned and introduced HP OpenView network management system.

Restructured head office network using Cisco routing and Fore Systems switches with optical waveguide cable connections.

Designed WAN backup concept based on CITAM adapters.

Designed service/system administration for Windows NT, Sun Solaris and VAX VMS for 400 users.

Conceived and implemented DNS server based on IBM RS/6000 for head office and twelve branch offices.

Relocated computing centre; responsible for LAN/WAN based on Cisco router and switches.

Restructured network addresses for Berlin, Düsseldorf, Hamburg and Munich using Cisco routers and Lannet hubs.