Mustafa Kederoglu

Senior Network Design and Engineer

Frankfurt, Germany

Experience

Feb 2020 - Present
5 years 6 months
Frankfurt, Germany

Senior Network Design and Engineer

Helaba

  • Design and specification of the technical network integration of a new business-critical application system (MUREX) in the capital markets area in a complex interface and outsourcing environment.
  • Creation of component specifications, action catalog, and implementation plan.
  • Ensuring proper integration of the developed results according to the bank’s framework, especially IT compliance, IT security, and change and release management.
  • Selecting and integrating a new service provider for the bank. Moved critical bank applications to the provider. Designed, implemented, and supported the new Cisco network and Fortinet security setup at the service provider’s data center.
  • Served as the technical liaison between the bank, service providers, and consulting partners.
  • Supported and further developed the network and security infrastructure (clients, servers, networks). Performed error analysis and implemented solutions within agreed service levels.
  • Analyzed and diagnosed all security and network failures, glitches, and malfunctions.
  • Initiated continuous enhancements to guarantee efficient resource use and acceptable user response times.
  • Provided network support in a financial services organization and prepared operational changes on production banking network infrastructure for both large and small projects under strict change management discipline.
  • Designed, defined, tested, governed, and improved engineering standards.
  • Acted as network architect for medium to large projects involving team resources.
Jul 2013 - Oct 2023
10 years 4 months
Germany

Senior Network and Firewall Analyst/ Design/Architect and Engineer

DVAG

  • Network/firewall design and implementation. Data center project management.
  • Responsible for design, architecture, implementation, and level 3 support of the data center networking landscape.
  • Created network and firewall design documentation. Implemented and migrated the Cisco network and Palo Alto PA-7050 firewall environments.
  • Designed and deployed large-scale Nexus N7K data center solution leveraging VDC and vPC technologies.
  • Designed and deployed large-scale Nexus N9K data center solution leveraging vPC and VRF technologies.
  • Designed and implemented the FortiGate 3301E firewall cluster at data center sites in Germany.
  • Conceived and implemented network solutions for WAN, LAN, and security.
  • Evaluated customer requirements, consulted, and prepared service descriptions and solution designs during presales.
  • Acted as liaison between customers, service providers, and partners.
  • Supported and further developed the security infrastructure (clients, servers, networks). Performed error analysis and implemented solutions within agreed service levels.
  • Generated performance reports and RFOs (Reasons for Outages).
  • Analyzed and diagnosed all security and network failures, glitches, and malfunctions.
  • Initiated continuous enhancements to guarantee efficient resource use and acceptable user response times.
  • Coordinated with vendors, suppliers, and IT teams to resolve security, network, and systems faults or upgrades.
  • Ensured support contracts (hardware/software) for all security and networking equipment were renewed and maintained.
  • Monitored system alerts and security log messages from security and networking equipment and took appropriate actions.
  • Designed, configured, and deployed Microsoft Azure networks for multiple applications using the Azure stack.
  • Designed, planned, and migrated customer on-premises data center/applications to Microsoft Azure.
  • Planned, designed, and transformed environments from on-premises to cloud-based.
  • Deployed and configured network and firewall setups.
Oct 2012 - Dec 2020
7 years 3 months
Germany

Senior Network and Firewall Analyst/ Design/Architect and Engineer

PricewaterhouseCoopers AG

  • Network/firewall design and implementation. Data center project management.
  • Responsible for design, architecture, implementation, and level 2 support of the client’s data center networking landscape.
  • Created network and firewall design documentation. Implemented and migrated the Cisco network and Juniper firewall environments.
  • Designed and deployed large-scale Nexus N7K data center solution leveraging VDC, vPC, and VRF technologies.
  • Designed and implemented Juniper SRX-650 clusters at data center sites in Germany, USA, and Australia.
  • Designed and implemented the Cisco ACE load balancer at data center sites in Germany.
  • Designed and implemented the F5 BIG-IP LTM load balancer at data center sites in Germany, USA, Singapore, and Australia.
  • Designed and deployed large-scale Nexus N9K data center solution leveraging VDC, vPC, and VRF technologies.
  • Designed and deployed large-scale Cisco SD-WAN data center solution across EMEA, APAC, and USA regions.
  • Deployed and migrated over 100 sites across EMEA and APAC to Cisco SD-WAN Viptela 1K, 2K, and 5K devices.
  • Deployed Azure VPN with Cisco routers and portal. Created virtual networks in Azure, each with its own public gateway.
  • Administered Azure network globally for Europe, USA, and Asia.
  • Provided knowledge transfers to team members on security and network configuration.
Jul 2009 - Dec 2009
6 months
Olten, Switzerland

Network Architect and Analyst

ALPIQ

  • Network engineering.
  • Designed and integrated three data centers across Switzerland based on the NEXUS 7010 (N5K & N2K) platform.
  • Developed migration concepts for server and client access switches to the Nexus 7010 data center environment.
  • Designed and implemented a new MPLS backbone and network across Switzerland and Europe.
  • Responsible for IP network design for ALPIQ AG hosted in data centers across Switzerland.
  • Supported ALPIQ AG service product introduction as IP designer and planner.
  • Analyzed network requirements from service integration projects or maintenance demands (end-of-life replacement, design optimization, etc.).
  • Designed network integrations and documented them extensively in "Product Network Design" and "System Network Design" documents (English and German).
  • Aligned network design with system architects, security, transport network planning, testing, and operations.
  • Developed and designed switch, router, load balancer, and firewall configurations.
  • Documented configurations in the relevant Configuration Management Database.
  • Coordinated and troubleshooted change request execution.
  • Managed small maintenance projects in data centers from initiation to final delivery, including reporting.
  • Supported the project lead in service integration projects.
Jan 2009 - Sep 2012
3 years 9 months
Luxembourg

Senior Network and Firewall Analyst/ Design/Architect and Engineer

Credit Suisse

  • Network/firewall design and implementation. Data center project management.
  • Responsible for design, architecture, implementation, and level 2 support of the client’s data center networking landscape.
  • Created network and firewall design documentation. Implemented and migrated the Cisco network and Juniper firewall environments.
  • Designed and deployed large-scale Nexus N7K data center solution leveraging OTV, VDC, vPC, and VRF technologies.
  • Designed and implemented Juniper SSG-550 stretched cluster data center solution.
  • Designed and implemented the Cisco ACE load balancer at data center sites in Germany.
  • Created RFPs, design, implementation, and support for the MPLS backbone network across German sales offices.
  • Deployed end-to-end QoS architecture and strategy for the MPLS core network.
  • Rolled out Riverbed Steelhead WAN Optimizers in Germany.
  • Performed multiple software upgrades (IOS/CatOS) across 100+ Cisco devices in Germany and Luxembourg to fix security vulnerabilities.
  • Introduced and implemented RunIP appliances in Germany.
  • Coordinated with Global Engineering to ensure all network devices met defined standards.
  • Supervised all planned network infrastructure installations, including version control, proof of concept, and production handover documentation.
  • Participated in improving and automating installation and provisioning processes for services and infrastructure.
  • Managed change control, release control, and deployment activities.
  • Developed and maintained project documentation and status reports.
  • Collaborated closely with engineering and operations teams during projects.
  • Oversaw suppliers involved in the projects.
Jan 2004 - Dec 2009
4 years
Frankfurt am Main, Germany

Network and Firewall Analyst and Engineer

Credit Suisse

  • Network Operation Center support.
  • Provided high-level technical support for Credit Suisse’s corporate data network and e-commerce infrastructure.
  • Configured, managed, and monitored multi-tier DMZs using Cisco routers and switches, and Netscreen firewalls to set up routing and security policies.
  • Created plug proxies on UNIX bastion firewalls and Sidewinder virus scanners to enable communication between the corporate network, the DMZ, and the internet.
  • Managed Bluecoat CacheFlows, modifying policies and forwarding files to optimize bandwidth and performance of browsing infrastructure.
  • Implemented load balancing solutions using Cisco Content Switches, Global Site Selectors, distributed directors, and local directors for web and application server farms.
  • Made tactical changes to Netscreen and Nokia Checkpoint-NG firewalls in response to market data and exchange services requests.
  • Implemented security solutions including access-lists, NAT, and VPN connections to third-party clients.
  • Used network management tools (Spectrum, Concord, NetFlow) to perform daily health checks and identify anomalies.
  • Remotely accessed European branch networks and router logs to isolate outages, performance issues, and intermittent device behavior.
  • Maintained and supported Cisco routers (2500, 3600, 4000, 7200 series) and Catalyst switches (5000, 5500, 6500 series).
  • Performed multiple software upgrades (IOS/CatOS) across 1000+ Cisco devices in the UK and Europe to fix security vulnerabilities.
  • Managed QIP database for IP address allocation and management.
  • Coordinated with Global Engineering to ensure all network devices met defined standards.
  • Acted as Senior Network Engineer for Credit Suisse Group’s Frankfurt office relocations, assisting in project management, infrastructure design, construction, deployment, and evaluation.
  • Managed subnet assignments and IP address control.
  • Provided network relocation support.
  • Rolled out IPT for new premises.
  • Provided out-of-band and iLO connectivity for Windows and UNIX servers.
  • Deployed and configured Juniper Netscreen firewalls.
  • Supported and maintained Citrix Alt erpath terminal servers as secondary responsibilities.
  • Provided 2nd and 3rd line support for Juniper Netscreen firewalls.
  • Completed new office network installations, including IPT and server deployment across multiple German locations.
  • Strong all-around knowledge of data networking, especially routing, switching, and market data delivery mechanisms.
  • Hands-on network operations experience supporting major corporate Cisco infrastructure.
  • Ability to analyze faults and diagnose network-to-application issues using management tools.
  • Proficient firewall skills and market data/application knowledge from close collaboration with market data teams.
  • As part of the Network Operations Team, analyzed complex problems using management tools/data, provided proactive monitoring/support, and troubleshot electronic trading applications.
  • Performed core network operational duties when needed.
  • Business-facing role requiring strong communication with senior management, application developers, and non-IT users.
Jul 2004 - Dec 2004
6 months
Frankfurt, Germany

Network and Firewall Engineer

Credit Suisse

  • Relocated CS(D) AG from the MesseTurm to the Cielo building at Theodor-Heuss-Allee.
  • Created design documents and handled installation and configuration of Cisco network environments.
  • Provided Cisco network support and consultation to customers.
  • Extensive daily monitoring and troubleshooting of Cisco networks in distributed systems.
  • Operated in a production environment with custom applications and standard software on both client and server sides, strict change control, and high-availability requirements.
  • Solved TCP/IP-based LAN/WAN issues with Cisco hardware and software (routers, switches, IOS, CiscoWorks).
  • Configured Checkpoint Firewall-1 HA and implemented VPNs.
  • Extensive experience with RIP, OSPF, BGP, HSRP, and STP protocols.
  • Produced technical documentation for all lifecycle phases: requirements, design proposals, test specs, and acceptance plans.
Jan 2004 - Jun 2004
6 months
Frankfurt, Germany

System and Network Specialist

mcs IT-Services GmbH

  • SAN consulting.
  • Provided support and consultation on HP, Sun, and IBM SAN solutions.
  • Installed and configured SAN environments.
  • Designed and implemented backup concepts using Veritas NetBackup.
  • Produced operating manuals, test plans, and test reports.
Jul 2001 - Dec 2004
2 years 6 months
Erfurt, Germany

System and Network Specialist

DB Systems GmbH

  • BKU3 implementation: Supported specialist areas with standard software Bea WebLogic 6.1, 7.0, Apache 1.3.27, Tomcat 4.1.18.
  • BKU3 implementation: Installed specified software parameters and JRE 1.3 and Oracle 8.1.7 and 9.2.
  • BKU3 implementation: Produced operating manuals, test plans, and test reports.
  • Citrix Extranet Server implementation (VPN): Designed and implemented an IPsec-based VPN and concept for secure Internet accounting data transfer using Citrix Extranet 2.0.1 and ACE/Server 5.0.
  • Citrix Extranet Server implementation (VPN): Installed and configured hardware and software platform.
  • Citrix Extranet Server implementation (VPN): Produced administration, usage, and management manuals and test reports.
  • Citrix NFuse implementation (K3/K2 Connection): Planned and implemented a unified application portal across the network using Citrix NFuse 1.6.1, Apache 1.3.27, JServ 1.1.2, JSP 1.0.1, and JSDK 2.0.
  • Citrix Terminal Server XP integration: Supported and expanded Citrix MetaFrame 1.8 farm.
  • Citrix Terminal Server XP integration: Updated and extended firm-standard Citrix Terminal Server XP.
  • Citrix Terminal Server XP integration: Administered existing systems.
  • Citrix Terminal Server XP integration: Provided new servers and applications.
  • Citrix Terminal Server XP integration: Adjusted enterprise applications for Terminal Server.
  • Citrix Terminal Server XP integration: Monitored and improved performance.
  • Citrix Terminal Server XP integration: Produced operating manuals.
Oct 1999 - Jun 2001
1 year 9 months
Frankfurt am Main, Germany

Network Specialist and Technical Project Leader

Union IT-Services GmbH

  • HP OpenView network management system introduction: Planned and deployed network management system using HP OpenView, CiscoWorks, and TeleAlert.
  • HP OpenView network management system introduction: Procured hardware and software, installed, and configured the platform.
  • Checkpoint Firewall-1 system introduction: Planned and deployed firewall systems based on Checkpoint Firewall-1 in Luxembourg.
  • Checkpoint Firewall-1 system introduction: Procured hardware and software, installed, and configured the platform.
  • Desktalk WAN/LAN reporting system: Planned and deployed reporting systems using Desktalk Trend Software v3.5.2 and Desktalk TrendWeb v3.1.
  • Desktalk WAN/LAN reporting system: Procured hardware and software, installed, and configured the platform.
  • Head office relocation: Restructured the active network and converted token ring to Ethernet (approx. 500 users).
  • IGEFI “MultiFonds” fund administration software: Implemented unified local fund bookkeeping software “MultiFonds” for Luxembourg, Frankfurt, and Switzerland.
  • IGEFI “MultiFonds” fund administration software: Adjusted, Germanized, and standardized fund bookkeeping processes.
  • IGEFI “MultiFonds” fund administration software: Centralized and outsourced the bank’s “MultiFonds” system to bws.
  • Led team in technical, methodological, and social development, preparing them for ongoing innovations.
  • Cooperated in staffing: requirement definitions, candidate selection, evaluations, and salary decisions.
  • Responsible for project infrastructure, organization, and delivery on time, within budget, and to quality standards.
  • Vitria BusinessWare DAMA II (Data Mapping II): Planned and introduced enterprise application integration tool (Vitria BusinessWare).
  • Vitria BusinessWare DAMA II (Data Mapping II): Procured hardware and software, installed, and configured the platform.
  • Middleware Office: Planned and introduced data warehouse based on SA Rel. 6.12 TS060 on SUN E4501.
  • Middleware Office: Procured hardware, installed, and configured the platform.
  • Order Management System (Fondsmanager): Contributed to preliminary studies and results.
Oct 1996 - Sep 1999
3 years
Frankfurt am Main, Germany

Network Specialist

Credit Suisse First Boston AG

  • HP OpenView network management system introduction: Planned and deployed HP OpenView in the Frankfurt office.
  • New User-Help-Desk: Planned and deployed Remedy-based management/UHD system in Frankfurt for 400 users.
  • Xetra/Eurex: Planned and expanded network infrastructures for trading floors supporting 20 dealers.
  • Y2K: Coordinated Y2K project for Triarch, Reuters, Open Bloomberg, and RTD commercial systems.
  • New network infrastructure: Restructured LAN using Cisco/3Com routers and 3Com switches/hubs in Frankfurt.
  • Remote-Access-Services: Planned and deployed remote access services using Ascend routers and ACE/Radius servers for 150 users (Frankfurt, London, Zurich, Tokyo).
  • Checkpoint Firewall-1 implementation: Planned and deployed Checkpoint Firewall-1 and SUN/Nokia systems (Frankfurt, London, Zurich, New York, Madrid, Tokyo, Moscow).
  • IP-Management: Planned and introduced IP management systems using NetID software and SUN Ultra hardware for 400 users (Frankfurt, London).
May 1994 - Sep 1996
2 years 5 months
Frankfurt, Germany

Network Specialist

Wayss & Freytag AG

  • New network management system: Planned and deployed HP OpenView.
  • New network infrastructure: Restructured head office network using Cisco routers and Fore Systems switches with fiber optics.
  • WAN backup system: Designed backup concept for head office using CITAM adapters.
  • IT reorientation: Conceptual service and system administration for Windows NT, Sun Solaris, and VAX VMS (400 users).
  • Domain Name Services: Designed and implemented DNS server on IBM RS/6000 for head office and twelve branches.
  • Data center relocation: Managed complete data center move, responsible for LAN/WAN using Cisco routers and switches.
  • Network reorganization: Restructured Berlin, Düsseldorf, Hamburg, Munich networks using Cisco routers and Lannet hubs.

Summary

Motivated and practical with a strong talent for simplification and automation. Speaks the users’ language. An experienced senior network designer and architect, project manager/project leader. Systematic and methodical in all tasks.

Languages

German
Native
English
Advanced
Turkish
Advanced

Education

University of Darmstadt

Dipl. Informatiker · Computer Science · Darmstadt, Germany

Certifications & licenses

Building Cisco Multilayer Switches Networks

Cisco

Cisco Building Scalable Cisco Networks

Cisco

Cisco Certified Design Professional (CCDP)

Cisco

Cisco Certified Network Associate (CCNA)

Cisco

Cisco Certified Network Professional (CCNP)

Cisco

Cisco Works and System Prerequisite

Cisco

Configuring Juniper Networks Firewalls/IPSec VPN Products

Juniper Networks

Fortinet Practical Rollout and Implementation of the Data Centre Fortinet FG-3301E Firewall and FAZ-1000E FortiAnalyzer

Fortinet

ICNX5 (Cisco Nexus 5K & 2K)

Global Knowledge

Info. Services Reuters Triarch Base and Advanced Training

Reuters

Introduction of Cisco Works Configuration

Cisco

Netscreen Administration and Virtualisation Training in London

Netscreen

Network and Security Manager Administration Training in Germany

Palo Alto Practical Rollout and Implementation of the Data Centre Palo Alto 7050/7080 Next-Gen Firewalls

Palo Alto

Projektmanagementfachmann (RKW/GPM)

RKW/GPM

Riverbed Practical Rollout and Implementation of the Riverbed Steelhead WAN Optimisers

Riverbed

Sun Solaris Administration 1 ASADM1

Sun

Sun Solaris Administration 2 ASADM2

Sun

Technical Member Training of Xetra

Xetra

UHD Remedy Action Request User- and Admin Training