Pascal Farys
Senior Network Security Consultant
Experience
Senior Network Security Consultant
IT-Systemhaus
- Provided expert level consulting for lifecycle, upgrades and refresh activities
- Used Remedy for effort recording and billing to customers
- Used ServiceNow for service management and workflow
- Used Jira for project management with agile/Scrum methods
- Used Confluence for documentation
- Worked with customer-specific software tools
- Worked with customer-provided and secured hardware suitable for IT security operations infrastructure setup for customers
- Built firewall rule sets and handed over to service owner and delivery teams
- Environment: Cisco ASA, Cisco Firepower, CSM, Cisco AnyConnect, Cisco ISE, Check Point VSX and gateways
Senior Network & Security Engineer
IT-Finanzdienstleister
- Operated and re-designed authentication service for device administration and captive portal for guest WiFi
- Operated firewalls
- Operated VPN services: site-to-site (S2S), remote access (SSLVPN & IPSec)
- Operated proxy appliances
- Operated and partially automated a Cisco homogeneous infrastructure (LAN, WLAN)
- Provided 3rd level support
- Standardized network and security components
- Harmonized and consolidated the WLAN infrastructure
- Harmonized and re-designed Cisco ISE deployments
- Environment: Cisco ISE, Fortinet FortiGate (40F, 60F, 80F), Cisco WLC (2504, 3504), Cisco Switches Nexus 3k, 5k including FEX, Cisco WSA (Web Security Appliance)
Network Administrator
Textil-Einzelhandelskette
- Managed international Layer 2 & 3 network, Fortinet firewalls and Cisco Meraki switch and WLAN infrastructure
- Managed Cisco/Cisco Meraki switches and routers as well as Fortinet firewalls (LAN & WLAN)
- Planned and implemented data center network concepts and documented detailed designs
- Administered, operated, monitored and troubleshooted routers, switches, WLAN controllers and other active components
- Managed DNS, DHCP, IPAM and monitoring
- Worked agilely with Confluence and Jira
- Served as international point of contact for level 2 support and customer service
- Created technical documentation for WaaS (Workplace as a Service) in 15 administrative buildings
- Migrated from Cisco Layer 2 & 3 switches to FortiGate firewalls and Meraki switches, from planning to commissioning of switches, access points and firewalls
- Implemented new warehouse in Bedburg with 3-tier network: 75 Meraki switches, 250 access points and FortiGate firewalls
- Implemented HaaS (Hotspot as a Service) by integrating Telekom customer WLAN into existing enterprise network
- Environment: Cisco Meraki Switches (MS225, MS250, MS425), Cisco Meraki Access Points (MR44, MR46e with additional antennas), Cisco Catalyst 2960 & 3560, Fortinet FortiGate Firewalls/NGFWs (30E, 40F, 80F, 200F, 600F)
Network Specialist
Messegesellschaft Düsseldorf
- Managed national Layer 2 & 3 network, Cisco firewalls and Cisco WLAN infrastructure
- Led project to renew Cisco ISE RADIUS servers
- Planned, procured, commissioned, tested and accepted network systems
- Implemented data center network based on Cisco ACI and firewalling with Cisco ASAs
- Implemented complex Cisco-based network solutions
- Analyzed LAN/proxy infrastructure and created improvements and automation
- Handled incidents, changes, service requests and problem tickets according to ITIL
- Renewed local Cisco ISE RADIUS appliances
- Environment: Cisco ASA firewalls, Cisco Catalyst/Nexus switches, Pulse Secure VPN gateways, monitoring with MRTG & PRTG, F5 Networks, Aruba (HPE, Event-Driven Dashboard)
Network & Security Engineer
IT Service Provider for System Development
- Specialized in network management of international Layer 2 & 3 networks, Check Point firewalls and Cisco LAN & WLAN infrastructure
- Planned and rolled out a new concept for remote management of network hardware in stores using terminal servers
- Replaced core terminal server in Tokyo, Japan
- Performed international assignment in Kiev, Ukraine to expand existing local data center
- Evaluated and integrated a new NTP server instance (final project including documentation)
- Managed agile projects for complex computing system deployments with minimal bureaucracy
- Performed co-location of servers in third-party data centers
- Implemented distributed file systems (DFS) across networks
- Implemented edge computing architectures to offload central clouds
- Organized development and introduction of license management systems
- Deployed serverless computing environments
- Developed service portals and apps for incident reporting via applications and interfaces
- Integrated new software into networked production systems
- Environment: Cisco ASR & ISR routers, Cisco Catalyst switches (2960 & 9800)
Summary
My area of work, with a focus on my daily tasks, is the administration, support and design of medium-sized corporate networks.
I analyze and troubleshoot problems that arise in day-to-day operations (ticket system).
Additionally, I work on documenting network environments using Microsoft Visio.
Skills
Networks: Lan, Wlan, Wan; Routing, Switching, Troubleshooting; Ios, Ios-xe, Nx-os, Vlan
Security: Check Point; Cisco Asa / Firepower / Fwsm / Ise; Fortinet / Fortigate; Aruba
Automation: Ansible, Github
Cloud: Amazon Cloud (Aws), Google Cloud
Programming Languages: Shell/bash Scripting, Python
Methods / Toolset: Scrum, Itil
Operating Systems: Windows 2000, Windows Xp, Windows 7, Windows 8 & 8.1, Windows 10, Windows 11; Linux (Centos, Fedora, Redhat); Cisco Ios, Nx-os; Fortinet Fortigate Os; Pulse Secure Ive Os; Bluecoat Os
Programming Languages (Basic Knowledge): Shell/bash Scripting, Python
Network: Network Design; Cisco Routers And Switches; Nac; Aruba (Hpe); F5 Networks; Ethernet, Fast Ethernet, Etherchannel; Layer 2 / Layer 3 Switches; Stp, Vlan, Vtp, Ospf, Eigrp, Nat / Nat Overload, Dmvpn, Acls, Fiber Optics, Port Mirroring, Ipv6, Maintenance And Fault Management; Cisco Meraki; Global Protect; Cisco Access Points; Wlc; Cisco Routers (800 Series, 1800 Series); Cisco Switches (E.g., Cisco Catalyst 2960-c Series, 2960 Cx Series, 3560 Cx Series, 3560 Cg Series, 6500 Series, Ws-c2960 Series, Ws-c2950 Series, Ws-c4500 Series, Ws-c3560 Series); Cisco Ip Phones; Cisco Nexus 5000, 7000, 9000 Series; Virtual Routing And Forwarding (Vrf); Virtual Port Channel (Vpc); Hp Proliant; Microserver; Wireshark
Server Services: Basic Knowledge Of Dns, Dhcp, Syslog Configuration And Administration
Security: Implementation And Administration Of Firewall Systems (Fortinet Fortigate, Cisco Asa, Check Point); Ipsec; Site-to-site Vpns; Nat; Failover; Logging
Software / Applications: Microsoft Visio; Solarwinds; Wireshark; Microsoft Office; Ms Project; Asana; Vmware Workstation; Syslog
Languages
Education
Apprenticeship as an IT Specialist in System Integration · IT Specialist in System Integration · Germany
Certifications & licenses
Cisco Certified Network Associate
Cisco
Fortinet Certified Fundamentals Cyber Security
Fortinet
Similar Freelancers
Discover other experts with similar qualifications and experience
Datacenter Engineer, Network & Security Administrator
Senior Network Design and Engineer
Life Cycle Infrastructure Network Analyst
Network Administrator
Managing Director and Senior Consultant
Infrastructure Design and Implementation
Project Manager for Network and Infrastructure Project Migration EU/US/MEX
Director IT Architecture & Infrastructure Management
Fortinet FortiGate 7.4 Administrator
Server Migration Consultant
Lead Project Manager
Senior Project Manager S4HANA in the energy sector
IT-Security Manager
Project Manager & Portfolio Owner for Infrastructure (Automotive)
Senior IT Engineer
Acting Partner
IT System Specialist
Project Manager & Tender Manager
Network Administrator WAN & Data Center
Hardware and Software Developer / Project Manager
Administrator, DevOps
Senior Consultant Database Administration and SQL
Network Architect
Architecture management
Freelance Data Protection Officer
Strategy Consultant, Organizational Developer
Freelancer
Technical Product Owner
Ansible Automation, Windows Third Level Support
