Sami Bejaoui - Director IT Architecture & Infrastructure Management

Tutzing, Germany

Experience

Dec 2024 - Feb 2025

3 months

Lorem ipsum dolor sit amet

German Customer (Pharma Supply-Chain Sector)

Integration of a FortiManager into the existing FortiGate firewall infrastructure to centralize and optimize firewall management.

May 2024 - Aug 2024

4 months

Lorem ipsum dolor sit amet

German Customer (IT Service Provider Sector)

Installation and configuration of Linux-based GitHub servers.
Development of standardized configuration templates and data files to simplify and automate the configuration of network devices.
Provision and implementation of standardized "Golden Configs" on 60 Juniper SRX firewalls to ensure a consistent and secure network infrastructure.

Dec 2023 - Present

2 years 2 months

Lorem ipsum dolor sit amet

German Client (IT Service Provider Sector)

Operation and management of the global MSP platform (private cloud solution for end customers) to ensure smooth and reliable service delivery.
Administration and maintenance of the Juniper SRX and FortiGate firewall and switch infrastructure.

Dec 2023 - May 2024

6 months

Lorem ipsum dolor sit amet

German Customer (IT Service Provider Sector)

Design and implementation of a secure network architecture based on Fortinet technologies, tailored to customer requirements.
Development and deployment of a robust Managed Service Provider (MSP) platform enabling efficient management and scaling of customer environments.
Integration of individual customer infrastructures into the central MSP platform to ensure seamless and secure connectivity and unified management.

Sep 2023 - Mar 2024

7 months

Lorem ipsum dolor sit amet

German Customer (IT Service Provider Sector)

Migration of a global customer's WAN from MPLS to Fortinet Secure SD-WAN, including implementation of three HUBs and 42 spokes for reliable and secure connectivity (MPLS, DCIP).
Execution of the migration of a Europe-wide WAN from MPLS to Fortinet Secure SD-WAN with a central HUB and 53 spokes, including FEX backup for network continuity (MPLS, DCIP, FEX backup).
Integration of a segmentation firewall into an existing LAN/data center infrastructure, including dynamic connection of branch offices via routing and a multi-VRF setup to improve network security and control.
Ensuring a highly available connection of two mirrored data centers to the internet via BGP to guarantee redundancy and uninterrupted connectivity.

Oct 2021 - Mar 2022

6 months

Lorem ipsum dolor sit amet

German Customer (Industry Sector)

Analysis and documentation of the existing network infrastructure architecture as a basis for optimization and migration planning.
Detailed recording and conversion of existing configurations for integration with new hardware to ensure a seamless transition.
Creation of comprehensive documentation of the existing firewall rule set for better traceability and administration.
Review and adjustment of firewall rules to improve network security and performance.
Planning and execution of the implementation and migration of Aruba CX core switches for a high-performance, scalable data center network infrastructure.
Implementation and migration of FortiGate firewalls to newer models to strengthen network security and integration into the existing infrastructure.

Aug 2021 - Sep 2021

2 months

Lorem ipsum dolor sit amet

German Customer (Advertising Industry)

Detailed analysis and recording of the existing data center and network infrastructure as a basis for migration planning for around 100 locations.
Development of complete and accurate documentation of current systems and configurations to support migration and ongoing operations.
Review and evaluation of existing configurations to identify optimization potential.
Adaptation and implementation of existing configurations in the new IT environment to ensure compatibility and performance.
Installation and configuration of new FortiGate firewalls to improve network security and performance.
Planning and implementation of the seamless migration of the existing environment to the new systems.
Identification and resolution of issues after migration to ensure stable and smooth operation.

Mar 2021 - May 2021

3 months

Lorem ipsum dolor sit amet

German Client (Real Estate Sector)

Development of a comprehensive design for a Fortinet-based network infrastructure for a self-sufficient guest WiFi solution across 10 locations.
Installation and configuration of FortiGates, FortiSwitches and access points to build a robust and secure network architecture.
Setup and optimization of SSIDs and the entire WLAN infrastructure to ensure reliable and high-performance wireless connectivity.
Implementation and operation of FortiManager and FortiAnalyzer for centralized management and analysis of security and network resources.
Customization and configuration of reporting functions in FortiAnalyzer to provide meaningful, actionable data analysis.
Ongoing operation and maintenance of the complete Fortinet infrastructure to ensure stability, security and performance.

Oct 2019 - Dec 2023

4 years 3 months

Lorem ipsum dolor sit amet

German Customer (Healthcare Sector)

Monitoring and management of the entire network infrastructure within the Network Operations Center (NOC) to ensure continuous and reliable operations across 13 locations.
Operation and maintenance of Barracuda firewalls to ensure network security and IPSec VPN availability.
Maintenance and optimization of Aruba Wireless Mobility Controllers to ensure a stable and high-performance WLAN environment.
Planning and implementation of 802.1x for port security in the LAN.
Coordination and execution of the migration to a new MPLS provider at all locations to ensure uninterrupted network connectivity.

Feb 2019 - Oct 2019

9 months

Weinheim, Germany

Director IT Architecture & Infrastructure Management

Freudenberg & Co. KG

Realignment of department structure and team organization, restructuring teams of around 25 employees to improve efficiency and collaboration.
Creation and implementation of new enterprise-wide IT standards with a focus on Microsoft and cloud-first strategies.
Management of the IT Architecture and IT Operations departments (Group IT) for data centers, networks, workplace infrastructures and service desk, with responsibility for strategic direction and operational excellence.
Management of an annual IT budget of approximately 5 million euros, including planning, allocation and monitoring of funds to ensure optimal resource utilization.

Jan 2019 - Present

7 years 1 month

Lorem ipsum dolor sit amet

Global Client (Management Consulting Sector)

Operation and management of the Network Operations Center (NOC), ensuring the smooth operation of the global network infrastructure, including LAN, WLAN, and WAN across 60 locations.
Management of the global LAN infrastructure in a heterogeneous environment consisting of Aruba, HPE, and Juniper network components.
Operation and optimization of global WiFi networks based on Aruba IAP and Aruba Central.
Administration and maintenance of the Barracuda firewall infrastructure.
Planning and deployment of 802.1x port security (role-based) for secure network access.
Transition and integration of global data centers from on-premises to Microsoft Azure, including vWAN, VPN, and firewall management across the EU, US, and APAC regions.
Development and implementation of new VLAN and IP addressing concepts for all locations to improve network structure and security.
Deployment of NetBox as an IP Address Management (IPAM) solution and central "Source of Truth" for network documentation.
Replacement of existing on-premises captive portal and RADIUS systems with a modern cloud-based authentication solution.

Jan 2018 - Jan 2019

1 year 1 month

Weinheim, Germany

Manager IT Network Services

Freudenberg & Co. KG

Management and coaching of the network team to ensure efficient and high-performance network operations.
Design and implementation of a modern campus network for the Weinheim site, focused on scalability and performance.
Collaboration with the Chief Information Security Officer (CISO) to develop and implement enhanced security standards for the network infrastructure.
Conducting contract negotiations and regular service meetings with the Managed Service Provider (MSP) to ensure quality and cost efficiency of services.

Apr 2016 - Dec 2020

4 years 9 months

Weinheim, Germany

Senior Global Network Architect

Freudenberg & Co. KG

Creation and implementation of global network architecture standards and solutions for the Freudenberg Group's WAN to ensure a consistent, future-proof network strategy.
Implementation and management of centralized peering points for all business groups to enable efficient and secure group-wide network communication.
Management of the tender and optimization of the entire global WAN, with a focus on introducing future-oriented technologies such as SD-WAN to increase flexibility and cost efficiency.
Acting as the central point of contact for all business groups on WAN topics, providing consulting and support for strategic decisions and technical challenges.

Oct 2014 - Mar 2016

1 year 6 months

Germany

Head of Network and Data Center Operations

EagleBurgmann Germany

Disciplinary leadership and development of two IT teams to ensure efficient collaboration and achievement of departmental goals.
Management of a global IT budget of approximately 2.5 million euros, including strategic planning and monitoring of expenditure.
Project management of international IT projects in the areas of network and data center operations.

Nov 2010 - Sep 2014

3 years 11 months

Germany

Team Leader Network & NOC | Project Manager WAN

EagleBurgmann Germany

Disciplinary and technical management of the German network team to ensure high service quality and efficiency.
Project management for international NOC projects.
Design and implementation of global data centers.
Recruitment and development of a globally distributed Network Operations Center (NOC) team in Germany, the USA, Japan, Singapore, India and Brazil.
Implementation of global IT service management processes for incident and service request management, change management and global monitoring.
Insourcing of managed firewalls and integration of firewall management into internal IT.
Design and introduction of a global unified communications solution based on Lync Online.
Development of a flexible, multivendor global WAN concept to ensure high availability of network connections.
Creation and implementation of a company-wide wireless standard to provide a consistent and secure WLAN infrastructure.

Oct 2008 - Oct 2010

2 years 1 month

Germany

Assistant Manager IT

Alpine Electronics Europe GmbH

Management of the German network teams at the Munich and Stuttgart locations to ensure efficient and high-quality network support.
Introduction of an incident management process using Omnitracker to improve service quality and response times.
Development and implementation of a standardized IT infrastructure and workplace concept to increase company-wide efficiency and user-friendliness.
Design and introduction of a Europe-wide Active Directory Services (ADS) domain for centralized and secure user management.
Migration of the server landscape to a virtualized environment based on VMware ESX to optimize resource utilization and flexibility.
Redesign and optimization of global IP-VPNs to improve network stability and security.
Management of an IT budget of 1.5 million euros, including planning and monitoring of expenditures to ensure cost-effectiveness.

Jan 2008 - Sep 2008

9 months

Germany

Head of IT Infrastructure

Travel Overland GmbH (Otto Freizeit u. Touristik)

Leadership and coordination of the IT teams at the Munich and Hamburg locations to ensure consistent and efficient IT support.
Harmonization and standardization of the IT infrastructure at both locations to create a consistent and seamless IT environment.
Design and implementation of a fully redundant WAN architecture to ensure maximum fail-safety and network availability.
Planning and implementation of server virtualization based on VMware ESX to improve flexibility and resource utilization.
Management of an IT budget of 2 million euros, including strategic planning, allocation and monitoring of expenditures to optimize resource usage.

Jan 2005 - Dec 2007

3 years

Germany

Teamlead IT

Travel Overland GmbH (Otto Freizeit u. Touristik)

Management of the IT department with responsibility for efficient and effective IT operations.
Participation in the e-commerce competence team to develop and implement innovative IT solutions and strategies for online retail.
Coordination and monitoring of data protection measures to ensure compliance with applicable data protection laws and guidelines.
Responsibility for planning and implementation of TÜV certification for the online web portal to ensure compliance and quality assurance of IT systems.
Design and implementation of centralized network and server monitoring to optimize performance and security of the IT infrastructure.

Mar 2001 - Dec 2004

3 years 10 months

Germany

System- and Networkadministrator

Travel Overland GmbH (Otto Freizeit u. Touristik)

Management of network and security to ensure a stable and secure operational network environment.
Planning and execution of the migration from Token Ring to a modern Ethernet infrastructure to improve network performance and compatibility.
Design and implementation of a Cisco LAN backbone at headquarters to maximize network stability and scalability.
Setup and introduction of a Windows 2000 Active Directory Services (ADS) environment for centralized user and resource management.
Planning and implementation of Microsoft Exchange 2003 to improve company-wide email and communication services.
Integration and technical takeover of the Flug.de web server farm to ensure performance and security of the online platform.

Mar 1997 - Feb 2001

4 years

Erding, Germany

System- and Networkadministrator

Bundeswehr Fliegerhorst Erding

Planning and implementation of the first Ethernet network at the Erding air base, establishing a modern and powerful network infrastructure.
Implementation and monitoring of cost and activity accounting to ensure efficient resource planning and utilization.

Summary

Design and implementation of complex IT network architectures focused on scalability and security.
Operation, optimization, and further development of existing IT networks with a focus on performance and reliability.
3rd-level support and troubleshooting of complex network issues to ensure rapid and sustainable problem resolution.

Skills

Strategic Planning And Conceptualization Of It Infrastructures Tailored To Specific Business Requirements And Long-term Corporate Goals.
Leadership And Management Of Demanding It Projects And Interdisciplinary Teams To Ensure Timely And Successful Execution.
It Service And Change Management, Including The Implementation Of Best Practices For Continuous Improvement And Adaptation.
Support For Procurement Processes For Large It Projects: Preparation Of Tender Documents, Conducting Bidder Conferences, Evaluation, And Contract Negotiations.
Network Automation (Network As Code): Script- And Template-based Deployment With Github, Ansible, Azure Bicep.
Operating Systems: Ms-windows Server, Win11 And Older, Linux Ubuntu, Rhel, Debian, Centos
Network As Code: Github, Ansible, Bicep, Yaml, Json, Python (Basics)
Virtualization: Vmware Esx, Esxi, Vsphere, Hyper-v
Network: Ethernet, Token Ring, Lan, Wan, Wifi, Dot1x, Dyn. Routing (Bgp, Ospf), Ipsec, Vpn
Monitoring: Checkmk, Zabbix, Nagios, Netflow, Op5, Prtg, Etc.
Firewall: Fortigate, Juniper Srx, Barracuda, Checkpoint, Cisco Asa, Cisco Firepower
Web-proxy: Skyhigh, Mcafee, Bluecoat, Ironport, Squid
Cloud Services: Ms-azure, Aruba Central, Cloud4wi
Ipam: Netbox, Gesto-ip