Infrastructure Design and Implementation

Key focus: Fortinet rollout / site homogenization / cloud / ISP migration

• Network analysis, design and optimization, change
• ISP changes
• Commissioning of service providers, decentralized IT support
• Setting up central management platform
• Routing optimization to dynamic routing
• Optimizing and creating firewall rules
• AWS integration / design
• MS Azure integration / design

Technologies / Tools: Fortigate, Palo Alto, WAN, SDN WAN, VPN, BGP, OSFP, Fortimanager, Panorama, Meraki, Alcatel, AWS, MS Azure, Network Architecture

Key focus: Fortinet rollout / site homogenization / DC hardware migration

• Technical procurement consulting
• Network analysis, design and optimization, change
• Planning / documentation
• Commissioning of service providers, decentralized IT support
• Setting up central management platform
• Routing optimization to dynamic routing
• Darktrace analysis
• MS Azure integration / design

Technologies / Tools: Fortigate, WAN, SD-WAN, VPN, BGP, OSFP, Fortimanager, Fortiswitch, FortiAP, Juniper SRX, Darktrace, MS Azure, AWS, Network Architecture, HP Aruba

Key focus: LAN/WAN assessment, WAN/network redesign

• Network analysis, design and optimization
• Planning / documentation

Technologies / Tools: Fortigate, Cisco, VMware, MS Azure, AWS, Fortiswitch, FortiAP, Network Architecture

Main focus: SD WAN

• Customer consulting
• Network analysis, design and optimization
• Planning / documentation

Technologies / tools: Fortigate, WAN, SDN WAN, VPN, BGP, OSPF, Cisco / HP Aruba / Netgear / TP-Link switches, network architecture

Project on behalf of Computacenter AG.

• Rollout and implementation of about 200 Fortinet firewalls (model F601E/FG-101F) in over 80 subsidiaries worldwide
• Initial documentation of the IT infrastructure, coordination with local IT, alignment with central IT
• Aligning customer requirements, reviewing existing documentation
• Preparing the local network, mostly Cisco Systems
• Migrating existing rule sets using FortiConverter
• Adjusting system, interface, and VPN settings / rule sets according to central IT requirements
• Deployment, including evenings, weekends, and holidays (depending on customer needs)
• Segmentation into VLANs and subinterfaces, separation of services
• Firewall rule set optimization, adjustments in coordination with global and local IT
• Reverse engineering, hardening firewall rule sets, applying security profiles
• Migration to central management, hypercare phase, adjustments and
• Troubleshooting
• Post-configuration of the local network, mostly Cisco Systems
• Integration into PRTG, centralized global monitoring
• Documentation
• Handover to central IT, operational phase

Technologies / tools: Fortigate, FortiManager, FortiConverter, FortiAnalyzer, WAN, SDN WAN, VPN, Cisco routing / switching, Dell servers, HP servers & HP switches, VMware, MS Windows Server, Linux Server

Project on behalf of Cancom GmbH.

• Move datacenter from Munich to Frankfurt
• Create quotes
• Divide devices to be replaced into installation or staging blocks
• Identify affected switches and import new switches into Command
• Review environment design and redesign
• Manage, plan, and document changes in ARS
• Assess risk and complexity
• Update network documentation (network diagrams, etc.)
• Coordinate with responsible departments and external service providers
• Create migration/move runbook and manage teams
• Site inspection

Technologies / Tools: Cisco Routing / Switching, Check Point Firewalls

Combined projects for 2017.

• Project Spelsberg II**

• Expand data center (DC III) at 2 locations

• Extend and configure LAN at 2 locations

• In-house redesign (switches and cabling)

• Create heatmap (signal coverage) – capture and optimize Wi-Fi (manufacturers: UniFi / Ubiquiti, Cisco Systems)

• Installation, support and operation, training and handover

• Project Spelsberg I**

• Rebuild data center and infrastructure in Schalksmühle and Butttstätt

• Design and set up firewall cluster for redundant VPN connections between Spielberg and Schalksmühle

• In-house redesign (switches and cabling)

• Create heatmap (signal coverage) – capture and optimize Wi-Fi (manufacturers: UniFi / Ubiquiti)

• Installation, support and operation, training and handover

Technologies / Tools: Cisco Routing / Switching, Network Architecture, UniFi

• Set up network and firewall ruleset from scratch
• Server environment virtualization
• Site-to-site VPN
• Integrate backup solution with Veeam
• Support and operation, training and handover

Technologies / Tools: Fortigate, Cisco Switching, HP Servers, VMware, MS Windows Server, Veeam, Trend Micro AV, Network Architecture

• Management of 35 firewall clusters
• Operation and maintenance of the Munich and Nuremberg data centers
• Setup of the central data center as a mirror data center
• Planning and setup of 3 branches/locations: India, Russia, North America

Technologies / Tools: Fortigate, Fortimanager, Forticonverter, Fortianalyzer, WAN, VPN, Cisco routing/switching, network architecture

• Project consulting / planning / implementation
• 3rd level support
• Communication interface with external companies
• T-Systems, SGI, Deutscher Lotto-Block, external planning offices
• Communication interface with specialist departments

Technologies / Tools: Cisco routing/switching