You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
Malt Strategy
Fakhri GhribiFG

Fakhri Ghribi

Network Architect

EUR 650/Tag
Paris, FR
8-15 Jahre

Durchschnittliche Reaktionszeit: 1h

Über Fakhri

Experienced NetDevOps professional specializing in network and security architecture using DevOps principles. Proficient in Cisco switches(Catalyst and Nexus), firewalls (Checkpoint, Cisco Firepower, Fortinet, Palo Alto), and Cisco ISE using OpenAPI and ERS API. Skilled in automation with Python, Terraform, and Ansible for enhanced operational efficiency. Demonstrated success in managing large-scale projects, particularly with Python and API integrations. Proficient in Git, GitLab, CI/CD pipelines, Jenkins, and Docker. Strong problem-solving and collaborative skills in fast-paced environments.

  • Französisch

    Muttersprachlich oder zweisprachig

Vor Ort möglich
Paris (bis zu 50 km)

Projekt- und Berufserfahrung

  • Thales Global Services
    NetDevOps Engineer
    LUFT- & RAUMFAHRT
    Januar 2022 - Heute (4 Jahre und 5 Monate)
    Vélizy-Villacoublay, Frankreich
    Participation in the design of the network security architecture( HLD and LLD)
    documents for a Multi-Layer architecture, incorporating Cisco ISE and Cisco
    Firepower FTD (including Cisco network devices such as Catalyst 9K XE, CiscoIOS, Cisco Nexus, and Cisco IE).

    Documentation of the NetDevOps solution, encompassing CI/CD (Continuous Integration/Continuous Deployment), IaC (Infrastructure as Code), Network Automation, Network Test Automation using PyATS, and Docker Containerization.

    Implementation of a network infrastructure automation solution based on Ansible,GitLab CI/CD, and PyATS Python Framework:

    Developing all roles in Ansible (Day 0, Day 1, Day 2) using Ansible modules,
    Jinja templates, Netconf API, and the YANG model. This includes 20 Ansible
    roles related to network configuration such as VRFs, OSPF, BGP, Access
    Lists, PIM Multicast, and Port-channels.

    Automating network test scripts using the PyATS framework.
    Defining the workflow for network service deployment using Playbooks.
    Implementing the CI/CD pipeline with GitLab-CI.

    Deploying Cisco ISE, including the development of Python scripts to interact with the OpenAPI and ERS APIs. Automating end-to-end deployment tasks, including configuring the cluster, policies, Active Directory integration, and onboarding over 10,000 cameras as MAB (MAC Authentication Bypass) devices.

    Designing and deploying Cisco Firepower in FTD mode, including configuring the Cluster Failover, virtual routers, port-channels, OSPF routing, route leaking, filtering rules, and NAT (Network Address Translation).
  • AXA SA
    Network Security Engineer
    BANKEN & VERSICHERUNGEN
    September 2020 - September 2021 (1 Jahr)
    Paris, Frankreich
    Providing technical support to the client on products and meeting their
    expectations.

    Diagnosing problems to isolate the root causes of malfunctions and proposing
    workaround solutions.

    Managing Change/Request/Task tickets in the Service Now tool, including
    configuration of network protocols such as OSPF, VLANs, Trunk/Access Ports, Spanning Tree, Static Routing, and DHCP.

    Following up on WAN link upgrade requests with Verizon and Colt.
    Acting as a technical point of contact for Verizon and Colt, handling requests for ACL configuration, IP addressing, DHCP, and other changes in WAN routers.

    Configuring Cisco Aironet Wi-Fi access points and managing incidents related to wireless network issues.

    Administering network equipment such as Cisco 5520 Wireless, Cisco Catalyst 2960/37503/3850, Cisco ISE, Nexus 9k/2k, and HP ProCurve 24/48 Ports.
    Analyzing and processing requests for firewall rule openings in Checkpoint R80.
    Managing security incidents such as firewall blocks and VPN identity agent issues.
    Managing monitoring tasks using HPE Intelligent Management Center and
    ZABBIX.
    Replenishing maintenance stock inventory. Updating incident management
    database with relevant information.
    Documenting and sharing knowledge within the team regarding incident resolution.
    Conducting knowledge transfer sessions with colleagues.
  • EDF SA
    Network Security Engineer
    ENERGIE
    Oktober 2016 - September 2020 (4 Jahre)
    Montreuil, Frankreich
    Managing network equipment in the DataCenter, including IOLAN SCS32 Console Server for console management.

    Administering network equipment such as Cisco Catalyst (2960, 3750, 3850),
    4500-X series, Cisco Nexus 9318YC, Nexus 9348GC, Nexus 2248TP-E, and HP ProCurve switches.

    Implementing a supervision server using LibreNMS-Cacti, which includes features like WeatherMap, Mail Alert, and Graphs for network monitoring and analysis.

    Acting as the technical contact for OBS (Orange Business Services) for the
    provisioning of ADSL, SDSL, and Fiber links for remote sites.

    Managing and configuring the LAN network across over 700 sites using Cisco Catalyst and HP switches.

    Handling security-related requests such as firewall rule openings in Checkpoint R80.

    Managing incidents in coordination with operational teams. Conducting H5-200 audits, which involve real-time collection of NetFlow and sFlow records from the network.

    Configuring security gateways such as Websense for web security, VadeRetro for anti-spam, and Juniper-RSA for gateway security.

    Project/Build:

    Participation in the project to migrate the IT infrastructure of CCAS (Caisse
    Centrale d'Activités Sociales) to the EDF Datacenter, involving tasks such as
    updating Cisco IOS, configuring VLANs, STP (Spanning Tree Protocol),
    Trunking, Routing, ACLs (Access Control Lists), NAT (Network Address
    Translation), SNMP (Simple Network Management Protocol), and NTP
    (Network Time Protocol).

    Participation in the project to revamp the core network of CCAS, following a 3-tier architecture. This includes configuring Nexus 9318YC switches with
    features such as vPC (Virtual Port Channel), Peer Link, RSTP (Rapid Spanning Tree Protocol), VLANs, and Trunking.
Gesamte Berufserfahrung von Fakhri ansehen

Empfehlungen

Sei die erste Person, die Fakhri empfiehlt

Teile Deine Erfahrung aus der Zusammenarbeit mit diesem Freelancer.

Diese Freelancer passen auch zu Ihren Kriterien

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Anmelden, um Profile zu sehen

Ausbildung und Abschlüsse

  • Master's Degree (M2) in Computer Science, Specializing in Networks.
    UPMC Sorbonne University & TELECOM Paris Tech
    2016
  • Master's Degree (M1) in Computer Science, Specializing in Networks.
    UPMC Sorbonne University
    2015
Ausbildung und Abschlüsse von Fakhri ansehen

Fähigkeiten (20)

Docker
Python
Linux
DevOps
Ansible
Terraform
Cloud computing
Jenkins
Git
Architecture SI
Cisco Technologies
REST API
Yang Model
Gitlab CI/CD
Firepower FMC API
Cisco ISE OpenAPI&ERSAPI
Fortinet
Palo Alto
PyATS Framework
NetDevOps

Kategorien