// whoami
About me
I'm a network security engineer with 13+ years of hands-on experience designing, implementing and maintaining enterprise-grade security infrastructure. My core strengths are next-generation firewalls, WAF, endpoint security platforms, VPN technologies and email security — with a proven track record of L3 escalation support and leading security migrations for large government and enterprise environments.
Core competencies
Firewalls & Network Security
Palo Alto NGFW FortiGate Cisco Firepower F5 BIG-IP ASM/LTM
Endpoint & Email Security
Kaspersky Security Center Symantec McAfee ePO Trend Micro Deep Security Fidelis EDR Cisco ESA
Networking & Protocols
TCP/IP OSPF BGP IPSec VPN GRE VLAN SSL/TLS DNS SMTP IDS/IPS
Security Tools & SIEM
FireEye EX/NX ArcSight SIEM SolarWinds Orion PA Expedition PCAP Analysis Web Proxy
Email Authentication
AMP SPF DKIM DMARC Email Encryption Sandboxing
Documentation
HLD / LLD As-Built Runbooks SOPs RCA Migration Plans
Experience
Network Security Lead Engineer
Large government authority · consulting engagement
- L3 escalation point for all operational security incidents across the team
- Implemented and maintained Palo Alto, FortiGate and Cisco Firepower NGFWs
- Managed F5 BIG-IP ASM WAF and LTM — application onboarding, policy learning and enforcement
- Led security migrations, technology refreshes and infrastructure enhancements
- Managed site-to-site IPSec VPNs and GlobalProtect remote access
- Optimised policies with Palo Alto Expedition; authored HLD, LLD and As-Built documentation
Senior Security Engineer
Healthcare sector holding group
- Operated Fidelis EDR for endpoint detection and network investigation
- Deployed highly available Symantec Endpoint Security with multiple distribution points
- Implemented email security with AMP, SPF, DKIM, DMARC and encryption
- Monitored and investigated security events with ArcSight SIEM and IDS/IPS
- Managed Trend Micro Deep Security across virtual server and desktop estates
Senior Security Engineer
Managed security services provider · on-site delivery
- Delivered on-site security engineering supporting enterprise security operations and infrastructure
Senior Security Analyst
Global IT services company
- Security analysis, monitoring and incident response for enterprise client environments
System Administrator
Automotive manufacturer
- Administered IT systems and infrastructure supporting day-to-day operations and security compliance
Certifications & education
Certified Ethical Hacker (CEH)
Plus ITIL Foundation and CCNA training.
BSc Information Technology
Preceded by a Diploma in Computer Science & Engineering.