// whoami

About me

I'm a network security engineer with 13+ years of hands-on experience designing, implementing and maintaining enterprise-grade security infrastructure. My core strengths are next-generation firewalls, WAF, endpoint security platforms, VPN technologies and email security — with a proven track record of L3 escalation support and leading security migrations for large government and enterprise environments.

Core competencies

Firewalls & Network Security

Palo Alto NGFW FortiGate Cisco Firepower F5 BIG-IP ASM/LTM

Endpoint & Email Security

Kaspersky Security Center Symantec McAfee ePO Trend Micro Deep Security Fidelis EDR Cisco ESA

Networking & Protocols

TCP/IP OSPF BGP IPSec VPN GRE VLAN SSL/TLS DNS SMTP IDS/IPS

Security Tools & SIEM

FireEye EX/NX ArcSight SIEM SolarWinds Orion PA Expedition PCAP Analysis Web Proxy

Email Authentication

AMP SPF DKIM DMARC Email Encryption Sandboxing

Documentation

HLD / LLD As-Built Runbooks SOPs RCA Migration Plans

Experience

2020 — PRESENT

Network Security Lead Engineer

Large government authority · consulting engagement

  • L3 escalation point for all operational security incidents across the team
  • Implemented and maintained Palo Alto, FortiGate and Cisco Firepower NGFWs
  • Managed F5 BIG-IP ASM WAF and LTM — application onboarding, policy learning and enforcement
  • Led security migrations, technology refreshes and infrastructure enhancements
  • Managed site-to-site IPSec VPNs and GlobalProtect remote access
  • Optimised policies with Palo Alto Expedition; authored HLD, LLD and As-Built documentation
2018 — 2020

Senior Security Engineer

Healthcare sector holding group

  • Operated Fidelis EDR for endpoint detection and network investigation
  • Deployed highly available Symantec Endpoint Security with multiple distribution points
  • Implemented email security with AMP, SPF, DKIM, DMARC and encryption
  • Monitored and investigated security events with ArcSight SIEM and IDS/IPS
  • Managed Trend Micro Deep Security across virtual server and desktop estates
2017 — 2018

Senior Security Engineer

Managed security services provider · on-site delivery

  • Delivered on-site security engineering supporting enterprise security operations and infrastructure
2016 — 2017

Senior Security Analyst

Global IT services company

  • Security analysis, monitoring and incident response for enterprise client environments
2013 — 2016

System Administrator

Automotive manufacturer

  • Administered IT systems and infrastructure supporting day-to-day operations and security compliance

Certifications & education

CERTIFICATION

Certified Ethical Hacker (CEH)

Plus ITIL Foundation and CCNA training.

EDUCATION

BSc Information Technology

Preceded by a Diploma in Computer Science & Engineering.