Schlagwörter
Skills
Education and Trainings
Networking Participated in Cisco Live conferences in Milan, Berlin and Barcelona
2003 – 2019 CCDE (CCIE DESIGN), Cisco Certified Design Expert (written)
CCIE ROUTING & SWITCHING #24171, Cisco Certified Internetworking Expert
CCNP, Cisco Certified Networking Professional, comprising four major exams:
1) BSCI: Building Scalable Cisco Internetworks (BGP, OSPF, EIGRP, RIP, IS-IS, IPv6)
2) BCMSN: Building Cisco Multilayer Switching Networks (VTP, STP, VLAN, CEF, HSRP)
3) ISCW: Implementing Secure Converged WANs (DSL, MPLS, IPsec, VPN, SDM, AAA)
4) ONT: Optimizing Converged Cisco Networks (VoIP, Call Manager, QoS, NBAR, WLAN)
CCDP, Cisco Certified Design Professional
CCDA, Cisco Certified Design Associate
CCNA, Cisco Certified Network Associate
Security Participated in Check Point CPX conferences in Nice and Zürich
2003 – 2019 CCSM, CCSE, CCSA, Check Point Certified Security Master / Expert / Administrator
GCFW, GIAC Certified Firewall Analyst 502 (SANS institute, New York)
GSEC, GIAC Certified Security Essentials 401 (SANS Institute, London)
CISSP, Computer Information Systems Security Professional (Id: 82631)
GCIH, GIAC Certified Incident Handler 504 (SANS Institute, London)
1997 – 2002 M.Sc. Degree in Computer Science, Royal Institute of Technology, Stockholm.
Exchange year, Eidgenössische Technische Hochschule (ETH) Zürich, Switzerland.
M.Sc. Thesis project, Stanford University, California, USA.
1997 – 2001 M.Sc. Degree in Business Administration, MBA, Stockholm School of Business.
2003 – 2019 CCDE (CCIE DESIGN), Cisco Certified Design Expert (written)
CCIE ROUTING & SWITCHING #24171, Cisco Certified Internetworking Expert
CCNP, Cisco Certified Networking Professional, comprising four major exams:
1) BSCI: Building Scalable Cisco Internetworks (BGP, OSPF, EIGRP, RIP, IS-IS, IPv6)
2) BCMSN: Building Cisco Multilayer Switching Networks (VTP, STP, VLAN, CEF, HSRP)
3) ISCW: Implementing Secure Converged WANs (DSL, MPLS, IPsec, VPN, SDM, AAA)
4) ONT: Optimizing Converged Cisco Networks (VoIP, Call Manager, QoS, NBAR, WLAN)
CCDP, Cisco Certified Design Professional
CCDA, Cisco Certified Design Associate
CCNA, Cisco Certified Network Associate
Security Participated in Check Point CPX conferences in Nice and Zürich
2003 – 2019 CCSM, CCSE, CCSA, Check Point Certified Security Master / Expert / Administrator
GCFW, GIAC Certified Firewall Analyst 502 (SANS institute, New York)
GSEC, GIAC Certified Security Essentials 401 (SANS Institute, London)
CISSP, Computer Information Systems Security Professional (Id: 82631)
GCIH, GIAC Certified Incident Handler 504 (SANS Institute, London)
1997 – 2002 M.Sc. Degree in Computer Science, Royal Institute of Technology, Stockholm.
Exchange year, Eidgenössische Technische Hochschule (ETH) Zürich, Switzerland.
M.Sc. Thesis project, Stanford University, California, USA.
1997 – 2001 M.Sc. Degree in Business Administration, MBA, Stockholm School of Business.
Projekthistorie
Reisebereitschaft
Verfügbar in den Ländern
Schweiz
Sonstige Angaben
Work Experience as Network Consultant 3/2017 – now Senior core network engineer and network solutions architect, Swisscom, Basel, Bern and Zürich, Switzerland. (www.swisscom.com)
Project 19: Check Point / NSX infrastructure review project. Went through design and setup of one of Europe’s biggest Check Point clusters running version R80.10 / R80.10M with vSEC / CloudGuard on NSX and 13500, 15500 and VSX platforms trying to find improvements. Data center based on Arista switches.
Project 18: Designed and setup several larger SDN / Cisco ACI multi-pod and multi-site installations with multiple tenants on Nexus 9200, 9300 and 9500 switches running iNX-OS version 13.1, 13.2, 14.0 and 14.1 and multiple APICs running software version 3.1, 3.2, 4.0 and 4.1. Deploying boarder routers Catalyst 6800 and Nexus 7000, Multicast BiDirectional PIM with phantom RP. Using technologies like Multisite Orchestrator, Ansible, Python, VXLAN, EVPN, EPG, Bridge Domains, MP-BGP and VMware ESXi 6.7.0. Also worked with Fortinet, Palo Alto and Sophos firewalls of different sizes.
Project 17: Worked with data centre development, migrations of large MPLS and multiple VRF networks and network security on all kinds of Cisco platforms but notably ASR 1000 and 9000, all kinds of Catalyst switches and Nexus 2000, 5000, 6000, 7000 and 9000. For security Check Point and Stonegate / Forcepoint firewalls with Tufin and for network management Cisco Prime Infrastructure, IBM Tivoli and a range of other network and security related applications.
5/2016 – 11/2017 Project 16: Senior network and solution architect at one of Europe’s largest energy companies Vattenfall, Stockholm, Sweden, partially Amsterdam, Holland, and Hamburg / Berlin, Germany. Cisco, Extreme networks, HP switches, routers, IPSes (TippingPoint) and Polycom video conferencing equipment. Redesigned and migrated large data centre in Amsterdam to Stockholm. Worked with Check Point 13500, 12200, 5600 and 4200 firewalls. Maintained and upgraded Cisco Prime Infrastructure from version 1.3 to 3.1.6. Responsible for wireless network infrastructure and upgrade and maintenance of Cisco Wireless LAN Controllers (WLCs) and Access Points (APs). Lead a WAN MPLS network migration project changing from one provider to another. (www.vattenfall.com)
9/2013 – 8/2016 Project 15: Senior network/system engineer and designer at Bank of International Settlements, Basel, Switzerland. LAN, WAN, SAN and firewall renewal projects. Lead a network ITT with 6-7 bidding integrators and a budget of 5 million CHF introducing NAC through Cisco ISE 2.0 and SGT, Cisco Prime 3.0 / LMS 4.2.5 and OTV in a Catalyst 4500 and Nexus 7K/5K/2K-based network. Managing Cisco ASA 5505, 5510, 5515, 5520 firewall clusters Palo Alto and Check Point 12200, 4200, 2200-clusters running R77.30 Gaia with ClusterXL, IPS, Identity awareness and E80.62 EPS Gaia with Firewall-1/VPN, full disk-encryption, compliance, malware and port protection software blades. Initial testing of R80 for the management servers. Looked at SDN / ACI / NSX for the future network design. Organised a POC to compare FireEye and Check Point APT / Threat Emulation (TE100X, TE250X and TE1000X). Also worked with VDI and vBlock 740 with vMax, F5 BIG-IP loadbalancers (1600 and 3600 LTM), Riverbed WAN optimizers, Cisco ONS 15454, Infoblox DNS appliances TE-810 and TE-1410, Bluecoat proxies and packet shapers (Packeteer) with IntelligenceCenter 3.3, IBM QRadar, Arbor Networks IP Guardian and Cisco MDS 9509 SAN switches. Participated in a project regarding Entrust PKI and 2-factor authentication. (www.bis.org)
2/2013 – 8/2013 Project 14: Network architect and designer at Isabel, finance company within the banking sector, Brussels, Belgium. Redesign, POC-testing and implementation of a new data centre interconnect (DCI) between four data centres based on Nexus 7004 switches with supervisor 2E and 2248TP FEXes, OTV, VDC, MACSec, vPC and MPLS VPNs. (www.isabel.eu)
12/2012 – 2/2013 Project 13: Network test engineer at British Telecom in Zaventem, Belgium. A short 45-day project within GPS satellite navigation systems (EGNOS / Gallileo) and MPLS networks. (www.bt.be)
7/2012 – 12/2012 Project 12: Network architect and designer at Euroclear Group in Brussels, Belgium (former part of J.P.Morgan Investment Bank). Administrated and developed a world-wide MPLS network and participated in projects for QoS end-to-end policy for 7200, 6500, 3750 and 2900 switches and routers, multicast implementation, IPSEC and PKI infrastructure and migration from Catalyst to Nexus platform in distribution and access layers, BYOD and FCoE projects. Worked with Riverbed Steelhead WAN optimizers 1020, 2050, 3520 and 5050, Infoguard line encryptors, CrossBeam, Check Point, Infovista and Spirent traffic generators. (www.euroclear.com)
5/2012 – 7/2013 Project 11: Network architect and project manager (PM), INAMI / RIZIV, governmental organisation in Brussels, Belgium. Network project comprising redesign and migration of a data centre and increasing the organisation’s cloud readiness (cloud computing through IaaS) and study of converging network with FCoE. Risk assessment, Requirements, HLD and LLD document written. Worked with Cisco ASA 5520, Juniper SSG-350 and Checkpoint 12207 firewalls with 75.40 Gaia, 75.30 Splat, Microsoft UAG / TMG, NetFlow Scrutinizer, MRTG, Cisco Nexus 7010 (NX-OS 6.0.1), Nexus 5548 UP, Nexus 1000V, Cisco Catalyst 4900M, 3750E, 3560G and 2960G, CBS 3020, Cisco VSM, VEM and VSG with vPath on ESXi running on HP blade centres (G6 and G7 servers), Fiberchannel SAN with Brocade switches and iSCSI, Cisco WLC 5500 and WCS. (www.inami.be)
9/2011 – 4/2012 Project 10: Network architect and project manager (PM), Société Générale Corporate Investment Banking in Paris, France in the domain High Frequency Trading (HFT / UHFT). Project and team leader for the design (HLD and LLD documents) and implementation of a new pan-European ultra low latency 10 Gigabit Ethernet multicast network for proprietary trading connecting all the major stock exchanges (LSE, Euronext, LIFFE, BATS, NASDAQ/OMX, NYSE, Deutsche Börse, SWX, CME etc.) and their co-location data centres for direct market access (DMA) via 10 G Ethernet over DWDM WAN-links (dark and lit fiber) on Cisco Nexus 3064-X, Catalyst 6500 with supervisor VSS 720 10 GE, 6708 and 6716 line cards, Cisco 4900M and HP G7 servers with Solarflare 5122F and Mellanox NICs with PTP hardware support. POC-testing with Arista 7124SX, Arista 7050S, Gnodal, IBM BNT G8124 and G8264. Multicast with PIM sparse-mode and MSDP, routing through BGP and OSPF, network monitoring through Corvil CNE 1000 with CorvilNet 7.2 and market decoders, Cacti and Netscout. POC-testing with IXIA and Spirent traffic generators. Budget responsibility of 4 million EUR. (www.sgcib.com)
8/2011 – 9/2011 Project 9: Network architect and designer, IBM in Paris, La Défense, and Nice, France. HLD and LLD document writing. Redesign of two existing data centres for a large insurance company replacing legacy equipment with new Nexus 7010 and 7018 switches (NX-OS 5.2.1) with M1 and F1 modules, ASR 9000 and Catalyst 6500 VSS supervisors. Setup of testbed and testing of technologies like VPC, FabricPath / TRILL for a spanning-tree loop-free design, VDC, FCoE, ISSU, UCS, MPLS, Nexus 4001 with IBM blade centres, WCCPv2 and Overlay Transport Virtualization (OTV). (www.ibm.fr)
9/2010 – 8/2011 Project 8: Senior network engineer at SIX Group / Swiss Stock Exchange in Zürich, Switzerland. Migrating three old data centres into a new deploying the following technologies: Fully virtualized network divided over three sites with a MPLS VPN and OSPF super backbone, dual service-edge design (no single fusion point) in active-active setup with a standby DR site, BGP, MP-BGP, OSPF, PIM-SM multicast in ASM mode with MSDP, Checkpoint Provider-1 R70 with VSX appliances (R65 / R67), HP OpenView 9, Corvil, NetFlow, NetQoS, Infoguard 10 Gbit Line Encryptors, Infoblox 4.1, Cisco 7201 routers (the route reflectors) and 6509-E (IOS 12.2(33) SXI6) switches with supervisor 720-3BXL, PFC3BXL and 6708 line cards, Cisco Nexus 5020 with NX-OS 5.1, Cisco ASA 5505, VSA and ACE 3.3 load balancer modules (one-armed mode) managed by Cisco ANM 4.1. Design and development of the new Swiss stock exchange low latency multicast network with co-located server farms for high frequency and algorithmic trading (HFT / HPT) based on Arista equipment, Cisco 7000 Nexus, Juniper Netscreen firewalls, Infiniband and VMA cards. High level design (HLD) and low level design (LLD) document writing. (www.six-group.com)
6/2008 – 9/2010 Project 7: Senior security and network engineer, Axa Bank / Axa Technologies, Woluwe, Belgium, and
Cologne, Germany. Managing Cisco PIX / ASA and CheckPoint firewalls (R60, R65 and R70 NGX
FW-1/VPN-1/Provider-1 with IPSO 4.1 and 4.2, SPLAT or FreeBSD) with site-to-site and remote
access VPN, Juniper access switches EX4200 and Cisco low-, mid- and high-range routers (ASR and ISR series) and switches with Sup32, Sup720, MSFC 2 & 3 load balancers: CSM Content Switch Module, CSS Content Services Switches and Cisco ACE Application Control Engine. Cisco PDM / ADSM for FWSM (6500 switches), Cisco Security Manager CSM 3.2, Cisco Wide Area Application Services WAAS, Cisco ACS, Ciscoworks, Linksys Wireless LAN, Blue coat proxy, WebSense, SNMPc, Spectrum, eHealth, Envision, PackeTeer, TripWire, AlgoSec 5.1, Eventia reporter, Vital QIP DNS server, Cisco DWDM, nGenious Infinistream / NetScout 4.6 network sniffer, IronPort S660 proxy / mail gateway and IBM / HP blade centres. This in a complete new data centre using virtualisation through VRF Lite in an ITIL compliant organisation. (www.axa.com)
6/2007 – 6/2008 Project 6: Test engineer at Society for Worldwide Interbank Financial Telecommunication, SWIFT,
La Hulpe, Belgium. Setup and configuration of a testbed for the new SWIFT MPLS backbone network.
Worked with SafeNet 10 Gbit OC-192 and OC-3 line encryptors, Cisco 12000 GSR and CRS-1 backbone routers and Cisco 7200 / 6500 / 3845 / 3600 / 2811 routers and layer-3 switches for the production and OOB network. Configured Cisco IOS-XR, IS-IS, BGP, EIGRP, MPLS, MPLS traffic engineering tunnels, Pseudowires, RSVP, QoS, IPsec, Cisco Traffic Generator / Pagent, iPerf, Nagios 2.9 and Test Director / Quality Center. (www.swift.com)
1/2007 – 6/2007 Project 5: Network engineer for the EMEA region at ChevronTexaco Corporation, Brussels, Rotterdam, Luxembourg and London. Responsible for design, configuration and documentation of networks consisting of Cisco routers and switches, PIX firewalls, WAN links over leased lines or DSL / ISDN-connections, Riverbed Steelhead application accelerator, VoIP and Alcatel PBX’s 44000 and OmniPCX. Managing AS/400-servers and a Legato backup system, monitoring network traffic and troubleshooting network problems. Member of the EMEA networking security team and providing training for other members of staff. Network operations responsible in Benelux where a part of the organization comprising 300 employees was divested and sold out to an Israelian investment company called Delek. The project included readdressing of the whole LAN, setup of CheckPoint VPN-1 firewall NGX R62 running on Nokia IPSO 4.2 and a Blue coat SG200 internet proxy. Project was driven in corporation with Orange telecom. (www.chevron.com)
9/2005 – 1/2007 Project 4: Network engineer at ING bank, Brussels, Belgium. Responsible of third level support,
routing, switching, firewalls, DNS and proxy. Working with Cisco equipment and IBM / HP Blade centres using Cisco IOS, CatOS, Cisco SDM (Security Device Manager), SMARTS, Cacti, CiscoWorks, NetScout, Microsoft and Bind DNS, QIP, DHCP, WINS, SMTP, MPLS, Squid / ISA proxy, VoIP, MPLS, IPSec, Ethereal/Wireshark, Solaris and Linux. Managing NetScreen (ISG 2000) firewalls and testing F5 BIG-IP load balancer equipment. Working on critical network infrastructure containing all coming Cisco router and switches models in an ITIL compliant organisation. (www.ing.be)
1/2004 – 9/2005 Project 3: Security engineer and analyst at Telindus/Belgacom, Leuven, Belgium. Specialised in
firewalls, intrusion detection and networking. Worked with ArcSight, CheckPoint FW-1 NG, Cisco IOS/IDS/IPS/PIX, Solaris, Linux, WebSense, Perl, Remedy, VB and Bash. Participated in SLA/OLA establishment with key customers and became familiar with ITIL (ver 3) best practice procedures. Coached and instructed newcomers. (www.telindus.be)
2001 – 2002 Project 2: Network designer and implementer, Stanford University, California, USA. Designed and
implemented a wireless 802.11b campus network with access control, mobile IP with seamless layer-3 roaming and selection of upstream network provider. The network was based on Linux servers and clients, Cisco routers, Apache web servers, SQL databases and Kerberos authentication.
2000 – 2001 Project 1: Freelancing providing services within computer networks, Stockholm, Sweden. Projects for
the companies Google, Columbitech (www.columbitech.com) and Dynarc. (www.dynarc.com) Language Proficiency Language Reading Writing Speaking
English C2 C2 C2
German C2 C2 C2
Swiss-German B2 A2 A1
French C2 C2 C2
Spanish C2 C1 C§
Dutch A1 A1 A1
Portuguese A1 A1 A1
Swedish Native Native Native
2019 Portuguese language studies at Migrosschule, Basel, Switzerland. (beginner)
2015 – 2019 Swiss-German language studies at Migrosschule, Basel, Switzerland. (Level 3 of 4)
2013 Spanish language studies at Instituto de Columbus, San José, Costa Rica. (Level 7 of 8)
2012 Spanish language studies at Instituto de Berlitz, Santo Domingo, Dominican Republic. (Level 4 of 8)
2007 Dutch language studies at EPFC and Centre de Langue de Woluwe in Brussels.
2003 – 2004 French language studies at Alliance Française, Paris. (Niveau supérieur 9 of 9, Diplôme de Langue)
1999 German language studies at the Göthe Institut, Munich. (Oberstufe, highest level) Other Merits 2017 – now Competing in squash on Swiss national level and working for Allschwil Squash Club.
2013 – 2016 Active in squash, badminton and football sports sections at Bank of International Settlements.
2009 – 2012 Webmaster for Svenska Klubben Brussels. (www.svenskaklubben.be)
2007 Founded the limited company Reward Networks SPRL in Belgium.
2005 – 2006 Participated in Brussels marathon and semi-marathon.
2003 Accepted by Nova 100 in a selection process based on interviews measuring academic achievements,
interpersonal skills and entrepreneurial abilities. (www.nova100.se)
2000 Extensive group project over a semester in the course “Application development project”. The task
was to develop a web based fair navigation system based on Java, C and WAP. The project was
appointed to “The best project of the course”.
1999 Students’ representative, the Swedish central organisation of salaried employees, SIF. Responsible for over 600 student members. (www.sif.se)
1996 – 1997 Military service as group commander in the military police at K1 in Stockholm. The training included studies of penal law corresponding to 10 university credits.
1995 – 1996 Led and trained a swimming group, Tureberg’s IF swimming club, Sollentuna.
1993 – 1996 Graduated with distinction from the natural sciences program at Rudbecksskolan senior high
school, Sollentuna. Scored 1.9 of 2.0 on the Swedish national test for university studies.
1986 – 1996 Competed in swimming on international level. Participated in competitions in Europe, USA and Australia. A Swedish record and silver medal in the Swedish youth championship as best results.
Project 19: Check Point / NSX infrastructure review project. Went through design and setup of one of Europe’s biggest Check Point clusters running version R80.10 / R80.10M with vSEC / CloudGuard on NSX and 13500, 15500 and VSX platforms trying to find improvements. Data center based on Arista switches.
Project 18: Designed and setup several larger SDN / Cisco ACI multi-pod and multi-site installations with multiple tenants on Nexus 9200, 9300 and 9500 switches running iNX-OS version 13.1, 13.2, 14.0 and 14.1 and multiple APICs running software version 3.1, 3.2, 4.0 and 4.1. Deploying boarder routers Catalyst 6800 and Nexus 7000, Multicast BiDirectional PIM with phantom RP. Using technologies like Multisite Orchestrator, Ansible, Python, VXLAN, EVPN, EPG, Bridge Domains, MP-BGP and VMware ESXi 6.7.0. Also worked with Fortinet, Palo Alto and Sophos firewalls of different sizes.
Project 17: Worked with data centre development, migrations of large MPLS and multiple VRF networks and network security on all kinds of Cisco platforms but notably ASR 1000 and 9000, all kinds of Catalyst switches and Nexus 2000, 5000, 6000, 7000 and 9000. For security Check Point and Stonegate / Forcepoint firewalls with Tufin and for network management Cisco Prime Infrastructure, IBM Tivoli and a range of other network and security related applications.
5/2016 – 11/2017 Project 16: Senior network and solution architect at one of Europe’s largest energy companies Vattenfall, Stockholm, Sweden, partially Amsterdam, Holland, and Hamburg / Berlin, Germany. Cisco, Extreme networks, HP switches, routers, IPSes (TippingPoint) and Polycom video conferencing equipment. Redesigned and migrated large data centre in Amsterdam to Stockholm. Worked with Check Point 13500, 12200, 5600 and 4200 firewalls. Maintained and upgraded Cisco Prime Infrastructure from version 1.3 to 3.1.6. Responsible for wireless network infrastructure and upgrade and maintenance of Cisco Wireless LAN Controllers (WLCs) and Access Points (APs). Lead a WAN MPLS network migration project changing from one provider to another. (www.vattenfall.com)
9/2013 – 8/2016 Project 15: Senior network/system engineer and designer at Bank of International Settlements, Basel, Switzerland. LAN, WAN, SAN and firewall renewal projects. Lead a network ITT with 6-7 bidding integrators and a budget of 5 million CHF introducing NAC through Cisco ISE 2.0 and SGT, Cisco Prime 3.0 / LMS 4.2.5 and OTV in a Catalyst 4500 and Nexus 7K/5K/2K-based network. Managing Cisco ASA 5505, 5510, 5515, 5520 firewall clusters Palo Alto and Check Point 12200, 4200, 2200-clusters running R77.30 Gaia with ClusterXL, IPS, Identity awareness and E80.62 EPS Gaia with Firewall-1/VPN, full disk-encryption, compliance, malware and port protection software blades. Initial testing of R80 for the management servers. Looked at SDN / ACI / NSX for the future network design. Organised a POC to compare FireEye and Check Point APT / Threat Emulation (TE100X, TE250X and TE1000X). Also worked with VDI and vBlock 740 with vMax, F5 BIG-IP loadbalancers (1600 and 3600 LTM), Riverbed WAN optimizers, Cisco ONS 15454, Infoblox DNS appliances TE-810 and TE-1410, Bluecoat proxies and packet shapers (Packeteer) with IntelligenceCenter 3.3, IBM QRadar, Arbor Networks IP Guardian and Cisco MDS 9509 SAN switches. Participated in a project regarding Entrust PKI and 2-factor authentication. (www.bis.org)
2/2013 – 8/2013 Project 14: Network architect and designer at Isabel, finance company within the banking sector, Brussels, Belgium. Redesign, POC-testing and implementation of a new data centre interconnect (DCI) between four data centres based on Nexus 7004 switches with supervisor 2E and 2248TP FEXes, OTV, VDC, MACSec, vPC and MPLS VPNs. (www.isabel.eu)
12/2012 – 2/2013 Project 13: Network test engineer at British Telecom in Zaventem, Belgium. A short 45-day project within GPS satellite navigation systems (EGNOS / Gallileo) and MPLS networks. (www.bt.be)
7/2012 – 12/2012 Project 12: Network architect and designer at Euroclear Group in Brussels, Belgium (former part of J.P.Morgan Investment Bank). Administrated and developed a world-wide MPLS network and participated in projects for QoS end-to-end policy for 7200, 6500, 3750 and 2900 switches and routers, multicast implementation, IPSEC and PKI infrastructure and migration from Catalyst to Nexus platform in distribution and access layers, BYOD and FCoE projects. Worked with Riverbed Steelhead WAN optimizers 1020, 2050, 3520 and 5050, Infoguard line encryptors, CrossBeam, Check Point, Infovista and Spirent traffic generators. (www.euroclear.com)
5/2012 – 7/2013 Project 11: Network architect and project manager (PM), INAMI / RIZIV, governmental organisation in Brussels, Belgium. Network project comprising redesign and migration of a data centre and increasing the organisation’s cloud readiness (cloud computing through IaaS) and study of converging network with FCoE. Risk assessment, Requirements, HLD and LLD document written. Worked with Cisco ASA 5520, Juniper SSG-350 and Checkpoint 12207 firewalls with 75.40 Gaia, 75.30 Splat, Microsoft UAG / TMG, NetFlow Scrutinizer, MRTG, Cisco Nexus 7010 (NX-OS 6.0.1), Nexus 5548 UP, Nexus 1000V, Cisco Catalyst 4900M, 3750E, 3560G and 2960G, CBS 3020, Cisco VSM, VEM and VSG with vPath on ESXi running on HP blade centres (G6 and G7 servers), Fiberchannel SAN with Brocade switches and iSCSI, Cisco WLC 5500 and WCS. (www.inami.be)
9/2011 – 4/2012 Project 10: Network architect and project manager (PM), Société Générale Corporate Investment Banking in Paris, France in the domain High Frequency Trading (HFT / UHFT). Project and team leader for the design (HLD and LLD documents) and implementation of a new pan-European ultra low latency 10 Gigabit Ethernet multicast network for proprietary trading connecting all the major stock exchanges (LSE, Euronext, LIFFE, BATS, NASDAQ/OMX, NYSE, Deutsche Börse, SWX, CME etc.) and their co-location data centres for direct market access (DMA) via 10 G Ethernet over DWDM WAN-links (dark and lit fiber) on Cisco Nexus 3064-X, Catalyst 6500 with supervisor VSS 720 10 GE, 6708 and 6716 line cards, Cisco 4900M and HP G7 servers with Solarflare 5122F and Mellanox NICs with PTP hardware support. POC-testing with Arista 7124SX, Arista 7050S, Gnodal, IBM BNT G8124 and G8264. Multicast with PIM sparse-mode and MSDP, routing through BGP and OSPF, network monitoring through Corvil CNE 1000 with CorvilNet 7.2 and market decoders, Cacti and Netscout. POC-testing with IXIA and Spirent traffic generators. Budget responsibility of 4 million EUR. (www.sgcib.com)
8/2011 – 9/2011 Project 9: Network architect and designer, IBM in Paris, La Défense, and Nice, France. HLD and LLD document writing. Redesign of two existing data centres for a large insurance company replacing legacy equipment with new Nexus 7010 and 7018 switches (NX-OS 5.2.1) with M1 and F1 modules, ASR 9000 and Catalyst 6500 VSS supervisors. Setup of testbed and testing of technologies like VPC, FabricPath / TRILL for a spanning-tree loop-free design, VDC, FCoE, ISSU, UCS, MPLS, Nexus 4001 with IBM blade centres, WCCPv2 and Overlay Transport Virtualization (OTV). (www.ibm.fr)
9/2010 – 8/2011 Project 8: Senior network engineer at SIX Group / Swiss Stock Exchange in Zürich, Switzerland. Migrating three old data centres into a new deploying the following technologies: Fully virtualized network divided over three sites with a MPLS VPN and OSPF super backbone, dual service-edge design (no single fusion point) in active-active setup with a standby DR site, BGP, MP-BGP, OSPF, PIM-SM multicast in ASM mode with MSDP, Checkpoint Provider-1 R70 with VSX appliances (R65 / R67), HP OpenView 9, Corvil, NetFlow, NetQoS, Infoguard 10 Gbit Line Encryptors, Infoblox 4.1, Cisco 7201 routers (the route reflectors) and 6509-E (IOS 12.2(33) SXI6) switches with supervisor 720-3BXL, PFC3BXL and 6708 line cards, Cisco Nexus 5020 with NX-OS 5.1, Cisco ASA 5505, VSA and ACE 3.3 load balancer modules (one-armed mode) managed by Cisco ANM 4.1. Design and development of the new Swiss stock exchange low latency multicast network with co-located server farms for high frequency and algorithmic trading (HFT / HPT) based on Arista equipment, Cisco 7000 Nexus, Juniper Netscreen firewalls, Infiniband and VMA cards. High level design (HLD) and low level design (LLD) document writing. (www.six-group.com)
6/2008 – 9/2010 Project 7: Senior security and network engineer, Axa Bank / Axa Technologies, Woluwe, Belgium, and
Cologne, Germany. Managing Cisco PIX / ASA and CheckPoint firewalls (R60, R65 and R70 NGX
FW-1/VPN-1/Provider-1 with IPSO 4.1 and 4.2, SPLAT or FreeBSD) with site-to-site and remote
access VPN, Juniper access switches EX4200 and Cisco low-, mid- and high-range routers (ASR and ISR series) and switches with Sup32, Sup720, MSFC 2 & 3 load balancers: CSM Content Switch Module, CSS Content Services Switches and Cisco ACE Application Control Engine. Cisco PDM / ADSM for FWSM (6500 switches), Cisco Security Manager CSM 3.2, Cisco Wide Area Application Services WAAS, Cisco ACS, Ciscoworks, Linksys Wireless LAN, Blue coat proxy, WebSense, SNMPc, Spectrum, eHealth, Envision, PackeTeer, TripWire, AlgoSec 5.1, Eventia reporter, Vital QIP DNS server, Cisco DWDM, nGenious Infinistream / NetScout 4.6 network sniffer, IronPort S660 proxy / mail gateway and IBM / HP blade centres. This in a complete new data centre using virtualisation through VRF Lite in an ITIL compliant organisation. (www.axa.com)
6/2007 – 6/2008 Project 6: Test engineer at Society for Worldwide Interbank Financial Telecommunication, SWIFT,
La Hulpe, Belgium. Setup and configuration of a testbed for the new SWIFT MPLS backbone network.
Worked with SafeNet 10 Gbit OC-192 and OC-3 line encryptors, Cisco 12000 GSR and CRS-1 backbone routers and Cisco 7200 / 6500 / 3845 / 3600 / 2811 routers and layer-3 switches for the production and OOB network. Configured Cisco IOS-XR, IS-IS, BGP, EIGRP, MPLS, MPLS traffic engineering tunnels, Pseudowires, RSVP, QoS, IPsec, Cisco Traffic Generator / Pagent, iPerf, Nagios 2.9 and Test Director / Quality Center. (www.swift.com)
1/2007 – 6/2007 Project 5: Network engineer for the EMEA region at ChevronTexaco Corporation, Brussels, Rotterdam, Luxembourg and London. Responsible for design, configuration and documentation of networks consisting of Cisco routers and switches, PIX firewalls, WAN links over leased lines or DSL / ISDN-connections, Riverbed Steelhead application accelerator, VoIP and Alcatel PBX’s 44000 and OmniPCX. Managing AS/400-servers and a Legato backup system, monitoring network traffic and troubleshooting network problems. Member of the EMEA networking security team and providing training for other members of staff. Network operations responsible in Benelux where a part of the organization comprising 300 employees was divested and sold out to an Israelian investment company called Delek. The project included readdressing of the whole LAN, setup of CheckPoint VPN-1 firewall NGX R62 running on Nokia IPSO 4.2 and a Blue coat SG200 internet proxy. Project was driven in corporation with Orange telecom. (www.chevron.com)
9/2005 – 1/2007 Project 4: Network engineer at ING bank, Brussels, Belgium. Responsible of third level support,
routing, switching, firewalls, DNS and proxy. Working with Cisco equipment and IBM / HP Blade centres using Cisco IOS, CatOS, Cisco SDM (Security Device Manager), SMARTS, Cacti, CiscoWorks, NetScout, Microsoft and Bind DNS, QIP, DHCP, WINS, SMTP, MPLS, Squid / ISA proxy, VoIP, MPLS, IPSec, Ethereal/Wireshark, Solaris and Linux. Managing NetScreen (ISG 2000) firewalls and testing F5 BIG-IP load balancer equipment. Working on critical network infrastructure containing all coming Cisco router and switches models in an ITIL compliant organisation. (www.ing.be)
1/2004 – 9/2005 Project 3: Security engineer and analyst at Telindus/Belgacom, Leuven, Belgium. Specialised in
firewalls, intrusion detection and networking. Worked with ArcSight, CheckPoint FW-1 NG, Cisco IOS/IDS/IPS/PIX, Solaris, Linux, WebSense, Perl, Remedy, VB and Bash. Participated in SLA/OLA establishment with key customers and became familiar with ITIL (ver 3) best practice procedures. Coached and instructed newcomers. (www.telindus.be)
2001 – 2002 Project 2: Network designer and implementer, Stanford University, California, USA. Designed and
implemented a wireless 802.11b campus network with access control, mobile IP with seamless layer-3 roaming and selection of upstream network provider. The network was based on Linux servers and clients, Cisco routers, Apache web servers, SQL databases and Kerberos authentication.
2000 – 2001 Project 1: Freelancing providing services within computer networks, Stockholm, Sweden. Projects for
the companies Google, Columbitech (www.columbitech.com) and Dynarc. (www.dynarc.com) Language Proficiency Language Reading Writing Speaking
English C2 C2 C2
German C2 C2 C2
Swiss-German B2 A2 A1
French C2 C2 C2
Spanish C2 C1 C§
Dutch A1 A1 A1
Portuguese A1 A1 A1
Swedish Native Native Native
2019 Portuguese language studies at Migrosschule, Basel, Switzerland. (beginner)
2015 – 2019 Swiss-German language studies at Migrosschule, Basel, Switzerland. (Level 3 of 4)
2013 Spanish language studies at Instituto de Columbus, San José, Costa Rica. (Level 7 of 8)
2012 Spanish language studies at Instituto de Berlitz, Santo Domingo, Dominican Republic. (Level 4 of 8)
2007 Dutch language studies at EPFC and Centre de Langue de Woluwe in Brussels.
2003 – 2004 French language studies at Alliance Française, Paris. (Niveau supérieur 9 of 9, Diplôme de Langue)
1999 German language studies at the Göthe Institut, Munich. (Oberstufe, highest level) Other Merits 2017 – now Competing in squash on Swiss national level and working for Allschwil Squash Club.
2013 – 2016 Active in squash, badminton and football sports sections at Bank of International Settlements.
2009 – 2012 Webmaster for Svenska Klubben Brussels. (www.svenskaklubben.be)
2007 Founded the limited company Reward Networks SPRL in Belgium.
2005 – 2006 Participated in Brussels marathon and semi-marathon.
2003 Accepted by Nova 100 in a selection process based on interviews measuring academic achievements,
interpersonal skills and entrepreneurial abilities. (www.nova100.se)
2000 Extensive group project over a semester in the course “Application development project”. The task
was to develop a web based fair navigation system based on Java, C and WAP. The project was
appointed to “The best project of the course”.
1999 Students’ representative, the Swedish central organisation of salaried employees, SIF. Responsible for over 600 student members. (www.sif.se)
1996 – 1997 Military service as group commander in the military police at K1 in Stockholm. The training included studies of penal law corresponding to 10 university credits.
1995 – 1996 Led and trained a swimming group, Tureberg’s IF swimming club, Sollentuna.
1993 – 1996 Graduated with distinction from the natural sciences program at Rudbecksskolan senior high
school, Sollentuna. Scored 1.9 of 2.0 on the Swedish national test for university studies.
1986 – 1996 Competed in swimming on international level. Participated in competitions in Europe, USA and Australia. A Swedish record and silver medal in the Swedish youth championship as best results.
