$$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Expert
{{ $t($store.state.user.experience_search_name) }}
0
jobs
Network and Security Architect/Consultant
Alex Romaya
,
aldershot, United Kingdom
Experience
Other titles
Skills
I'm offering
A highly driven and experienced Security & Network qualified expert with extensive knowledge in delivering technical design, consultancy, implementation and high level support in complex network environments for both public and private sector organizations. As a Senior principal engineer for a team of senior engineers, responsible for providing technical leadership along with employee engagement to ensure the personal development of all members of the team. Acting as the technical lead during any major incident ensuring ownership through to resolution and customer satisfaction.
Markets
United Kingdom
Language
English
Fluently
Ready for
Larger project
Full time contractor
Available
My experience
2018 - ?
freelance
Network and Security Consultant
CDW.
I am involved in multiple projects, that are not vendor agnostic. The projects I am working on a brown and green site solutions. This involves a high and low level design, arranging and hosting workshops with the customer.
Setting up the kit in a lab environment to run a PoC for the customer and running through a NRFU. Then installing the kit and handing over to support.
This involves the whole platform including PaaS, Iaas, and Saas. Technologies used, Cisco SDN, ACI, SDA, Security, Juniper, Contrail, Pulse, SRX, Palo Alto FWs, Checkpoint and Fortinet.
I have been the lead Consultant for many projects involved in not just designing and implementing the ACI Multisite platform, but also integrating the Legacy and SDN platforms, So migrating all of the network services as well as the compute in a seamless manner so to not impact production element, as well as meeting all compliances during the migration piece of work.
VXLAN project design and deployment for a large finance bodies using Cisco Nexus 9k switches and HP Aruba chassis.
Setting up the kit in a lab environment to run a PoC for the customer and running through a NRFU. Then installing the kit and handing over to support.
This involves the whole platform including PaaS, Iaas, and Saas. Technologies used, Cisco SDN, ACI, SDA, Security, Juniper, Contrail, Pulse, SRX, Palo Alto FWs, Checkpoint and Fortinet.
I have been the lead Consultant for many projects involved in not just designing and implementing the ACI Multisite platform, but also integrating the Legacy and SDN platforms, So migrating all of the network services as well as the compute in a seamless manner so to not impact production element, as well as meeting all compliances during the migration piece of work.
VXLAN project design and deployment for a large finance bodies using Cisco Nexus 9k switches and HP Aruba chassis.
Design, Cisco, Deployment, Saas, Finance, Network, Security, Workshops, Hosting, Support, Production, Fortinet, UP
2018 - 2018
freelance
Network and Security Consultant
Cap Gemini.
I was engaged for a second time to create the DLD and deliver the solution. The project I was working on is a brown site solution, where a traditional 3 tiered infrastructure is being transformed into a SDN network using Ciscos ACI offering.
The design encompasses using the latest nexus 9ks for the Spine and Leaf H/W to deliver the APIC and fabric solutions.
The design had to meet strict PCI and ISO27001 compliances, so packages using F5/ASAv/NGIPSv and Checkpoint were brought into the fabric.
I also implemented the APIC cluster at both data centres this role was hands on as well as design. A three cluster APIC model was used, with the AVE (ACI Virtual Edge) was used to extend policies into the VM environment, and Ciscos ACI Tetartion was deployed to help understand the Application footprint and ensure that best practise were met from a ACI fabric perspective as well as PCI compliance.
WAN design involved the design and implementation of Ciscos SDWAN Viptela solution.
The design encompasses using the latest nexus 9ks for the Spine and Leaf H/W to deliver the APIC and fabric solutions.
The design had to meet strict PCI and ISO27001 compliances, so packages using F5/ASAv/NGIPSv and Checkpoint were brought into the fabric.
I also implemented the APIC cluster at both data centres this role was hands on as well as design. A three cluster APIC model was used, with the AVE (ACI Virtual Edge) was used to extend policies into the VM environment, and Ciscos ACI Tetartion was deployed to help understand the Application footprint and ensure that best practise were met from a ACI fabric perspective as well as PCI compliance.
WAN design involved the design and implementation of Ciscos SDWAN Viptela solution.
Design, Network, Compliance, Security, Implementation, ISO27001, Infrastructure, WAN
2016 - 2018
freelance
consultant
Verizon.
my role required me to create high and low level technical designs for customers to meet their requirements. The designs had to meet the strict compliance due to ISO27001 and PCI-DSS alignments.
This included Data Centre and remote office security designs. Using multivendor solutions, from Cisco ASA firewalls, to Palo Alto, F5 and Checkpoint depending on requirements and the customers preferences.
I was part of a PS team which is EMEA based, occasionally we work with the US and APAC teams to cover projects and consultancy/support when needed.
Projects worked on while at Verizon, Tesco transformation and remediation projects. This involved working closely with the NOC, the network equipment was replaced, with my main focus being the security element. I had to capture the requirements of the TPVs (Third party vendors) at the Tesco Depots. A rule base and virtual context and routing specific to the TPV would be designed and rolled out. This would enable them to reach there hosted applications securely and via the resilient Tesco DCs.
I utilised a new installation of Skybox management suite to audit the current legacy FWs to see if there were compliant. The FWs were Cisco ASAs and Palo Alto firewalls.
Diageo, I would have to design and incorporate new customers onto the vast checkpoint based Diageo estate.
ISE, rollout for Tesco and Diageo corporate environment, Wired and Wireless 802.1x solution, as well as AV and windows update posturing.
Large ACI roll out on a brown site. APIC creation and integration with VMWare and UCS infrastructure. The Fabric had to meet PCI-Compliance so NGIPSv and vASA where used to insure data integrity.
A large roll out of SDWAN solutions using Cisco Viptela architecture to deliver an application driven WAN solution. We met the customer's requirements which was to achieve reduced operational costs, have a flexible solution to the traditional rigid solution and increase uptime.
This included Data Centre and remote office security designs. Using multivendor solutions, from Cisco ASA firewalls, to Palo Alto, F5 and Checkpoint depending on requirements and the customers preferences.
I was part of a PS team which is EMEA based, occasionally we work with the US and APAC teams to cover projects and consultancy/support when needed.
Projects worked on while at Verizon, Tesco transformation and remediation projects. This involved working closely with the NOC, the network equipment was replaced, with my main focus being the security element. I had to capture the requirements of the TPVs (Third party vendors) at the Tesco Depots. A rule base and virtual context and routing specific to the TPV would be designed and rolled out. This would enable them to reach there hosted applications securely and via the resilient Tesco DCs.
I utilised a new installation of Skybox management suite to audit the current legacy FWs to see if there were compliant. The FWs were Cisco ASAs and Palo Alto firewalls.
Diageo, I would have to design and incorporate new customers onto the vast checkpoint based Diageo estate.
ISE, rollout for Tesco and Diageo corporate environment, Wired and Wireless 802.1x solution, as well as AV and windows update posturing.
Large ACI roll out on a brown site. APIC creation and integration with VMWare and UCS infrastructure. The Fabric had to meet PCI-Compliance so NGIPSv and vASA where used to insure data integrity.
A large roll out of SDWAN solutions using Cisco Viptela architecture to deliver an application driven WAN solution. We met the customer's requirements which was to achieve reduced operational costs, have a flexible solution to the traditional rigid solution and increase uptime.
Security, ME, Audit, WAN, Office, Infrastructure, Support, ISO27001, Transformation, Wireless, Design, Compliance, Architecture, Network, Windows, Integration, Management, Audit, Cisco, VMware
2016 - 2016
freelance
Professional Services Consultant
unknown.
my role required me to create high and low level technical designs for customers to meet their requirements. This included Data centre designs using Junos OS SRX platforms, Security designs, Load balancing designs WAN/ LAN QOS for wired and wireless environments. I also got involved 4th line support for Juniper high end customers.
I was part of a PS team which is EMEA based, occasionally we would work with the US and APAC teams to cover projects and consultancy/support when needed.
Projects worked on whilst at Juniper, Amazon migration project. This involved removing older ScreenOS SSG FW platforms and replacing them with Junos OS based SRX platforms. Re-creating security policies and routing is key for this project. Part of this solution was to create the SDN cloud using contrail to connect the Amazon DCs that were providing the public AWS services to customers.
I also got involved in a project to migrate customers from the Cisco ASA security platform to the SRX JunOS 1400 platform.
I also had to install the Tufin security management suite for Amazon to policy and rule base audit their wide range of FW platforms. This covered ASA, Juniper SRX, Checkpoint R77, and Palo Alto devices.
Design and implementation of juniper contrail solution for finance sector customers.
I was part of a PS team which is EMEA based, occasionally we would work with the US and APAC teams to cover projects and consultancy/support when needed.
Projects worked on whilst at Juniper, Amazon migration project. This involved removing older ScreenOS SSG FW platforms and replacing them with Junos OS based SRX platforms. Re-creating security policies and routing is key for this project. Part of this solution was to create the SDN cloud using contrail to connect the Amazon DCs that were providing the public AWS services to customers.
I also got involved in a project to migrate customers from the Cisco ASA security platform to the SRX JunOS 1400 platform.
I also had to install the Tufin security management suite for Amazon to policy and rule base audit their wide range of FW platforms. This covered ASA, Juniper SRX, Checkpoint R77, and Palo Alto devices.
Design and implementation of juniper contrail solution for finance sector customers.
Design, AWS, Cisco, Audit, Cloud, Management, Finance, Security, Wireless, Implementation, Support, Amazon, Load balancing, WAN, Audit, ME
2011 - 2015
freelance
Networks Consultant
BTiNet.
I worked with a team of 30 other consultants. My role involved creating high and low level technical designs for customers to meet the be-spoke requirements. This include Data centre designs using Nexus/ACI/VMWare, Security designs, Load balancing designs WAN/ LAN QOS for wired and wireless environments. I also get involved 4th line support for the whole IT platform in an Design and Security Operational form, the kit supported is predominately Cisco routers,switches,concentrators,pix/asa,Nexus,ACS, ISE, WLC but also Juniper switches/routers/FWs and Checkpoint.
● TDA requirements have involved myself meeting with customers home & abroad, discussing requirements, producing High level & detailed design documentation and solutions that meets the requirements and budget of the customer, then allocating resources, testing and building the solution before installing and handing over to the operational team.
Day to day varies from designing a new solution for customers to implementation to presentations to the customer in a pre-sales format. I have also taken on Consultancy tasks which involve me visiting various customers who want to improve/change their network environment, or experience issues and need a resolution to the problem. Such as customers needing QOS due to latency issues on their current network.
Projects worked on at BTiNet so far, complex NAT/PAT 3rd party solutions to be accessed securely over a MPLS and site to site internet VPN. Large scale Nexus roll outs involving Nexus 7010/5020/2000/1010 and 1000v. Migration for various customers from multiple IGPs to one. Large VSS DC builds for green sites, New technology role out across the campus using VDC/vPC/OTV /IPV6/FCOE/VSAN. Roll out for WAN optimization and application acceleration. Migration from large third party networks (Nortel, Extreme) to Cisco. Large scale QOS projects that involves creating the QOS policies for various Cisco kit using various markings that are consistent on wired and wireless infrastructure. Upgrading ASA FWs from old code to the latest recommended code which involves complete config re-writes.
WAN projects:- Designing and implementing fully resilient IGP/EGP environments using, OSPF/EIGRP/BGP/MPLS/VPLS/GRE/OTV/SDWAN.
● TDA requirements have involved myself meeting with customers home & abroad, discussing requirements, producing High level & detailed design documentation and solutions that meets the requirements and budget of the customer, then allocating resources, testing and building the solution before installing and handing over to the operational team.
Day to day varies from designing a new solution for customers to implementation to presentations to the customer in a pre-sales format. I have also taken on Consultancy tasks which involve me visiting various customers who want to improve/change their network environment, or experience issues and need a resolution to the problem. Such as customers needing QOS due to latency issues on their current network.
Projects worked on at BTiNet so far, complex NAT/PAT 3rd party solutions to be accessed securely over a MPLS and site to site internet VPN. Large scale Nexus roll outs involving Nexus 7010/5020/2000/1010 and 1000v. Migration for various customers from multiple IGPs to one. Large VSS DC builds for green sites, New technology role out across the campus using VDC/vPC/OTV /IPV6/FCOE/VSAN. Roll out for WAN optimization and application acceleration. Migration from large third party networks (Nortel, Extreme) to Cisco. Large scale QOS projects that involves creating the QOS policies for various Cisco kit using various markings that are consistent on wired and wireless infrastructure. Upgrading ASA FWs from old code to the latest recommended code which involves complete config re-writes.
WAN projects:- Designing and implementing fully resilient IGP/EGP environments using, OSPF/EIGRP/BGP/MPLS/VPLS/GRE/OTV/SDWAN.
It, It platform, ME, WAN, Load balancing, Internet, Testing, Infrastructure, Support, Implementation, Design, Wireless, Security, Technology, Network, Sales, Cisco, VMware, Budget
2011 - 2012
freelance
Technical Consultant
NextiraOne.
This involved meeting with customers to discuss projects, and project requirements, coming up with a detailed design, and the implementing the design. The Technologies are the complete Cisco portfolio, from WAN/LAN, security, management and application services etc. Nexus/UCS/VSS/WAAS/ACE/IDS have been heavily featured in projects I have design and implemented while at NextiraOne.
I have also provided 3rd line support for a couple of weeks for various customers where I have actually been physically on site to assist with changes to the network and any issues the customer may be experiencing with their network infrastructure.
I have also provided 3rd line support for a couple of weeks for various customers where I have actually been physically on site to assist with changes to the network and any issues the customer may be experiencing with their network infrastructure.
Design, Cisco, Management, Network, Security, Support, Infrastructure, WAN, UP
2011 - 2011
freelance
consultant
Nexus, Security.
I would create low level technical designs for customers to meet their requirements. This included Data centre designs using Nexus, Security designs, Load balancing designs WAN/ LAN etc. I also get involved 3rd line support for the whole IT platform in an Design and Security Operational form, the kit supported is Multi-vendors such as, Solaris, Cisco routers,switches,concentrators,pix/asa, Juniper (Netscreens), Bluecoats HP Load-balancers, Sun source fire servers. Including Implementation for complex solutions.
I also completed Wireless site surveys using the Ekahau tools for customers of Equanet, these were to improve existing wireless solutions or to propose a highly available green project solution for new installs.
Projects worked on whilst at Equanet, complex NAT/PAT 3rd party solutions to be accessed securely over a MPLS and site to site internet VPN. Large scale Nexus role out involving Nexus 7010/5020/2000/1010 and 1000v. Migration for various customers from multiple IGPs to one. New technology roll out across the campus using VDC/vPC/OTV /IPV6. Wireless surveys designs and roll outs.
I also completed Wireless site surveys using the Ekahau tools for customers of Equanet, these were to improve existing wireless solutions or to propose a highly available green project solution for new installs.
Projects worked on whilst at Equanet, complex NAT/PAT 3rd party solutions to be accessed securely over a MPLS and site to site internet VPN. Large scale Nexus role out involving Nexus 7010/5020/2000/1010 and 1000v. Migration for various customers from multiple IGPs to one. New technology roll out across the campus using VDC/vPC/OTV /IPV6. Wireless surveys designs and roll outs.
Design, Cisco, Technology, Security, Wireless, It, Implementation, Support, Surveys, Internet, Load balancing, WAN, It platform
2010 - 2011
job
pre-sales format
Capita.
account 13/01/10 to 11/05/11 (Contract)
My role whilst at Capita was Senior networks TDA, I was part of a 10 man team, This involved putting together technical designs for customers to meet there requirements. This included Data centre designs using Nexus, Security designs, Load balancing designs WAN/LAN/MAN etc. I also got involved 4th line support for the whole IT platform in an Design and Security Operational form, the kit supported is Multi-vendors such as, Solaris, Cisco routers,switches,concentrators,pix/asa, Juniper (Netscreens), Bluecoats HP Load-balancers, Sun source fire servers. Including Implementation for complex solutions.
● TDA requirements have involved myself meeting with customers, discussing requirements, producing High level & detailed design documentation that meets the requirements and budget of the customer, then allocating resources, testing and building the solution before installing and handing over to the operational team.
Day to day varies from designing a new solution for customers to implementation to presentations to the customer in a pre-sales format..
Projects worked on at Capita, complex NAT/PAT 3rd party solutions to be accessed securely over a MPLS and site to site internet VPNs using dynamic routing. Large scale Nexus roll out involving Nexus 7010/5020/2000/1010 and 1000v. Migration for various customers from multiple IGPs to one. Large VSS DC builds for green sites, New technology role out across the campus using VDC/vPC/OTV /IPV6. Bluecoat proxy SG910 roll out for WAN optimization and application acceleration.
My role whilst at Capita was Senior networks TDA, I was part of a 10 man team, This involved putting together technical designs for customers to meet there requirements. This included Data centre designs using Nexus, Security designs, Load balancing designs WAN/LAN/MAN etc. I also got involved 4th line support for the whole IT platform in an Design and Security Operational form, the kit supported is Multi-vendors such as, Solaris, Cisco routers,switches,concentrators,pix/asa, Juniper (Netscreens), Bluecoats HP Load-balancers, Sun source fire servers. Including Implementation for complex solutions.
● TDA requirements have involved myself meeting with customers, discussing requirements, producing High level & detailed design documentation that meets the requirements and budget of the customer, then allocating resources, testing and building the solution before installing and handing over to the operational team.
Day to day varies from designing a new solution for customers to implementation to presentations to the customer in a pre-sales format..
Projects worked on at Capita, complex NAT/PAT 3rd party solutions to be accessed securely over a MPLS and site to site internet VPNs using dynamic routing. Large scale Nexus roll out involving Nexus 7010/5020/2000/1010 and 1000v. Migration for various customers from multiple IGPs to one. Large VSS DC builds for green sites, New technology role out across the campus using VDC/vPC/OTV /IPV6. Bluecoat proxy SG910 roll out for WAN optimization and application acceleration.
Design, Budget, Cisco, Sales, Technology, Security, It, Implementation, Support, Testing, Internet, Load balancing, WAN, It platform
Alex' reviews
Alex has not received any reviews on Worksome.
Contact Alex Romaya
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to Alex directly in Worksome.
38100+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark