Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app
Work Background
Security Analyst
TeekaySecurity Analyst
Aug. 2020 - Apr. 2023The current job responsibilities include: o Accessing information risks and facilitating remediation of identified vulnerabilities for IT security across the enterprise o Conducting security assessments through vulnerability testing and risk analysis o Perform cloud security risk assessment for cloud applications already in Azure o Involved in defining cloud security controls for an Azure environment at an Enterprise level o Analyzing security breaches to identifying the root cause o Identify risks and vulnerability reported in Azure security center and QRadar and remediate them o Performing various security testing including phishing simulation and awareness training, internal social engineering testing, risk assessment, security scanning and posture assessment o Monitoring and supporting security state of various Azure resources, Azure Advanced Threat Protection, Office 365 Security and Compliance, Cloud App Security and Sophos Security products o Collaborating with various third-party vendors to meet security requirements o Supporting email security with targeted threat protection via Mimecast Secure Email Gateway o Responsible for ensuring that all network and security related equipment is hardened for compliance and/or industry standards
Principal Consultant
BEODESIGN ConsultingPrincipal Consultant
Jun. 2020- For a various clients/projects and as a member of a customer' Network Security team, executed critical risk and business impact assessments and continuity and recovery management plans while addressing security and business continuity concerns in a professional manner. - Provided daily maintenance of corporate security infrastructure (Cisco ASAs, PaloAlto firewalls, PaloAlto Panorama, Azure VM-Series firewalls) including GlobalProtect VPN client and Cisco AnyConnect VPN client. - Provided support and maintenance of Dragos Cybersecurity Platform - Implemented Zone Based and Security Rules for the Palo Alto Firewalls - Performed PaloAlto firewall rules audit and optimization using various tools, including PaloAlto Expedition conversion tool - Productively refined and documented crucial security policies and guidelines. - Configuring rules and maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
Technical Analyst
Vancouver Airport AuthorityTechnical Analyst
May. 2019 - Aug. 2020Vancouver, Canada Area- Provided daily maintenance of corporate security infrastructure, Cisco ASAs, PaloAlto PA-5K, PA-7K, PaloAlto Panorama, Azure firewalls, GlobalProtect VPN client and Cisco AnyConnect VPN client - Implemented Zone Based Firewalls and Security Rules on the PaloAlto Firewalls - Performed PaloAlto firewall rules audit and optimization using various tools, including PaloAlto Expedition, MineMeld - Configuring rules and maintaining PaloAlto Firewalls & Analysis of firewall logs - As a member of a Network Security team, executed critical risk and business impactassessments and continuity and recovery management plans while addressing security and business continuity concerns in a professional manner - Performing day to day maintenance of corporate Cisco wireless network infrastructure consisting of a Cisco 8540 WLCs (HA SSO), 1600 indoor/outdoor WAPs and Cisco PRIME 3.2 - Responsible for performing predictive wireless design and conducting physical wireless site surveys for the entire airport using EkahauPro/SideKick - Provided maintenance and support for corporate F5 BIG-IP LTM/APM infrastructure and BIG-IP VPN clients - Working as a network Azure Cloud administrator, supported Azure PaloAlto firewall and PaloAlto Panorama virtual machines as well as other Azure resource groups and accounts - Maintaining and supporting YVR network infrastructure for two datacenters and over 220 access layer switch stacks - Member of a team designing Cisco Software Defined Access (SDA) and Cisco Application Centric Infrastructure (ACI) for new Vancouver Airport Datacenter - Maintained security and availability of corporate infrastructure using SolarWinds, SolarWinds SIEM, Splunk - Successfully migrated Cisco ACS 5.2 to Cisco Identity Services Engine 2.3 for identity/access managements (Tacacs+) and public/corporate Wi-Fi access - Ensured all projects are delivered on-time, within scope and budget - Coordinated internal resources and third parties/vendors for flawless execution of projects
Sr. Network and Security Administrator, Managed services - at FortisBC
Compugen IncSr. Network and Security Administrator, Managed services - at FortisBC
May. 2015 - May. 2019Surrey, British Columbia- Provided day-to-day maintenance/support of PaloAlto PA-5020 HA, Multi-VSYS firewall infrastructure, PaloAlto Panorama and GlobalProtect VPN client - Worked on PaloAlto APP-ID, User-ID, security profiles like Anti-virus, Threat Prevention, URL-filtering, Wildfire, Zone Based firewalling, DNS Sinkholing and other security features - Configured and maintained IPSEC/SSL VPN's on PaloAlto Firewalls - Performed PaloAlto Rule changes, templates and object creation, configuration changes, OS upgrades, CLI troubleshooting and audits - Performing packet captures using PaloAlto Firewalls, Wireshark and TCPDUMP - Identified the vulnerabilities and non-compliant issues in the network and applications using Nessus vulnerability scanners and SolarWinds SIEM tools. - Designed and Implemented Cisco NextGen IPS Appliance (FirePOWER 7000) for threat mitigation and implemented Cisco FireSIGHT Management Center FS2000 - Implemented, monitored, and enforced IT-related procedures, processes and practices. - Ensured that company meets all security standards for internal or external audits - Managed and assisted other IT team members in system support and integration tasks. - Administered and maintained Cisco Identity Services Engine 2.1 for secure network access via wireless and wired infrastructure (802.1x) - Performed daily maintenance of corporate Cisco wireless network infrastructure consisting of three WISMs, 450 indoor/outdoor WAPs and Cisco PRIME 2.1 - Maintained and supported HA Infoblox DHCP/DNS infrastructure (GRID)and IPAM - Managed and supported secured/controlled admin users’ access to network infrastructure devices utilizing Cisco ACS 5.2 - Provided day to day network services and infrastructure support for networking devices, (3750x, C1811, ME3600X, Riverbed 5050H, C4500x, 2960, 6513E, ACE 4710, Cisco Prime NCS 2.0, ACS5, N5K 5548, UCS-FI06296UP) - Supported corporate MPLS, FlexVPM and L2L VPN infrastructure for 3 datacenters and 45 + remote locations.
Senior IT Network Security Engineer
IPS INtegrity Paahi SolutionsSenior IT Network Security Engineer
Mar. 2014 - Aug. 2015- As part of a team, established and instituted policies, procedures, and technologies to mitigate corporate security risks for various clients - Performed Security Solutions Architect role focused to provide professional IT security products and architecture expertise, to undertake comprehensive architecture needs assessments and complex reviews to support clients’ requirements. - Performed several firewall migration from Cisco ASA platforms to PaloAlto firewalls - Assisted in the customer training of new Palo Alto Networks platform products - Lead customer presentations, and internally focused deal preparation activities. - Performed successful migration of corporate firewalls and VPN infrastructure from CheckPoint firewalls to Palo Alto firewalls. - Configured AAA redundant secure access with RADIUS and Tacacs+ using Cisco ACS for various clients - Performed successful migration of corporate VPN infrastructure to a pair of active-standby PaloAlto PA-3020 firewalls - For various clients, maintained and supported corporate security infrastructure consisting of multiple PA-200, PA-500 and PA-3020 firewalls and redundant Panorama Virtual Appliance on VMware ESX(i)
Senior Network Engineer
Ritchie Bros. AuctioneersSenior Network Engineer
Feb. 2008 - Sep. 2014- Designed, configured and implemented Cisco ScanSafe Cloud Web Security (CWS) solution for 3 head offices and over 45 branch offices worldwide using Cisco ISR and ASA firewalls - Member of Change Control Review Board responsible for the review and approval of information system changes, and provided support to technical and software development staff regarding employing security best practices in the development and operations of information systems. - Performed successful migration of company HQ firewall infrastructure (from ASA 5545 to Multi-context ASA 5540-X CX NGFW with PRSM) and its data centers (from Cisco Catalyst C6500 FWSM to ASA 5585-X, active/active, multi-context mode) - Designed and implemented corporate-wide wireless indoor/outdoor network infrastructure with multiple SSIDs, leveraging 10 Cisco WLCs and 500 Cisco wireless access points (AIR-CAP2702I, AIR-CAP3502E, AIR-CAP1552E) - Played an instrumental role in planning, designing and implementing a wireless network solution for 15 off-site auctions, which includes total of 15 local WLC 2504 and 75 outdoor AIR-CAP1532i access points - Performed RF pre- and post-installation site surveys for corporate indoor and outdoor wireless network infrastructure - Actively participated in designed network infrastructure redundancy to improve the infrastructure uptime using Cisco Dynamic Multi-point IPSec VPN with DMVPN (mGRE) and Next Hop Resolution Protocol (NHRP) - Performed successful migration from CheckPoint VPN client infrastructure to Cisco IPSec VPN client, utilizing AAA via Microsoft AD and Cisco ACS for 1000+ users - Improved efficiency and redundancy of corporate VPN infrastructure by implementing 6 Cisco ASA VPN hubs worldwide - Successfully updated VPN client infrastructure from Cisco legacy VPN IPSec client to SSL (certificate based) AnyConnect3.0 VPN clients for 1000+ users
IT Infrastructure Manager
Jana & Co.IT Infrastructure Manager
Jul. 2003 - Jan. 2008- Supervised team of three support technicians - Reconfigured complete network infrastructure for main office and seven remote offices - Migrated the network infrastructure from Windows NT 4.0 to Windows 2003 Active Directory - Consolidated and migrated Exchange 5.5 servers to Exchange 2003 servers - Configured Microsoft Windows 2003 Terminal Servers for secure remote access - Installed and configured Citrix 4.5 presentation servers (members of presentation farm) - Migrated several Cisco PIX 515E and 506E firewalls to ASA5510 firewalls for main office and remote offices - Installed and configured IBM TotalStorage DS4300 including Qlogic fiber optic switches - Set up several layer-3 Hewlett Packard switches and 3COM switches - Set up and configured IBM Director 5.2 - Implemented connection redundancy for main and all remote sites - Set up Sybari anti-virus/antispam engine on Exchange server 2003 - Set up and maintained VPN IPSec communication between main and remote offices - Implemented Windows WSUS services and Windows SMS 2.0 server - Implemented Websense Web filtering solution - Set up helpdesk support and asset management software including knowledge base database
Pre-sale Consulting Engineer
Network Technology ProfessionalsPre-sale Consulting Engineer
Jan. 1998 - Jun. 2003- Provided technical ownership for multi-discipline IT infrastructure solutions in customer environments. - Created proposals, Statement of Work and Bill of Material for various customers projects - Investigated and experimented with new emerging technologies - Researched and wrote extensive network and server documentation for clients - Responsible for Design, Implementation and support of Cisco LAN/WAN Network, Configuration and Optimization of Cisco routers, Routing Protocols, switches, High-speed Telco connectivity (ATM, DS3, Frame Relay - Worked closely with the sales department to prepare detailed proposals directly addressing client needs - High-level IT consulting, design, implementation and administration of network infrastructure projects, including: - Design and implementation of Microsoft Windows 2003 Active Directory and Novell NDS - Planning, implementing, and managing major Microsoft Exchange 5.5/2003 installations and upgrades - Implementing a number of Microsoft SMS 1.2 and SMS 2.0 installations in Windows NT 4.0 and Windows 2003 Active Directory environments - Planning and implementing security, authentication, authorization, backup and disaster recovery policies and procedures in Windows 2003 environments - Designing and implementing secure VPN and remote access solutions based on Microsoft and Cisco technologies - LAN/WAN infrastructure management, administration, support and troubleshooting - Worked with Cisco Network Design and Implementation, Cisco router deployment and support - Planned and implemented numerous network migrations and upgrades (Novell to Microsoft Windows 2003/AD and Microsoft NT 4.0 to Windows 2003/AD) - Took responsibility for the overall computer and information technology functions of the company
Principal Consultant
BEODESIGN ConsultingPrincipal Consultant
Apr. 1996 - Dec. 1997Vancouver, British Columbia, CanadaDuring this time, i have been supporting various small business clients, on different network/security/infrastructure projects.
IT Consultant
Syscom ConsultingIT Consultant
Feb. 1995 - Apr. 1996- Provided senior-level technical expertise as a Windows 2003/NT 4.0 Domain Administrator - Installed and configured CISCO PIX firewalls, Syslog Daemons, VPN and IPSEC configurations - Worked closely with clients to analyze IT system requirements, clients information technology needs and their resources in order to plan IT projects and fulfill clients expectations - Developed IT system specifications after evaluating customer’s nature of work and business volume - Working on different clients IT issues – Determined changes, recommended quality software, projected modifications of software, hardware and networking.

Requests

Touchpoint image
0
Service Pitch
Innovative IT Solutions for Modern Challenges
Intch is a Professional Networking App for the Future of Work
300k+ people
130+ countries
AI matching
See more people like Dragan on Intch
IT
453430 people
27
Software engineer @ GFT Canada
13
Apple @ Apple
15
Consultant @ Deloitte
ITSystem Architect
46075 people
16
Project co-ordinator
16
DevOps @ Bell Media
15
COO @ P.S. Global Group