Printing tool Download PDF

Aiman A. Essayed

 Network Engineer / Security Architect


Dynamic, solutions focused Security Engineer with a 3+ year record of achievement and demonstrated success providing hands on technical expertise to support company information security goals. I am technically proficient with multiple firewall solutions, network security, and information security practices. With over 3 years working with security solutions and as a network engineer, I have exceptional background, knowledge and experience of the products, hands on proficiency, and the ability to mentor others. I have outstanding troubleshooting skills, solid presentation skills, and the ability to clearly communicate technical subjects. I am experienced with sensitive data environments, securing data, outbound content control, and all aspects of client server computing.

Work experience

Mar 2014Present

 Network Security Architect/Security Analyst

Bait Ashames For Data Communications

Performed  Network & security engineering, design and implementation for multiple enterprise customers. Daily responsibilities included design, implementation, support and administration of multiple security products, supporting the installed product base, and internal engineering teams. Provide best practice security consulting for multiple compliance initiatives, with a focus on providing solid solutions. Create technical implementation plans, project plans, and worked closely with customers to provide the solutions that fulfill their needs. Provided direct support to the BSISP hardware, software, and infrastructure, and act as third tier support for ongoing customer issues.

       Key Responsibilities

  • Implement and monitor security measures for the protection of computer systems, networks and information.
  • Identify and define system security requirements.
  • Design systems and Networks security architecture and develop detailed security designs.
  • Prepare and document standard operating procedures and protocols.
  • Configure and troubleshoot security infrastructure devices.
  • Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
  • Ensure that the company knows as much as possible, as quickly as possible about security incidents.
  • Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.
  • Plan, implement and upgrade security measures and controls.
  • Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and/or destruction.
  • Maintain data and monitor security access.
  • Perform vulnerability testing, risk analyses and security assessments.
  • Conduct internal and external security audits.
  • Anticipate security alerts, incidents and disasters and reduce their likelihood.
  • Manage network, intrusion detection and prevention systems.
  • Analyze security breaches to determine their root cause.
  • Recommend and install appropriate tools and countermeasures.
  • Define, implement and maintain corporate security policies.
  • Train fellow employees in security awareness and procedures.
  • Coordinate security plans with outside vendors.
  • Take lead architecture role in dealing with clients, program managers and IT team
  • Translate business requirements into detailed architectures and designs.
  • Document all technical requirements and design technical solutions utilising enterprise architecture standards including documenting all solution components and configurations.
  • Develop solution cost structure by identifying all cost points.

Enterprise Network Engineer/Architect

        Key Responsibilities

  • Configure and install various network devices and services (e.g., routers, switches, firewalls, load balancers, VPN, QoS)
  • Perform network maintenance and system upgrades including service packs, patches, hot fixes and security configurations.
  • Monitor performance and ensure system availability and reliability.
  • Monitor system resource utilization, trending, and capacity planning.
  • Provide Level-2/3 support and troubleshooting to resolve issues.
  • Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure.
  • Select and implement security tools, policies, and procedures in conjunction with the company’s security team.
  • Liaise with vendors and other IT personnel for problem resolution.

Network Operation Engineer

       Key Responsibilities

  • Ensure stable and reliable ISP network services (e.g. access products, service networks and core network).
  • products, service networks and core network).
  • Day-to-day network performance monitoring.
  • Network troubleshooting and fault analysis; hardware troubleshooting and repair.
  • Trouble ticket generation and response; carrier interface and escalations.
  • Deployment and maintenance of network monitoring, analysis and reporting tools.
  • Application of configuration changes via our change control systems and processes.
  • Installation of network hardware and software.
  • Participate in a 24x7 call-out rota.
Dec 2015Present

Cisco Instructor

Tripoli Training Center (TTC)
  • Implemented Cisco laboratory equipment and provided students with Cisco systems skills.
  • Educated students with Foundations for Cisco Routers, Switches, Security Devices and Interconnecting Cisco devices.
  • Educated students with Foundations for Cisco Routers, Switches, Security Devices and
  • Interconnecting Cisco devices. Maintained teaching assignment for Cisco systems laboratory module.
  • Planned course content based on syllabus to meet learning objectives.
  • Distributed module calendar copy to students at first meeting.
  • Managed accurate student attendance records.
  • Communicated Program Head about attendance concerns related to absent students.
  • Provided assistance and advice to the tutor and student as needed.
Aug 2013Sep 2013

Cyber Crime Forensic Investigator

Libyan Foreign Bank (LFB)

Job Duties :

Gathering evidence.

Consult with clients, supervisors, and managers

Recover password protected/encrypted files and hidden information

Aug 2012Oct 2012

Network Solution Architect

Yamamah for technology & network infrastructure

Job Duties :

Assume full responsibility for the design, implementation, and support of IP telephony project, such as Cisco Unified Communications Manager, Cisco Unified Messaging Systems for Libyan Ministry Of Defense


University Of Tripoli  - WAN /Data Center Project

Project Title: Network & System Security Engineer

Installed and configuring the University's equipment.

Installing and designing a Hotspot WI-Fi solution for the University using an open-source packages.

Designing network infrastructure solution to work with the Uni's Billing system.

Implementing a secure solution for the Data Center using  Active/Standby Cisco ASA 5545-X with Web Security Essential for web content filtering.

Securing Layer2 devices of Zyxel and Cisco switches.

Sahara Bank BNP Paribas I*NET Core Protection Project

Project Title: Security and System Architect

Duties :

Installing and configuring the ICP equipment regarding to ICP Isolation Plan.

Deploying High Availability Architecture with three layers of security (Cisco ASA5515-X,FortiGate Firewall,McAfee Web Gateway.

Sahara Bank WAN upgrade MPLS VPN

Project Title: Enterprise Network/Security Solution Architect & Senior Integrator


MPLS VPN design and deployment for all Sahara Bank Branches & POPs nationwide.

BNP Paribas Network migration to the new WAN MPLS VPN with almost zero downtime.

Sahara Bank MPLS VPN Security including,design,implementation and configuration auditing.

Design and Implementation of the Security Architecture of  Sahara Bank BNP Paribas.

Troubleshooting and maintaining MPLS VPN network &  coordinate security plans with outside vendors.

Sahara Bank Data Center (LAN) Project

Project Title: Network/Security Solution Architect & Senior Integrator


Configuring Core Network to integrate the MPLS VPN  with the Data Center Blades and Storage Area Network through  6807-XL Data Center Cores and separate each service via VRF & Vlans.

Implementing,designing  and deploying Secure Solution for the Data Center with Cisco ASA 5585-X with Firepower Services to work with the Data Center Environment.

Design & implement a  secure access solution,management and coordinate security policies with Data Center & Storage Team. 


Aug 2011Aug 2015

Bachelor Degree

College Of Computer Technologies Tripoli

Networks Engineering Department

Sep 2008Sep 2012

Higher Diploma

Sooqِِ-Aljomha Institute Of Technology

Electronics and Communications Engineering


Cisco Certified Internet work Expert (Written Certified) Routing & Switching

Cisco Systems


Certified Penetration Testing Consultant



Certified Penetration Testing Engineer



Red Hat Certified Network Administrator



Microsoft Certified Technology Specialist



Cisco Web Security Field Engineer

Cisco Systems


Cisco Certified Network Associate

Cisco Systems

CCNA Voice

Cisco ASA Security Specialist

Cisco Systems


Cisco Firewall Security Specialist

Cisco Systems


Cisco VPN Security Specialist

Cisco Systems


Cisco IOS Security Specialist

Cisco Systems


Cisco Certified Network Professional Security

Cisco Systems

CCNP Security

Cisco Certified Network Professional

Cisco Systems

CCNP Routing & Switching

Training and BootCamps

Cisco Certified Network Associate Training Program -New Horizons Libya  2010

Juniper Networks Certified Associate - Junos (JNCIA-Junos) Training Program -Info Gate,Tripoli Libya,2013

Certified Penetration Testing Engineer BootCamp -Mazadah Foundation ,Tripoli Libya -March 2013

Certified Penetration Testing Consultant BootCamp -Mazadah Foundation ,Tripoli Libya -Dec 2013

Red Hat System Administration RH124 BootCamp -Mazadah Foundation ,Tripoli Libya -Jan 2014

Red Hat System Administration RH134 BootCamp -Mazadah Foundation ,Tripoli Libya -Jan 2014

Red Hat System Administration RH254 BootCamp -Mazadah Foundation ,Tripoli Libya -Feb 2014

RSA Authentication Manager  SecureID and Risk Based Authentication BootCamp Dubai , May 2014


Unix/Linux/Windows /Firewalls, Cisco VPN / Secure, FortiGate,Barracuda , BlueCoat, McAfee, WSA,ESA,ISE,Cisco Prime,Cisco Security Professional,Active Directory and Radius.

Deep technical experience with several key security technologies: SEIM Tools (Splunk, LogStorm,AlienVault,), Network Intrusion Detection / Prevention Tools (SecurityOnion, SourceFire, Snort, Cisco,NGIPS,)

Knowledge of information security standards and controls ISO 27001/27002, rules and regulations related to information security and data confidentiality and desktop, server, application, database, network security principles for risk identification and analysis.

Penetration Testing,Consulting,Configuration Auditing,Vulnerabilities Assessment,Risk Assessment,Security Forensics.