Hire top vetted consultants like this with fees starting at just 10%!

Arrange a free consultation with one of our friendly team, with no obligation whatsoever

Kemal Haydar Yildirim
10 assignments
GANOS Internetworking Limited
Network Design Engineer
London, England, United Kingdom
Permanent and contract work
Remote work
2 weeks notice
Network Design Engineer
GANOS Internetworking Limited (via Hubbado): IT Security
IT company
Show lessShow more

Oct 2021 - Present, London

About the role

NETWORK Architect | Metsi UK Ltd. | LONDON, Oct 2021 – Belfast Trust SD-Access Deployment project: Prepared HLD and LLD documents. Cisco DNA integrated with Cisco ISE cluster. VRF-lite, mBGP, IS-IS, LISP and VXLAN configuration and troubleshooting. Macro segmentation with multiple VNs. Micro segmentation policies prepared and provisioned on edge devices. Edge devices deployed with Network automation feature. 8540 WLC controller integrated with DNA and corporate wireless access policies created.

 

NETWORK ARCHITECT| SKY UK | LONDON, May 2019 – Dec 2020 Cisco ACS based TACACS to Cisco ISE migration project: Prepared HDL and LLD documents for migration, Multisite high availability deployment, 35.000 network devices, 300 TACACS policies, 50+ TACACS command set, 60+ shell profiles and tens of RADIUS Authorization profiles migrated into ISE. Secure LDAP authentication integrated. Cisco ISE REST API with deviceDB provisioned. Prepared python script to manipulate and migrate Cisco ACS deviceDB into Cisco ISE and testing AAA on multiple device types. Prepared python script to test authentication requests on multiple device types. Cisco ISE F5 Load balance tests completed. Cisco ISE Ixia Breaking Point load tests completed. Prepared HDL and LLD documents for migration of ASA firewall to Palo Alto in a highly complex network infrastructure. Migration plans prepared for Nokia 7750 service routers, Cisco ASR, Cisco Nexus, Cisco 7600, Cisco ASA 5540 and Palo Alto 3220s. Cisco to Nokia complex routing policy conversion. ASA to Palo Alto multi virtual system migration tested and all change scripts prepared for change engineers.

NETWORK ARCHITECT| Citizens Advice Bureau | LONDON, Oct 2018 – May 2019 NAC project; PKI services provisioned. Distributed Cisco ISE deployment integrated with Active Directory and Aruba wireless system. ISE PAN failover deployed. Wired MAB for non-cisco IP Phones, Wired/Wireless EAP-TLS based 802.1x for Windows and macOS devices. External Microsoft SCEP service integrated into ISE. Certificate auto-enrolment and Wired and Wi-Fi profile group policies prepared. Microsoft Azure AD / Intune: Windows/macOS device enrolment, posture assessment and compliance checks integrated with Cisco ISE. Intune CA connector and Application proxies provisioned between internal NDES service and Azure Intune. Cisco ISE and Splunk integration; Splunk search processing language (SPL) used extensively to create custom search scripts. High Level Design and Low-Level Design documents prepared.

NETWORK ARCHITECT| CAPITA | LONDON, Feb 2018 - Oct 2018 National Air Traffic Control (NATS) Second Systems LAN migration project; HP IMC Integration, LAN solution with Aruba and HP Comware series switches, configuration templates for network devices prepared. Integrated Fortinet 1000D and Aruba Clear Pass Policy Manager to IMC system. MSDP and PIM-sparse mode multicast implementation, Multiprotocol BGP and OSPF routing policy integration. Policy based routing and GRE tunnel setup. QoS configuration across LAN. Prepared HLD and LLD documents and Run Book articles.

NETWORK ARCHITECT| London Ambulance Services | LONDON, Jun 2017 – Feb 2018 Internet migration project at London Ambulance Service NHS Trust; designing DMZ and Internet infrastructure; prepared High-Level Design document for Cisco ASA firewalls to Cisco Firepower, two tier firewall design with Fortinet and Cisco Firepower. Cisco ACS (TACACS, RADIUS) management. Cisco wireless migration; WISM1 to WISM2, Cisco IOS Firewall feature set implementation, QoS enhancements on Cisco switches and ASR1000 routers including CoS and DSCP manipulation, traffic classification, policing and shaping. Network automation with multithreaded and multi-process python scripting. Documented the network infrastructure.

NETWORK ARCHITECT| ATLASTEL | ISTANBUL, TURKEY 2014 – 2017 Cisco IOS, IOS-XE, IOS-XR, NX-OS operations. Performed supplier and contract reviews. Multiple Wired/Wireless 802.1x implementation with Cisco ISE, Cisco ACS, Aruba Clear Pass Policy Manager and Free radius. Cisco Firepower IPS integration. F5 Big IP NLB integration. Arista MLAG and VMTracer integration with VMware ESXi. Arista PIM multicast routing deployed in a complex network environment. Cisco ASA to Checkpoint, Fortinet and Palo Alto firewall migrations. Brocade ethernet fabric installations with VDX switches. PIM Sparse mode multicast network implementations. QoS for Voice VLAN, H.323 and SIP configuration. Fortinet 600D in HA mode and FSSO Active Directory integration. Two factor authentication 2FA, Multi Factor Authentication MFA integration. Delivered Brocade IP and SAN courses to Brocade partners. Delivered Fortinet NSE4, NSE5 and NSE6 courses to corporate customers.

Skills
Environments
  • Campus LAN (Medium)
  • Network Security
  • Wireless
IT Infrastructure Expertise
  • Scripting
IT Infrastructure Products
  • Aruba
  • Aruba ClearPass Policy Manager
  • Cisco ACS
  • Cisco ASA
  • Cisco ASA5500-X Series
  • Cisco ISE
  • Cisco Wireless
  • Cisco Wireless Controllers
  • Fortinet
  • Microsoft Intune
  • Nokia
  • Palo Alto Networks
  • Splunk
  • Wireshark
IT Infrastructure Technologies & Protocols
  • BGP
  • Firewall Policies
  • GRE
  • IPSec
  • mBGP
  • NAT
  • OSPF
  • QoS
  • Spanning-Tree (STP, RSTP)
IT Network Expertise
  • Architecture
  • Network Design
  • Proof of Concept
Programming Languages & Frameworks
  • Ansible
  • Jinja (Python)
  • Python
  • YAML
Consultant
Atlas Telekomunikasyon: IT Security
Consultancy & Professional Services company
Show lessShow more

Feb 2014 - Mar 2017

About the role

Trusted advisor and consultant for Brocade, Arista, Fortinet, Aruba and Cisco products. Cisco IOS, IOS-XE, IOS-XR, NX-OS operations. Performed supplier and contract reviews. Multiple Wired/Wireless 802.1x implementation with Cisco ISE, Cisco ACS, MS NPS and Freeradius. Arista MLAG and VMTracer integration with VMware ESXi. Multiple Arista PoC workshops delivered. Cisco Nexus 7000 and 5000 spine-leaf fabric implementation. Multiple Brocade fabric installations. PIM Sparse mode and PIM Dense mode multicast network implementations. HP SDN Controller and Network Optimizer application for Microsoft Lync integration. Fortinet 600D in HA mode and FSSO Active Directory integration.

Skills
Environments
  • Campus LAN (Large)
  • Data Centre
  • Network Security
  • Voice / Telephony
  • Wireless
IT Infrastructure Expertise
  • Datacentre Migration
IT Infrastructure Products
  • Arista Networks
  • Aruba
  • Brocade
  • Checkpoint Firewall
  • Cisco
  • Cisco ACS
  • Cisco ISE
  • Fortinet
  • Fortinet FortiGate
  • Palo Alto Networks
IT Infrastructure Technologies & Protocols
  • BGP
  • EIGRP
  • FabricPath
  • IP
  • IPSec
  • MPLS
  • OSPF
  • QoS
  • RADIUS
  • WAN Optimization
Programming Languages & Frameworks
  • Python
Senior Network Engineer
Bilge Adam: IT Security
Show lessShow more

Oct 2006 - Dec 2014, Istanbul

About the role

Responsible to conduct Cisco, HP Networking courses and network services consulting. Cooperation with sales department in project development period. Project management. Specialized in Voice over IP, Routing and Switching and Wireless technologies. Cisco Learning Partner Certification has been achieved. Zirve University Network Security Project, Naksan Holding Network Security Project, Kibar Holding Network Security Project, EnerjiSA Network Security Project, STFA Network Security Project, SuperOnline Backbone migration Project : Migrating current internet circuits of Super Online customers arround country to Cisco ASR 9000 and Huawei NE40 series routers from Cisco 7600 and 6500 series of devices. Building technical team, kickstarting project with customer engineers and introducing the new
team to customer, planning meetings and collecting all required information for project devolepment cycle. Converting old device configurations acccording to new implementation requriements, planning down times and reporting the operation’s results to customer.

Skills
Environments
  • Data Centre
  • Network Security
  • Voice / Telephony
  • Wireless
IT Infrastructure Expertise
  • Datacentre Migration
  • IT Monitoring Tools & Management
IT Infrastructure Products
  • Checkpoint Firewall
  • Cisco
  • Cisco 7600 Series
  • Cisco ASR 9000 Series
  • Cisco ISE
  • Cisco Wireless Controllers
  • Fortinet
  • HP
  • Huawei
  • Huawei NE40E Universal Service Router
  • Palo Alto Networks
IT Infrastructure Technologies & Protocols
  • BGP
  • EIGRP
  • FlexVPN
  • IP
  • mBGP
  • MPLS
  • MPLS VPN
  • OSPF
IT Network Expertise
  • Network Design
  • Network Implementation
  • Network Support
  • Training Delivery
Programming Languages & Frameworks
  • Python
Network Engineer
Netron: IT Networks
Show lessShow more

Jan 2005 - Oct 2006, Istanbul

About the role

Responsible to conduct Cisco courses and network consulting. Cooperation with sales department in project development period. Specialized in Voice over IP, Routing and Switching technologies. Delivered Cisco CVOICE, CIPT1/2, CCNA and CCNP courses.

Skills
Environments
  • Network Security
  • Voice / Telephony
IT Infrastructure Products
  • Cisco
IT Infrastructure Technologies & Protocols
  • BGP
  • EIGRP
  • IP
  • Multicast (PIM)
  • OSPF
  • VOIP
IT Network Expertise
  • Training Delivery
Network Engineer
UPS: IT Networks
Show lessShow more

Jan 2004 - Jan 2005, Istanbul

About the role

Managed the wide area network of company in country-wide, designed and implemented network management systems for company LAN and WAN. Designed and implemented site to site and remote VPN network. QoS implementation for frame-relay to ATM interworking wide area network with ppp extentions, NBAR and Cisco Modular Quality of Service CLI (MQC). Converting routing infrastructure from Cisco EIGRP to open standard OSPF.

Skills
Environments
  • Campus LAN (Large)
  • WAN (Nationwide)
IT Infrastructure Products
  • RedHat
  • WatchGuard
IT Infrastructure Technologies & Protocols
  • ATM
  • EIGRP
  • Frame Relay
  • GRE
  • IPSec
  • OSPF
  • PPP
  • QoS
IT Network Expertise
  • Network Design
  • Network Implementation
  • Network Support
Network Engineer
ERENET: IT Networks
Show lessShow more

Jan 2001 - Jan 2004, Istanbul

About the role

Cooperation with sales department in project development period and finding new technologies and solutions that satisfy customer requirements. LAN and WAN design with various network technologies. Cisco Premier Partner Certification update and Wireless LAN partner specialization have been achieved. VoIP implementation with analogue and digital infrastructures, QoS configuration on Cisco routers with interleaving, fragmentation and multilink ppp.

Skills
Environments
  • Campus LAN (Large)
  • WAN (Nationwide)
  • Wireless
IT Infrastructure Products
  • Cisco
  • Cisco PIX
IT Infrastructure Technologies & Protocols
  • ATM
  • BGP
  • EIGRP
  • Frame Relay
  • OSPF
  • PPP
  • QoS
IT Network Expertise
  • Network Design
  • Network Implementation
  • Network Support
  • Pre-Sales / Post-Sales