My Security Skills

Throughout my carreer I've always been exposed to Security technologies ranging from Firewall and IPsec VPNs to higher level services such as IDS/IPS, DLP, WAF and AAA.
I've been deeply involved in many streams of a large enterprise wide Cyber Security Program that has spanned over many years and touched on countless technologies. While I have not become an expert on all the different IT security technologies, I have gained a lot of insightful knowledge that ensure I have a more than basic understanding of them.

Firewalls

Checkpoint is the Firewall vendor that I have more than 15 years of experience with (R65 - R81) and I've installed, upgraded and managed various deployments with different HA technologies such as ClusterXL, VSX and most recently Maestro.
With our expansion into the Cloud I've been working a lot on migrating Firewall polices to Azure native FWs which were deployed using infrastructure as Core.

• Checkpoint R65 - R81
• MS Azure native Firewall
• Cisco ASA
• Juniper SRX
• IPsec tunnels, Checkpoint Mobile

AAA

Authentication, Authorization and Accounting has alwasy been an important topic but has more recently become an even more critical part of our security posture.

• TACACS on ACS
• RSA SecureID for MFA
• Microsoft Entra ID - SAML
• Radius and TACACS on Cisco ISE
• Enterprise wide NAC using Certificate and MAB based Dot1x Authentication

Other Security protocols and technologies

Here a brief list of other protocols and technologies I have worked with.

• zScaler
• McAfee DLP
• DDoS (onPrem and ISP hosted)
• F5 ASM - L7 WAF
• 802.1ae - L2 MACsec