Summary
Overview
Work History
Education
Skills
Accomplishments
Certification
Languages
Timeline
Generic
Imran Talib

Imran Talib

Milton,Ontario

Summary

Knowledgeable Network Security Engineer with strong background in engineering principles and project management. Successfully led multiple initiatives to improve process efficiency and product quality. Demonstrated expertise in problem-solving and collaboration with cross-functional teams.

Overview

12
12
years of professional experience
1
1
Certification

Work History

Information Security L3 Engineer

Ministry of Finance (NCGR)
10.2023 - 12.2024
  • Daily based provisioning, troubleshooting incidents and connectivity issues related to Firewalls and networking domains
  • Designing, implementing, and maintaining secure network infrastructures, including firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, IPsec, Proxy, WAF and other security appliances
  • Managing Cisco Prime & Cisco Identity Services Engine (ISE) for network access control and security
  • Management and configuration of Cisco Wireless LAN Controllers (WLCs) (8500 & 9800) and various Cisco and Meraki access points
  • Oversee daily operations and drive continuous improvement of firewall governance and compliance
  • Serve as a technical resource for Network Security platforms, providing advanced support to both Security Operations and IT Helpdesk teams
  • Collaborate with application vendors to resolve technical challenges
  • Investigating and responding to security incidents, including malware outbreaks, denial-of-service attacks, and data breaches
  • Provide support and resolution for service tickets related to network security technologies utilized by the IT Security Operations team
  • Adhere to ITIL best practices, including Incident Management, Problem Management, Request Fulfillment, and Change Management
  • Participating incident response drills and developing and maintaining disaster recovery plans
  • Collaborating with other teams, such as systems administrators, developers, and database administrators for daily basis troubleshooting sessions related to Audit, Operations, DR (Disaster Recovery)
  • Collaborate with cross-functional teams to review and implement Firewall (FW) requests
  • Experience with data center technologies like Cisco Nexus switches (5500) and Application Centric Infrastructure (ACI) including APICs, ISN, Spine & Leafs
  • Gained hands-on experience with Cisco SD-WAN (Viptela) through Cisco DevNet labs, configuring vManage, policies, and overlay network functionality
  • Proficient in basic SD-WAN concepts and troubleshooting
  • Designed and implemented complex Cisco Catalyst LAN and wireless networks, including high-availability and redundancy configurations
  • Expertise in advanced switching and wireless features, such as QoS, multicast, and network automation
  • Designed and implemented a comprehensive security architecture using Cisco Firepower, integrating with other security appliances and cloud services
  • Expertise in advanced Firepower features, such as malware protection, URL filtering, and application control
  • Familiar with Zscaler cloud security platform and its core components, including Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA)
  • Understands basic cloud security concepts
  • Actively implement and maintain compliance with all applicable security policies and standards
  • Participate in real-time network security event monitoring and response
  • Implement changes on Firewalls following established change management process with NCM Team and Join CAB TAB meetings for network changes and discuss justifications for downtime
  • Conduct routine audits for Cisco, Fortinet, Palo Alto Firewalls configurations to validate adherence to security policies and compliance mandates
  • Implement a change control protocol to manage and document configuration changes effectively
  • Collaborate with Fortinet and Palo Alto vendors for proactively working on dealing with CVE’s and Vulnerabilities and take appropriate action prior to the time
  • Experience applying the NIST Cybersecurity Framework to assess, manage, and improve organizational security posture
  • Managing a wide range of Cisco routers (Nexus Series 9000,9200,9300, ASR series 1000) & Cisco switches, including core switches (9606), distribution switches (4500x), and access layer switches (3650, 9300, 2960x, 9200)

Network Security Engineer

Huawei – Zain Project
03.2019 - 09.2023
  • Manage daily operations, including incident resolution, provisioning requests, firewall connectivity requests, and network routing requests and Managed IPsec tunnels for over 100 customers to enable secure access to their resources hosted on Zain Cloud
  • Managed F5 provisioning requests, including Nodes, Pools, Virtual Servers, load balancing configuration, SSL offloading, APM policy management, WAF policy creation for over 60+ applications, GTM record creation for new domains, and LTM troubleshooting and provisioning
  • Provided customer support for Site-to-Site VPN connections, ensuring secure and reliable access to their designated network zones (e.g., server farms, DMZ) as per customer requirements
  • Provided switching and routing configuration support for the VM team during new virtual environment provisioning
  • Troubleshooting wireless technologies with Cisco and Aruba vendors, access points configuration, troubleshooting and Cisco Controllers
  • Managed a diverse range of Cisco network devices including various Catalyst switches (9606, 4500x, 3650, 9300, 2960x, 9200)
  • Administered Cisco Prime and ISE for network access control and security
  • Managed Cisco 8500/9800 WLCs and Cisco/Meraki access points
  • Managed daily operations for Identity Services Engine (ISE), including user troubleshooting, policy management, and authorization
  • Collaborate with peers across High Touch Technical Services and development teams to effectively investigate and resolve incidents, outages, CVEs, and vulnerabilities
  • Open vendor cases as needed
  • Successfully configured, optimized, and troubleshooted network protocols including IPv4/v6, EIGRP, IS-IS, OSPF, BGP, MPLS in complex and dynamic network environments, ensuring network stability, performance, and optimal routing
  • Maintain implementation, configuration, and troubleshooting of Layer 2 technologies including VTP, STP, MST, RSTP+, Trunking, VLANs, Layer 3 Switches, and Logical Ether Channels
  • Managed the configuration, monitoring, and troubleshooting of network protocols and services such as HSRP (Hot Standby Router Protocol), NAT (Network Address Translation), SNMP (Simple Network Management Protocol), SYSLOG, NTP (Network Time Protocol), PTP (Precision Time Protocol), DHCP (Dynamic Host Configuration Protocol), CDP (Cisco Discovery Protocol), TFTP (Trivial File Transfer Protocol), FTP, NTP (Network Time Protocol) and NetFlow to ensure network stability and performance

Core Wireless Network Engineer

Business Management Company – STC Project
07.2018 - 02.2019
  • Conducted daily and weekly network audits to identify and resolve performance bottlenecks and security vulnerabilities
  • Provisioned new devices using Aruba/Cisco Mobility Controllers
  • Installed, maintained, and troubleshooted Aruba Wi-Fi APs, Controllers, and Airwave servers
  • Proactively addressed user complaints, implemented preventative maintenance measures, and maintained a stable and reliable network environment
  • Managed and optimized core network performance, ensuring high availability and minimal downtime
  • Conducted daily and weekly network audits to identify and resolve performance bottlenecks and security vulnerabilities
  • Performed rigorous device acceptance testing for all new network equipment
  • Configured and maintained Cisco wireless networks using WLCs (Wireless LAN Controllers) and access points
  • Troubleshooted wireless connectivity issues and provided end-user support
  • Deployed and configured Cisco Aironet access points, ensuring optimal coverage and performance
  • Monitored wireless network performance and identified areas for improvement & assisted in the implementation of wireless security protocols, including WPA2/3
  • Cisco Prime Infrastructure for wireless network management & Implemented advanced wireless security features, including 802.1X authentication and guest access
  • Troubleshot complex wireless network issues, identifying root causes and implementing effective solutions

Network Engineer

Mobily
12.2012 - 06.2018
  • Collaborating with multiple network vendors, including Cisco and Juniper, for seamless integration
  • Configured and provisioned Internet access and VPN services for diverse customer requirements
  • Managed IP address provisioning, assignment, and routing within the network
  • Configured DIA (Dedicated Internet Access) services for new customer connections
  • Fine-tuned BGP attributes to effectively control upstream (TIER 1) traffic flow
  • Successfully executed network change requests (CM) as per planning team directives, minimizing disruption and ensuring timely implementation
  • Collaborated effectively with multiple network vendors (Cisco, Juniper) for seamless integration and support
  • Provisioned and configured a wide range of network services, including Internet access, VPNs (L2VPN, L3VPN), and DIA connections, meeting diverse customer requirements
  • Configuration, monitor, audit and optimize cisco wireless solutions
  • Managed IP address allocation and routing, ensuring efficient and secure resource utilization
  • Optimized network performance by fine-tuning BGP attributes effectively control upstream traffic flow
  • Provided prompt and effective troubleshooting for customer network issues, ensuring service continuity and high customer satisfaction

Education

High School Diploma -

Pak Poly Technique Institute
Lahore, PAK

Bachelor of Technology (B-Tech) -

Preston University
Lahore, PAK

Skills

  • Project management
  • Technical design
  • Systems analysis
  • Problem solving
  • Data analysis
  • Process optimization
  • Documentation skills
  • Team collaboration
  • Technical writing
  • Creative solutions
  • Testing procedures
  • Time management
  • Engineering principles
  • System integration
  • Analytical skills
  • Troubleshooting skills
  • Risk management
  • Technical expertise
  • Cross-functional teamwork
  • Innovation skills
  • Client relations
  • Detail orientation
  • Communication skills
  • Adaptability skills
  • Industry standards
  • Workflow efficiency
  • Operational planning
  • Vendor management
  • Regulatory compliance
  • Strategic planning
  • Leadership skills
  • Critical thinking
  • Technical reporting
  • Engineering documentation
  • System troubleshooting
  • Root-cause analysis
  • Programming languages
  • Technical diagram generation
  • Digital design
  • Data management
  • Network configuration
  • Analytical problem solving
  • Hardware troubleshooting
  • Cybersecurity awareness
  • Technical documentation

Accomplishments

  • Led the response to a complex, multi-stage cyberattack, effectively containing the breach and minimizing data loss, saving the company an estimated [amount] in potential damages.
  • Established and managed a threat intelligence program that provided actionable insights, resulting in the prevention of thousands of potential security incidents.
  • Mentored and trained junior security engineers, improving team capabilities and reducing reliance on external resources.
  • Developed and delivered security awareness training programs, significantly improving employee security awareness and reducing phishing incidents.
  • Led cross-functional teams in the implementation of complex security projects, ensuring successful project delivery and stakeholder satisfaction.
  • Established a security knowledge base and documentation repository, improving team efficiency and knowledge sharing.

Certification

F5 Certified! Configuring BIG-IP APM v16

F5 Certified! Technical Specialist, BIG-IP ASM

F5 Certified! Administrator, BIG-IP (F5-CA, BIG-IP)

F5 101 Certified - App Delivery Fundamentals

CCIE Security# 66971 Cisco Certified Internetwork Expert

Implementing Cisco Application Centric Infrastructure

Cisco Security Identity Mgmt. Implementation(ISE)

Cisco Certified Network Professional Security

Cisco Certified Specialist - Security Core

Stealth watch for System Administrators (SSA)

Cisco Umbrella DNS - Learn Cisco Cloud Security

SIEM Administration with Q-Radar

Cisco Certified Specialist - Service Provider Core

Aruba Certified Mobility Professional (ACMP)

CCIE Routing and Switching

Languages

English
Full Professional
Urdu
Native or Bilingual

Timeline

Information Security L3 Engineer

Ministry of Finance (NCGR)
10.2023 - 12.2024

Network Security Engineer

Huawei – Zain Project
03.2019 - 09.2023

Core Wireless Network Engineer

Business Management Company – STC Project
07.2018 - 02.2019

Network Engineer

Mobily
12.2012 - 06.2018

High School Diploma -

Pak Poly Technique Institute

Bachelor of Technology (B-Tech) -

Preston University

Similar Profiles

CREATE PROFILE
Imran Talib