Summary
Overview
Work History
Education
Skills
Websites
Certification
Accomplishments
Technicalskills
Languages
Timeline
Generic

Nicolae Bratuva

Hampton Park,Australia

Summary

Experience in IT security and network engineering with responsibility for enterprise-grade network security, access control, security solution design, network design and cybersecurity, with specialist expertise in Checkpoint, Cisco and Bluecoat products. Seeking a role in information security, network security or solution design and implementation.

Proactive and goal-oriented professional with excellent time management and problem-solving skills. Known for reliability and adaptability, with swift capacity to learn and apply new skills. Committed to leveraging these qualities to drive team success and contribute to organizational growth. Network security professional with proven track record in safeguarding digital environments. Known for implementing advanced security measures and managing critical infrastructure. Focused on team collaboration and results-driven strategies, ensuring reliable and adaptable network solutions. Possesses skills in risk assessment, firewall management, and threat mitigation.

Overview

24
24
years of professional experience
1
1
Certification

Work History

Cloud Consultant

Pronto Software
01.2017 - Current
  • Provide level 2 technical support and implementation services for Pronto Software customers in VMware and VMware NSX-v environments in regard to networking and network security
  • Implementation and support for site-to-site IPsec VPNs and SSL-VPNs for customers
  • As member of Design Team, I provided designs for Datacentre network infrastructure both physical and virtual and procedures for Datacentre migration
  • Clients: SME
  • Technologies: Cisco, Dell networking, VMware
  • Tools: Network sniffers, network analysers, vendor specific tools
  • SLAs | Meet demanding contractual SLAs with clients
  • Design | Infrastructure design using Cisco and Dell networking devices and Vmware NSX-v

Security Consultant

ES2
02.2016 - 12.2016
  • Design and implementation services for ES2 customers
  • -Checkpoint firewalls architectures design and implementation
  • - Migrations between firewalls types (Cisco to Checkpoint, Checkpoint to Palo Alto)
  • - SIEM design and implementation (mostly LogRhythm and Alienvault)
  • Clients: Banks, universities, hospitals, government departments
  • Technologies: Cisco ASA, Cisco ISE, Cisco ACS, Checkpoint firewalls, McAfee SIEM, Alienvault SIEM, HP Arcsight
  • Tools: Network sniffers, network analysers, vendor specific tools
  • SLAs | Meet demanding contractual SLAs with clients
  • Cybersecurity | Technical security audits for meeting ISO27000 compliance
  • Log collection and analysis
  • Policy Implementation | Implemented various security policies to match client requests and topology including access policies, NAT policies, VPN policies, proxy access policies, web-filtering, authentication

Security Support Engineer

Dimension Data
02.2014 - 06.2015
  • Company Overview: Global ICT Service Provider
  • Based in the Uptime Security team and reporting to the Technical Lead Security - Managed Services, provided level two technical support, debugging and incident resolution related to Cisco security products, Checkpoint firewalls and Bluecoat proxies
  • Left due to redundancy
  • Global ICT Service Provider
  • Clients: Banks, universities, hospitals, government departments
  • Technologies: Cisco ASA, Cisco ISE, Ciso ACS, Checkpoint firewalls, Bluecoat proxies and antiviruses
  • Tools: Network sniffers, network analysers, vendor specific tools
  • SLAs | Meet demanding contractual SLAs with clients
  • Incident Resolution | Solved various incidents which could lead to service interruption and required configuration tunings for Cisco ASA and Checkpoint firewalls in redundant configurations (including data centre failover)
  • Cybersecurity | Constantly monitored the environment for changes in the security posture and identified indicators of compromise, taking action when I found them
  • Policy Implementation | Implemented various security policies to match client requests and topology including access policies, NAT policies, VPN policies, proxy access policies, web-filtering, authentication

Monitoring Security SME / SIEM Solution Designer

Orange
01.2012 - 10.2013
  • Company Overview: Telecommunications
  • Designed an enterprise monitoring security solution using HP Arcsight for deployment in 23 EMEA countries, including architecture, design, configuration and level 3 support
  • Telecommunications
  • Project: LogEx SIEM Implementation
  • Role: Security Monitoring SME
  • Scope: $3M, 23 countries
  • Frameworks: ITIL
  • Team: 3 in the design team
  • Vendors: HP
  • Technologies/Tools: HP Arcsight, Linux
  • Design | Designed and built the test environment for an SIEM solution using open-source software and Big Data principles
  • Delivered the functional POC in 4 months, beating the 6-month SLA
  • Architecture | Produced technical architecture documentation which defined structural components (log collector, real-time dashboard and backend database), initial normalisation rules for log collector, and POC build strategy
  • Testing | Completed an initial test pilot which demonstrated the scalability, functionality, and verified that the initial design accommodated company policy (initial log format had to be preserved and dashboard displayed real-time correlations)
  • Stakeholder Management | Worked with the vendor HP, Security Architects, Legal Department and Security Engineers

Network Design Engineer / Network Security Specialist / Team Lead (Interim)

OMV/Petrom
01.2006 - 12.2011
  • Company Overview: Oil & Gas
  • Based in the Network Operation Centre (NOC) for the largest corporation in Romania and largest oil and gas producer in SE Europe with around 10,000 users, designed network and security solutions and resolved network incidents
  • As Interim Team Leader, managed seven team members responsible for incident response for the entire network of OMV/Petrom (Europe, Middle East, Russia and Kazakhstan) (Jan to Mar 2006)
  • As a Network and Security Solution Designer, translated business requirements into technical specifications, acting as the interface between business leadership and the technology teams
  • Level 2 and 3 support for all network incidences across Europe and Middle East, including Firewall and proxy management (Checkpoint, Cisco ASA, Bluecoat) and VPN administration
  • Oil & Gas
  • Environment: Cisco ASA, Checkpoint (corporate firewall), Bluecoat, ITIL, ~10,000 users
  • SLAs | As Team Lead increased performance from 75% to 90%, consistently meeting demanding SLAs
  • Stakeholder Management | Worked with department managers, Design Engineers, Security Engineers and external contractors
  • System Improvements | Defined internal procedures and drafts for naming convention, equipment configuration and incident management
  • Procedure Documentation | Wrote internal work procedures and incident response procedures
  • Audit | Provided reports on current patching status for audit purposes

Technical Manager

OmnitechNet
02.2005 - 01.2006
  • Company Overview: Telecommunications
  • Reporting to CEO, led the Network Support team, managing five network administrators and working with ~ 100 external clients to strict ITIL-based SLAs
  • Defined and implemented strategies which sustained company and client goals and objectives
  • Telecommunications

Team Lead - Field Support / Network Administrator

ITC (Institute for Computers)
01.2001 - 01.2005
  • Company Overview: Education
  • Field Support Team Leader (2003-2005), managing a team of five level 3 network engineers and supporting the networks of clients primarily small to medium size businesses
  • Designed, installed, and maintained internet services including proxy and firewall services mainly working with Cisco and Linux
  • Based in the Network Support team prior to leading field services
  • Education

Education

Master - Computer Science

University Politehnica of Bucharest
Bucharest
07-1997

Skills

  • Checkpoint
  • Cisco ASA
  • Cisco
  • Bluecoat
  • VPN
  • PaloAlto
  • HP Network Node Manager (NNM)
  • Bluecoat Proxy
  • HP Arcsight
  • Squid Proxy
  • Splunk
  • Nagios
  • Cacti
  • Unix
  • OpenNMS
  • Linux
  • Windows
  • Cisco IPS/IDS
  • Monitoring and logging
  • Network configuration
  • Cloud security management
  • Incident management
  • Virtualization technologies
  • Decision-making
  • Information security
  • Network architecture
  • Cybersecurity

Certification

  • CCNP, Cisco Routing and Switching, 11/14, Expired
  • BCCPA, Bluecoat Certified Proxy Administrator, 08/14
  • CCSE, Checkpoint Certified Security Engineer, 06/14
  • CCNA, Cisco Security, 03/14
  • CCSA, Checkpoint, 01/14
  • C|EH v7, Certified Ethical Hacker, 03/13
  • CCNA, Cisco Certified Network Associate, 10/12
  • ITIL v3, Foundation, 10/11

Accomplishments

  • Datacentre migration for Pronto Software including physical relocation and network infrastructure re-design.
  • Perth airport SIEM implementation based on McAffee SIEM.
  • End-to-end implementation of HP Arcsight in 23 EMEA countries for Orange Telecommunications.
  • Corporate network redesign for OMV/Petrom with ~5000 network devices and ~2000 locations.
  • Design and implementation of Enterprise HQ and two datacentres for OMV/Petrom.
  • Network and security design for OMV/Petrom’s 20 Fuel Warehouses.

Technicalskills

6, 5, 17, 5, 2, 15, 3, 5, 1, 10, 5, 5, 10, 5, 3, 17, 17, 5

Languages

French
Elementary
Romanian
Native or Bilingual

Timeline

Cloud Consultant

Pronto Software
01.2017 - Current

Security Consultant

ES2
02.2016 - 12.2016

Security Support Engineer

Dimension Data
02.2014 - 06.2015

Monitoring Security SME / SIEM Solution Designer

Orange
01.2012 - 10.2013

Network Design Engineer / Network Security Specialist / Team Lead (Interim)

OMV/Petrom
01.2006 - 12.2011

Technical Manager

OmnitechNet
02.2005 - 01.2006

Team Lead - Field Support / Network Administrator

ITC (Institute for Computers)
01.2001 - 01.2005
  • CCNP, Cisco Routing and Switching, 11/14, Expired
  • BCCPA, Bluecoat Certified Proxy Administrator, 08/14
  • CCSE, Checkpoint Certified Security Engineer, 06/14
  • CCNA, Cisco Security, 03/14
  • CCSA, Checkpoint, 01/14
  • C|EH v7, Certified Ethical Hacker, 03/13
  • CCNA, Cisco Certified Network Associate, 10/12
  • ITIL v3, Foundation, 10/11

Master - Computer Science

University Politehnica of Bucharest

Similar Profiles

  • Shwetha Raghava

    Shwetha RaghavaShwetha Raghava

    Software Developer at Pronto SoftwareSoftware Developer at Pronto Software

    View Profile
  • Rakitha Wickramasinghe

    Rakitha WickramasingheRakitha Wickramasinghe

    Product Manager at Pronto Software Pty LtdProduct Manager at Pronto Software Pty Ltd

    View Profile
  • Lindsey K Reyes

    Lindsey K ReyesLindsey K Reyes

    Office Manager at Pronto Dumpsters - Pronto Service GroupOffice Manager at Pronto Dumpsters - Pronto Service Group

    View Profile
Nicolae Bratuva