Amir Jafari

You will never know what can be done until you try to do it.

You will never know what can be done until you try to do it.

Welcome.

Amir Jafari is an experienced cyber security specialist and network solution architect, with recognized strength in the design, implementation, and support of advanced LAN/WAN infrastructure and data center.
He has an in-depth knowledge of routing/switching technologies, security solutions, smart grid, virtualization, voice and unified communications.
He is Creative, analytical thinker with demonstrated ability to troubleshoot and optimize network services.

Education

2011: M.Sc. Networking Professional
Sheffield Hallam University(Sheffield, United Kingdom), Distinction
Thesis: "Performance Evaluation of IEEE 802.11p for Vehicular Communication Networks"
Ranked first amongst 14 MSc Networking Professional students during academic year 2010/11
2011:Cisco Networking Academy
Sheffield, United Kingdom
Network Fundamentals, LAN Switching and Wireless, Accessing the WAN, Routing Protocols and Concepts, and CCNA Security
2008: B.Sc. Computer Engineering
Tarbiat Moallem University (Tehran, Iran)
Thesis: "Office Automation"

Certifications & Trainings

2014: ISO/IEC 27001:2013 Information Security Management Systems,QMS Certification
2013: Cisco Certified Internetwork Expert (CCIE) Routing and Switching,CyberTech, Tehran
2013: Cisco Certified Network Professional (CCNP) Route, CyberTech
2012-13: Cisco Certified Network Professional (CCNP) Switch, CyberTech
2012: Cisco Certified Network Associate (CCNA) Voice, CyberTech
2012: SCADA Protocols (IEC 60870-5-101/104, DNP3),IEHT, Tehran
2010: IT Project Management (ITIL, COBIT), Sheffield Hallam University
2006: Developing Microsoft ASP.NET Web Applications, Tehran Institute of Technology

Member of

Back to Top

Work Experience

- Information Security Consultant in Electronic Card Damavand, Tehran, February 2014 – Until Now
  • Leading the design, implementation, operation and maintenance of the Information Security Management System (ISMS) based on the ISO/IEC 27000 series standards and PCI DSS for the Electronic payment system
  • Developing, maintaining, and implementing business continuity and disaster recovery plan (BCP/DRP) based on NIST 800-34 Contingency Planning Guide including business impact analyses, strategy selection, and documentation of business continuity and disaster recovery procedures
  • Device hardening, control and management plane protection, following the Cisco SAFE security reference architecture
  • Determining processes and procedures for the Security operation centre (SOC) and SIEM platform
- Network and IT Security Manager in Asan Andish Co., Tehran, January 2014 – Until Now
  • Administrating Web Servers, Security, & Maintenance (IIS, Apache, DNS, FTP, Mail, SSL, etc)
  • Identifying vulnerabilities of networks, systems and web applications by performing penetration tests and assessments
  • Designing, implementing, and maintaining next generation Data Center switch product family, with emphasis in fabric extension technologies
  • Identifying NFV and SDN architectures and implementation including Cisco Open Network Environment (ONE) , OpenFlow , Huawei SoftCOM, VMware NSX, and Alcatel-Lucent Nuage Networks

- Leading the Information and Communication Technology Division, Smart Microgrid Pilot-Plan Design Studies, Tehran, Iran, November 2012 – December 2013
Providing Iran smart grid roadmap ordered by TAVANIR (Iran Power Generation, Transmission & Distribution Management Co.)
Project Manager: Dr. Abdolreza Sheikholeslami, Scientific Director: Dr. Ali Nabavi
  • Studying various issues and challenges involved in design, deployment, utilization, and maintenance of the smart grid Infrastructure and the communication requirements needed for ensuring performance, flexible operation, and reliability
  • Responsible for the overall security of the WAN edge, and Enterprise Campus
  • Identifying various communication technologies that can be integrated with smart grid
  • Illustrating standards for information exchange in smart grid (standards for smart metering, Modbus, DNP3, IEC 60870-5, IEC 61850)
  • Investigating security and management solutions required for smart grid including Data encryption, Authentication, Digital signatures, and Cyber security standards (IEEE 1686, NERC CIP, IEC 62351, and NISTIR 7628)
  • Reviewing the smart grid main applications and communication requirements
  • Presenting the communication architecture of the current Iran distribution system and propose a heterogeneous communication paradigm for Iran smart grid
  • Studying protection issues, network management system and communication requirements for Microgrid in two modes: (1) grid-connected and (2) standalone
  • Providing smart grid equipment industry report
- Higher Supervisor of national SCADA/EMS/WAMS project coordinated by IGMC (Iran Grid Management Company), MAPNA Group and Monenco Co.
Tehran, Iran, September 2012 – June 2013
  • Providing technical consultancy for designing and deploying a WAN architecture model including two Data Centres and 500 remote substations using the fibre-optic network infrastructure
  • Analyzing technical goals, characterizing network traffic, logical and physical network design
  • Selecting switching and routing protocols, optimizing network performance to meet Quality of Service (QOS) requirements
  • Securing network and control system communications that conforms to cyber security standards such as NERC CIP and IEC 62351
  • Documenting the network design, selecting technologies and devices
- Associate Lecturer and Research Associate in Faculty of ACES, Sheffield Hallam University, Sheffield, UK, October 2011- April 2012
  • Teaching Internetworking course for Master programme: Network Simulation (ns-2), Routing, Switching
  • Conducting lab sessions and providing extra assistance to student
  • Doing research on Vehicular networks and studying the architecture of Wireless Access for Vehicular Environment (WAVE)
  • Measuring the performance of IEEE 802.11p standard in ns-2 network simulation environment using realistic vehicular mobility models
  • Proposing "Integration Electricity and Transportation Model for Electric Vehicles"
- Network Administrator in Rassa Engineering Co., Tehran, Iran, September 2008 - July 2010
  • Configuring Cisco Catalyst 3750 and 2960 series switches and Layer 2 & 3 switching devices
  • VLAN configuration and administration
  • Installing, managing and supporting Active directory (DNS, DHCP, Domain), Mail servers (Exchange, Mdemon), and Wireless networks
  • Configuring 802.1X Port-Based Authentication for wired and wireless networks
  • Assisting with writing procedures and documentation such as troubleshooting guides
- Executive Project Manager in Etech Co., Tehran, Iran, May 2007 – September 2008
  • Providing executive-level management and participating in on-going projects
  • Travelling to client sites to help with installs, deployment, and troubleshooting Office Automation software
  • Managing Microsoft SQL Server Database and Scheduling database backup by using standard procedures
  • Providing training and guidance for other staff and customers
  • Providing Level 1 and Level 2 technical support to 500 users over several sites
  • Working directly with product development team to troubleshoot complex issues and software defects
  • Installing and supporting of local Ethernet LAN and PC systems
Back to Top

Technical Competence


  • Network and data centre security design based on global standards and models such as Cisco SAFE security reference architecture and Enterprise Composite Model
  • Configuring, verifying, and troubleshooting security mechanisms:
    Device Hardening, AAA, Layer 2 Security (Port Security, Dynamic ARP Inspection, DHCP Snooping, IP Source Guard, Dot1x, Storm Control), Layer 3 Security (IP ACL, Context-based Access Control, DMVPN)
  • Having a deep understanding of security technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls, Log Analysis, and Security Information and Event Management (SIEM)
  • Implementing and troubleshooting network security protocols IPSec and IKEv2, v1 and interoperability issues with VPNs
  • Implementing and troubleshooting switching protocols and mechanisms:
    VLANNIG, VLAN Trunking Protocols (ISL, Dot1q), inter-VLAN Routing, VTP, STP, RSTP, PVST+, CEF, FC, FCoE, FEX, vPC, OTV, VN-Tag, VXLAN
  • Configuring, Implementing and troubleshooting layer 3 protocols and mechanisms:
    Routing Protocols (RIP v1 & 2, IGRP, OSPF, EIGRP, BGP), Route Map, Route Summarization, Route Redistribution, Static Routing, MPLS, TRILL, PIM-SM
  • Configuring, verifying, and troubleshooting IP addressing services including IPv4, IPv6, VLSM, CIDR, Private Addressing, NAT, PAT
  • Configuring and verifying Network Management protocols including SNMP (v1, v2c, v3), Logging, NTP, Syslog, CDP
  • Advanced Quality of Service (QoS) design, implementation and troubleshooting including Classification and Marking, Congestion Management and Avoidance, Shaping and Policing
  • Configuring and verifying WAN connections including PPP,HDLC, Frame Relay, VPN
  • Configuring, verifying, and troubleshooting VOIP solutions and Cisco Unified Communications Manager
  • Implementing AAA using Cisco ACS Servers and TACACS+ and RADIUS protocols
  • Having a special focus on emerging technologies especially within Cloud Computing and Software-Defined Networking (SDN)
  • Installing and configuring Microsoft Exchange, MDAEMON mail server, Active Directory, DNS and DHCP on Windows Server
  • Installing and maintaining Microsoft SQL Server
  • Developing multimedia application and designing professional Website

Tools

  • Programming: TCL, SQL, XML, C++, C#, ASP.net
  • Operating systems: Linux (Red Hat, UBUNTU), Windows Server 2003/2008
  • Tools: VMware,NS-2, SolarWinds, Cisco ACS Servers, Cisco Unified Communications Manager (CUCM), Matlab, Adobe flash
Back to Top

Publications


- "Performance Evaluation of IEEE 802.11p for Vehicular Communication Networks"
A. Jafari , S. Al-Khayatt and A. Dogman, 8th IEEE, IET Int. Symposium on Communication Systems, Networks and Digital Signal Processing, 2012, Published

"Performance Evaluation of IEEE 802.11p for Vehicular Communication Networks"[PDF]
A. Jafari ,M.Sc. Thesis, Sheffield Hallam University, 2011,
Back to Top

Presentation

Back to Top

Get in touch.

Send me a message


 

   






Back to Top