Summary
Overview
Work History
Education
Skills
Projects
Languages
Timeline
Generic

Mounir BELGHIT

Issy-les-Moulineaux

Summary

Network engineer with nearly 10 years of experience in designing, securing, and optimizing IT infrastructures. Specialist in network and systems administration with expertise in SD-WAN, firewall security (Fortinet), virtualization (VMware), and enterprise network solutions. Currently overseeing the global network infrastructure at HR Path, ensuring the maintenance, security, and modernization of systems across multiple data centers and international sites. Skilled in troubleshooting, automation, and technical documentation, with a strong focus on cybersecurity and compliance. Passionate about IT innovation and network security, I am seeking a new challenge in Kuwait to apply my expertise to strategic projects and enhance infrastructure resilience.

Overview

12
12
years of professional experience

Work History

Network Engineer/Manager

HR Path
Puteaux
09.2014 - Current
  • Ensuring the operational maintenance of HR Path’s system and network infrastructure
  • Conducting technology watch on hardware and software infrastructure
  • Performing maintenance and installations in data centers (3 Equinix data centers connected by dark fibers)
  • Network monitoring and surveillance using Nagios/Grafana
  • Implementing VLANs, IPsec tunnels, and VPN access for internal employees and clients
  • Supervising a team of two system and network interns since July 2024
  • Ensuring compliance with procedures and drafting technical documentation
  • Installing and maintaining hosted and internal client environments, whether physical or virtual
  • Providing Level 2/3 support to customers and internally
  • Troubleshooting LAN & WAN connections and software/hardware issues for 2,000 users
  • Installing, configuring, managing, and updating Fortinet network equipment and SD-WAN deployment
  • Monitoring and maintaining data center and branch connections, including fiber links and transceivers
  • Supporting pre-sales teams during tenders and drafting technical documents related to the infrastructure
  • Continuously monitoring CVEs published by vendors to prevent attacks and secure the infrastructure
  • Frequent experience with: VLAN, NAT/VIP, DHCP, DNS, IPsec

System & Network Administrator

AlphaValue
Paris
11.2012 - 09.2013
  • Respond to user requests and resolve common incidents
  • Install and configure workstations and software
  • Assist in account and access management (account creation, password management)
  • Support the team in maintaining servers and network equipment
  • Monitor the proper functioning of IT systems
  • Participate in updates and data backups
  • Support the team in IT system improvement projects
  • Help implement new solutions (hardware, software, network)

Education

Master’s Degree - Systems, Networks and Cloud computing

01.2016

Bachelor - Systems and Networks

01.2013

Higher National certificate - Entreprise Network Administration

01.2012

Skills

  • Networking (Hardware & Software)
  • LAN
  • WAN
  • GRE Tunnel
  • IPsec
  • Routing Protocol static
  • LACP
  • NAT/PAT
  • Etherchannel
  • SDWAN Fortinet
  • FortiOS 60/62/64/72
  • Cisco Catalyst Access
  • Dell SmartFabric OS 10
  • Fortiswitches
  • Alcatel
  • Avaya IP Office 500
  • Network access control
  • FortiAuthenticator
  • Radius
  • 8021X
  • EAP-TLS
  • SSO
  • MAB
  • Troubleshooting with FortiAnalyzer
  • Splunk
  • FortiManager
  • Ansible
  • SSLVPN
  • Forticlient
  • Zscaler Private Access
  • Proxy Wan
  • Zscaler Internet Access
  • VMware Esxi 70/80
  • Linux
  • Centos
  • Ubuntu
  • Redhat
  • Windows Server 2016
  • Windows Server 2019
  • Windows Server 2022
  • Backup & Recovery Solution
  • Commvault
  • Monitoring
  • Nagios
  • SAN
  • Dell
  • Powerstore 1200T
  • Compellent SC 5020
  • OpenCTI
  • Switches
  • Cisco
  • 2960X
  • 3750
  • 224D
  • 248E
  • 1024D
  • Cisco Routers
  • 2901
  • 2911
  • Zscaler
  • ZDX
  • ZIA
  • ZPA
  • Firewalls
  • Fortinet
  • 60D
  • 60F
  • 100D
  • 100E
  • 120G
  • 200E
  • 100F
  • 200F
  • 501E
  • 1100E
  • Wireless Controllers
  • Netgear
  • FortiAP 221E
  • 421E
  • 231G
  • 431F
  • Project Management
  • Kanboard

Projects

Network Infrastructure & SD-WAN Deployment
  • Migration of an aging MPLS architecture to an SD-WAN architecture across HR Path sites in France and worldwide.
  • Hub-and-Spoke architecture with a data center composed of three sites connected in a metro cluster using dark fiber, with branch offices connected via SD-WAN.
  • Complete overhaul and reorganization of network addressing in the data center and branch offices.
Security & Access Control
  • Installation and configuration of FortiAuthenticator to manage Network Access Control (NAC) with SSO and SSL filtering for firewall rules.
  • Project to secure wired and Wi-Fi network connections at HR Path using 802.1X and EAP-TLS certificates, authenticated via a FortiAuthenticator-powered RADIUS (previously managed via Windows NPS).
  • Securing SSL VPN access and branch office access through FortiAuthenticator (deployed in July 2018).
  • Deployment of Fortinet-embedded NAC to secure branch office connections.
  • 802.1X security enforcement for cameras, printers, and user workstations, with policies applied at the switch level. Devices failing compliance rules are placed in a quarantine network with no access.
Firewall & WAN Migration
  • Hardware migration of core network firewalls in the data center, upgrading from Fortigate 501E to 1100E. Full project management, from study to execution, scheduled during non-business hours.
  • Migration of WAN provider equipment in the data center, requiring updates to all NAT rules and IPsec tunnels to match the new IP range.
  • Overhaul of firewall rules, reorganizing them into structured sections based on a defined logic.
Authentication & Identity Management
  • Migration of Office 365 authentication from a federated model to direct authentication, now allowing users to reset their passwords (in production for nearly one year).
Telephony & Communication
  • Implementation of a complete Avaya IPBX telephony solution, including a conference call module and an automated switchboard.
  • Migration of direct dial (SDA) lines to the solution in collaboration with the telecom operator.
Virtualization & Storage Infrastructure
  • Revamp of VMware virtualization infrastructure in 2020 (19 ESXi hosts distributed across four clusters: Production, Cybersecurity, Infrastructure, and Development).
  • Configuration of Dell storage switches, distributed across the three data centers and connected via dark fiber, enabling a SAN Stretched Cluster architecture.
User Experience & Access Management
  • Configuration and deployment of a captive portal with self-enrollment across the group.

Languages

French
First Language
English
Advanced (C1)
C1

Timeline

Network Engineer/Manager

HR Path
09.2014 - Current

System & Network Administrator

AlphaValue
11.2012 - 09.2013

Master’s Degree - Systems, Networks and Cloud computing

Bachelor - Systems and Networks

Higher National certificate - Entreprise Network Administration

Similar Profiles

CREATE PROFILE
Mounir BELGHIT