Hi, I'm Ahmed Soltan 👋
I am a Security Architect at ENOC and Founder & Developer of Intelvue.io, with over 12 years of experience in network and security. I specialize in designing and implementing comprehensive cybersecurity solutions to protect organizations from evolving threats. I'm also proficient in programming languages like Python and JavaScript, and have hands-on experience with frameworks such as Next.js and Django.
Skills and Vendor Experience
Cybersecurity Operations Expertise
- NGFWs
- Intrusion Prevention Systems (IPS)
- Web Application Firewalls (WAF)
- API Security
- Bot Management
- DDoS prevention
- DNS Security
- Email Security
- Phishing Simulations
- NAC
- DLP
- CASB
- Secure Service Edge (SSE)
- Zero Trust Network Access (ZTNA)
- Sandboxing
- UEBA
Programming and Automation Proficiency
I have experience in Python and JavaScript, and I've built web applications using Django, React, and Next.js. I develop automation tools that make daily network security operations more efficient, and build user interfaces that simplify functionalities and integrate with multiple network and security devices and applications.
Advanced Networking Mastery
Hands-on experience with Layer 2 (L2) and Layer 3 (L3) network architectures, protocols, and services. Skilled in the deployment and management of next-generation technologies such as Software-Defined Networking (SDN) & SD-WAN , ensuring robust, scalable, and flexible network infrastructure solutions.
Experience with Industry-Leading Vendors
Extensive experience working with industry-leading vendors such as Cisco, F5, Palo Alto Networks, Fortinet, Cloudflare, Akamai, Imperva, Forcepoint, Fire Eye, Juniper Networks, Netskope, Zscaler, Infoblox, Aruba, Trendmicro, and Proofpoint. Integrating and optimizing various security technologies for enterprise environments.
Cybersecurity Innovation
Founder & Developer of Intelvue.io
Mission: To become the definitive platform where cybersecurity and IT professionals discover, analyze, and act on network intelligence. We believe that powerful threat intelligence shouldn't be scattered across dozens of tools—it should be unified, accessible, and actionable in one clean, intuitive interface.
Platform: Search and analyze IOCs across 60+ threat intelligence sources. Investigate DNS records comprehensively. Detect IP risks instantly. Map your attack surface continuously. All in one intelligent platform.
Professional Highlights
Secure Service Edge (SSE) Implementation
Designed and oversaw the implementation of Secure Service Edge across large enterprises, including secure web gateway, CASB, DLP, advanced threat protection, web IPS, cloud firewall, UEBA, and ZTNA. This project marked a significant shift in how network and security were approached, enhancing security, consistency, and increasing visibility.
Web Application & API Security
Designed and implemented web application firewalls using technologies like Cloudflare, Imperva, F5 Networks, and Fortinet. Integrated data leakage controls, bot management, API security, and advanced rate limiting to protect web applications.
Zero Trust Implementation
Led the transition to a Zero Trust security model for a huge oil & gas enterprise, enhancing overall security posture.
Global Network DDoS Protection and Firewall Deployment
Implemented Magic Transit DDoS and Magic Firewall solutions to ensure L3/L4 DDoS protection. Developed a positive security model using Cloudflare Magic Firewall to stop malicious traffic closer to the source, ensuring clean traffic reaches the physical perimeter.
Email Security Enhancement for Large Enterprises
Designed, implemented, and oversaw email security solutions for large organizations. Aligned email fraud prevention protocols by configuring DMARC, SPF, and DKIM to ensure proper authentication and set DMARC policies to 'reject'. Implemented email sandboxing to protect against advanced threats, enhancing the overall email security posture.
Development of Network Security Automation Tools
Built UI systems and APIs to simplify blocking indicators of compromise (IOCs) on various network and security appliances, including Fortinet, Palo Alto Networks, Cloudflare, and ClearPass. The system is accessible through a web interface or APIs and is developed using Python and Next.js.
Data Center Migration to SDN
Designed and oversaw the migration of data centers from traditional three-tier architecture to Cisco SDN ACI. This enhanced the scalability and flexibility of our network infrastructure.
Network and Security Infrastructure Management
Managed the network and security infrastructure, migrating from Cisco to HPE Comware and integrating Brocade switches. Handled wireless deployments from Cisco, Comware, Ruckus, and Aruba. Managed security devices like Cisco ASA, Cisco IPS, Juniper SRX, TippingPoint NGFW, F5 BIG-IP, Aruba Clearpass and Riverbed SteelHead. Worked with security platforms such as HPE ArcSight, Splunk, LogRhythm, Fortinet NGFW, and Juniper Spotlight.
Deployment of Open-Source Network and Security Tools
Deployed open-source applications to enhance network and security operations. Implemented network monitoring with Cacti, Nagios, and Icinga; set up syslog infrastructure using Logstash, Elasticsearch, Kibana, and Graylog2; and deployed network probes on Raspberry Pi equipped with tools like tcpdump, Argus, Ntop, Nmap, PRADS, Maltrail, Snort, and Suricata. Utilized Python and Ansible for network automation and conducted security assessments with OpenVAS and Kali Linux.