Ayoub El Hadioui — Network & Security Engineer

Network & Security Portfolio

Routing & Switching FortiGate SD‑WAN Firewalls (Cisco, FortiGate, pfSense) VPN (IPsec / SSL) Cloud Networking (AWS VPC) SIEM/SOAR (Graylog, Wazuh, TheHive)

About

Enterprise networking (routing, VPN/SD‑WAN, firewalls) and security operations.

I am a Network & Security Engineer focused on building and operating reliable networks and secure infrastructures: routing & switching, VPN/SD‑WAN, firewalls, identity and systems administration, and security monitoring/automation. I connect sites, harden environments, and turn complex incidents into clear findings and actions.

Location: Morocco Email: ayoub.hadioui02@gmail.com Phone: +212 766 40 41 77 Languages: Arabic • French • English

Skills

Networking & Security

Routing & Switching TCP/IPDHCPDNS VPN (IPsec/SSL) SD‑WAN (FortiGate) Firewalls CiscoFortiGatepfSense Suricata (IDS/IPS)

SIEM & SOAR

GraylogELKSplunkWazuh TheHiveCortexMISPShuffle

Systems & Cloud

WindowsLinuxmacOSActive Directory AWS (VPC, EC2)VirtualBoxVMwareHyper‑V

Dev & Standards

PythonHTMLCSSJavaScript ISO 27001NIST

Experience

Nov 2024 – Jul 2025

ITDESKTOP (Client: Cipla Maroc) — Administrator Networks & Security

Admin & support Microsoft 365 (Outlook, Teams, SharePoint, OneDrive).
Identity & access management (AD, Azure AD, MFA).
Automation with PowerShell (user lifecycle, MFA reset).
Exchange Online advanced support; network security supervision (IP, DNS, VPN, Windows/Mac endpoints).

Jan 2024 – Jul 2024

Devoteam — Cybersecurity Engineer (PFE Internship)

Designed and deployed a Graylog-based SIEM on AWS.
Integrated multiple log sources (Syslog, Sysmon) with pipelines and parsing.
Connected TheHive, Cortex, and MISP; added Shuffle playbooks for automated response.
Configured Suricata on pfSense for proactive detection at the firewall edge.
Built a secure Apache/PHP demo app on AWS to test detections (XSS, SQLi) and simulated AD attacks (Kerberoasting).

Jul 2023 – Aug 2023

RESI‑TECH — Web Development (PFA Internship)

Built a static website with HTML, CSS, and JavaScript.
Designed the structure and improved the user interface and interactivity.

Projects

FortiGate SD‑WAN — Ongoing

Design & implementation of FortiGate SD‑WAN: multiple WAN members (e.g., ISP1/ISP2), health checks and performance SLAs (latency, jitter, loss), traffic‑steering rules (Best Quality/Lowest Cost), load‑balancing & automatic failover, monitoring & logging.

FortiOSSD‑WANPerformance SLAHealth ChecksIPsec

Site‑to‑Site VPN — Cisco ZBF ↔ FortiGate (2025)

Lab simulating secure inter‑site connectivity with a Zone‑Based Firewall on Cisco IOS and an IPsec tunnel to FortiGate. Includes zones, ACLs, traffic inspection, and tunnel validation.

IPsecCisco IOSFortiOSZBF

SIEM on AWS with Graylog

End‑to‑end SIEM pipeline on AWS with log ingestion (Syslog/Sysmon), parsing, dashboards, and alerting. Integrated TheHive/Cortex/MISP and SOAR automation via Shuffle.

AWSGraylogSuricataTheHiveMISPShuffle

Secure Web Demo & AD Attack Simulation

Deployed an Apache/PHP app to validate detections (XSS, SQLi) and created an AD lab to simulate Kerberoasting.

ApachePHPWindows ADDetection Engineering

Latest from GitHub

graylog-siem-lab

Pipelines, dashboards, and alerts for a Graylog SIEM demo.

★ 0⬚ YAML⟳ —

site-to-site-vpn-cisco-fortigate

Configs for IPsec Site‑to‑Site and ZBF policies.

★ 0⬚ CLI⟳ —

Certifications

Fortinet NSE 1 & 2

Fortinet

Threat Intelligence Fundamentals for SOC Analysts

SOCRadar

Docker

Simplilearn

Community

ITT Club (ENSA Kenitra)

2022–2023: Trainer • 2021–2022: Vice‑President

Road Najah Kénitra

Member (2019–2022)

Contact