Amir Jafari

You will never know what can be done until you try to do it.

You will never know what can be done until you try to do it.


Amir Jafari is an experienced cyber security specialist and network solution architect, with recognized strength in the design, implementation, and support of advanced LAN/WAN infrastructure and data center.
He has an in-depth knowledge of routing/switching technologies, security solutions, smart grid, virtualization, voice and unified communications.
He is Creative, analytical thinker with demonstrated ability to troubleshoot and optimize network services.


2011: M.Sc. Networking Professional
Sheffield Hallam University(Sheffield, United Kingdom), Distinction
Thesis: "Performance Evaluation of IEEE 802.11p for Vehicular Communication Networks"
Ranked first amongst 14 MSc Networking Professional students during academic year 2010/11
2011:Cisco Networking Academy
Sheffield, United Kingdom
Network Fundamentals, LAN Switching and Wireless, Accessing the WAN, Routing Protocols and Concepts, and CCNA Security
2008: B.Sc. Computer Engineering
Tarbiat Moallem University (Tehran, Iran)
Thesis: "Office Automation"

Certifications & Trainings

2015: Leadership Development
2014: ISO/IEC 27001:2013 Information Security Management Systems,QMS Certification
2013: Cisco Certified Internetwork Expert (CCIE) Routing and Switching,CyberTech, Tehran
2013: Cisco Certified Network Professional (CCNP) Route, CyberTech
2012-13: Cisco Certified Network Professional (CCNP) Switch, CyberTech
2012: Cisco Certified Network Associate (CCNA) Voice, CyberTech
2012: SCADA Protocols (IEC 60870-5-101/104, DNP3),IEHT, Tehran
2010: IT Project Management (ITIL, COBIT), Sheffield Hallam University
2006: Developing Microsoft ASP.NET Web Applications, Tehran Institute of Technology

Member of

Back to Top

Work Experience

- Network Solution Consultant in National SCADA/EMS/WAMS project, Iran Grid Management Company, Tehran, January 2015– July 2016
  • Implementing and deploying 450 Routers and Switches for a WAN architecture model including two Data Centers and 400 remote substations
  • Developing Network Security Strategies, Control, Data, and Management plane protection, Device hardening, IEEE 802.1X and AAA implementation
  • Deploying Collaboration solution, including IP Telephony for 400 remote substations
  • Implementing and deploying IP QOS mechanisms
  • Implementation and Evaluation of Network Management System (NMS)
- Computer Networking Instructor in Amirkabir University of Technology - Tehran Polytechnic, Tehran, November 2014– January 2106

- Information Security Consultant in Electronic Card Damavand, Tehran, February 2014 – October 2015
  • Leading the design, implementation, operation and maintenance of the Information Security Management System (ISMS) based on the ISO/IEC 27000 series standards and PCI DSS for the E-payment system
  • Implementing Shaparak information security requirements (Electronic Payment Card Network of Iran)
  • Developing, maintaining, and implementing business continuity and disaster recovery plan (BCP/DRP) based on NIST 800-34 Contingency Planning Guide including business impact analyses, strategy selection, and documentation of business continuity and disaster recovery procedures
  • Device hardening, control and management plane protection, following the Cisco SAFE security reference architecture
  • Determining processes and procedures for the Security operation centre (SOC) and SIEM platform
- Senior Network Solution Sales Manager in Huawei Technologies, Tehran, February 2015 – June 2015
  • Network Solution Sales Manager for Mobile Telecommunication Company of Iran (MCI) and MobinNet projects
- Network and IT Security Manager in Asan Andish Co., Tehran, January 2014 – August 2016
  • Administrating Web Servers, Security, & Maintenance (IIS, Apache, DNS, FTP, Mail, SSL, etc)
  • Identifying vulnerabilities of networks, systems and web applications by performing penetration tests and assessments
  • Designing, implementing, and maintaining next generation Data Center switch product family, with emphasis in fabric extension technologies

- Leading the Information and Communication Technology Division, Smart Microgrid Pilot-Plan Design Studies, Tehran, Iran, November 2012 – December 2013
Providing Iran smart grid roadmap ordered by TAVANIR (Iran Power Generation, Transmission & Distribution Management Co.)
Project Manager: Dr. Abdolreza Sheikholeslami, Scientific Director: Dr. Ali Nabavi
  • Studying various issues and challenges involved in design, deployment, utilization, and maintenance of the smart grid Infrastructure and the communication requirements needed for ensuring performance, flexible operation, and reliability
  • Responsible for the overall security of the WAN edge, and Enterprise Campus
  • Identifying various communication technologies that can be integrated with smart grid
  • Illustrating standards for information exchange in smart grid (standards for smart metering, Modbus, DNP3, IEC 60870-5, IEC 61850)
  • Investigating security and management solutions required for smart grid including Data encryption, Authentication, Digital signatures, and Cyber security standards (IEEE 1686, NERC CIP, IEC 62351, and NISTIR 7628)
  • Reviewing the smart grid main applications and communication requirements
  • Presenting the communication architecture of the current Iran distribution system and propose a heterogeneous communication paradigm for Iran smart grid
  • Studying protection issues, network management system and communication requirements for Microgrid in two modes: (1) grid-connected and (2) standalone
  • Providing smart grid equipment industry report
- Telecommunication Engineer in National SCADA/EMS/WAMS project, Tous Stadt Co., Tehran, Iran, September 2012 – June 2013
  • Providing technical consultancy for designing and deploying a WAN architecture model including two Data Centres and 500 remote substations using the fibre-optic network infrastructure
  • Analyzing technical goals, characterizing network traffic, logical and physical network design
  • Selecting switching and routing protocols, optimizing network performance to meet Quality of Service (QOS) requirements
  • Securing network and control system communications that conforms to cyber security standards such as NERC CIP and IEC 62351
  • Documenting the network design, selecting technologies and devices
- Associate Lecturer and Research Associate in Faculty of ACES, Sheffield Hallam University, Sheffield, UK, October 2011- April 2012
  • Teaching Internetworking course for Master programme: Network Simulation (ns-2), Routing, Switching
  • Conducting lab sessions and providing extra assistance to student
  • Doing research on Vehicular networks and studying the architecture of Wireless Access for Vehicular Environment (WAVE)
  • Measuring the performance of IEEE 802.11p standard in ns-2 network simulation environment using realistic vehicular mobility models
  • Proposing "Integration Electricity and Transportation Model for Electric Vehicles"
- Network Administrator in Rassa Engineering Co., Tehran, Iran, September 2008 - July 2010
  • Configuring Cisco Catalyst 3750 and 2960 series switches and Layer 2 & 3 switching devices
  • VLAN configuration and administration
  • Installing, managing and supporting Active directory (DNS, DHCP, Domain), Mail servers (Exchange, Mdemon), and Wireless networks
  • Configuring 802.1X Port-Based Authentication for wired and wireless networks
- Executive Project Manager in Etech Co., Tehran, Iran, May 2007 – September 2008
  • Providing executive-level management and participating in on-going projects
  • Travelling to client sites to help with installs, deployment, and troubleshooting Office Automation software
  • Managing Microsoft SQL Server Database and Scheduling database backup by using standard procedures
  • Providing training and guidance for other staff and customers
  • Providing Level 1 and Level 2 technical support to 500 users over several sites
  • Working directly with product development team to troubleshoot complex issues and software defects
- Workshop
  • Keynote Speaker for Smart Grid Training Workshop, Energy & power technology incubator, Tehran, Iran, 14th April, 2014
  • Keynote Speaker for Future Intelligent Electric Power Grid Workshop, Mazandaran University of Science and Technology, Babol, Iran, 25th October, 2014
Back to Top

Technical Competence

  • Network and data centre security design based on global standards and models such as Cisco SAFE security reference architecture and Enterprise Composite Model
  • Configuring, verifying, and troubleshooting security mechanisms:
    Device Hardening, AAA, Layer 2 Security (Port Security, Dynamic ARP Inspection, DHCP Snooping, IP Source Guard, Dot1x, Storm Control), Layer 3 Security (IP ACL, Context-based Access Control, DMVPN)
  • Having a deep understanding of security technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls, Log Analysis, and Security Information and Event Management (SIEM)
  • Implementing and troubleshooting network security protocols IPSec and IKEv2, v1 and interoperability issues with VPNs
  • Implementing and troubleshooting switching protocols and mechanisms:
    VLANNIG, VLAN Trunking Protocols (ISL, Dot1q), inter-VLAN Routing, VTP, STP, RSTP, PVST+, CEF, FC, FCoE, FEX, vPC, OTV, VN-Tag, VXLAN
  • Configuring, Implementing and troubleshooting layer 3 protocols and mechanisms:
    Routing Protocols (RIP v1 & 2, IGRP, OSPF, EIGRP, BGP), Route Map, Route Summarization, Route Redistribution, Static Routing, MPLS, TRILL, PIM-SM
  • Configuring, verifying, and troubleshooting IP addressing services including IPv4, IPv6, VLSM, CIDR, Private Addressing, NAT, PAT
  • Configuring and verifying Network Management protocols including SNMP (v1, v2c, v3), Logging, NTP, Syslog, CDP
  • Advanced Quality of Service (QoS) design, implementation and troubleshooting including Classification and Marking, Congestion Management and Avoidance, Shaping and Policing
  • Configuring and verifying WAN connections including PPP,HDLC, Frame Relay, VPN
  • Configuring, verifying, and troubleshooting VOIP solutions and Cisco Unified Communications Manager
  • Implementing AAA using Cisco ACS Servers and TACACS+ and RADIUS protocols
  • Installing and configuring Microsoft Exchange, MDAEMON mail server, Active Directory, Microsoft SQL Server, DNS and DHCP on Windows Server


  • Programming: TCL, SQL, XML, C++, C#,
  • Operating systems: Linux (Red Hat, UBUNTU), Windows Server 2003/2008
  • Tools: VMware,NS-2, SolarWinds, Cisco ACS Servers, Cisco Unified Communications Manager (CUCM), Matlab, Adobe flash
Back to Top


- "Performance Evaluation of IEEE 802.11p for Vehicular Communication Networks"
A. Jafari , S. Al-Khayatt and A. Dogman, 8th IEEE, IET Int. Symposium on Communication Systems, Networks and Digital Signal Processing, 2012, Published

"Performance Evaluation of IEEE 802.11p for Vehicular Communication Networks"[PDF]
A. Jafari ,M.Sc. Thesis, Sheffield Hallam University, 2011,
Back to Top

Get in touch.

Send me a message



Back to Top