Sha The IT Guy
Senior IT Infrastructure Engineer · Dubai, UAE
For Recruiters & HR
CV Professional Mode

Clean.
Results.
No jargon.

A polished, recruiter-ready CV — career timeline, business impact, and measurable outcomes. Everything a hiring manager needs.

Enter CV Mode
CV
For Techies & Nerds
Tech Mode

Stack.
Architecture.
Deep nerdy.

Full infrastructure portfolio — live racks, network topology, homelab builds, IPS/IDS setups, and every tool in the arsenal.

Enter Tech Mode
IT
Tap a section to enter
Sharqan Ahamed
👨‍💻
Sharqan Ahamed
Senior IT Infrastructure Engineer
📍 Dubai, UAE 📞 +971 567 232 006 ✉️ [email protected] 🌐 shatheitguy.in
Open to new opportunities
Professional Summary

Results-driven Senior IT Infrastructure Engineer with 7+ years of hands-on experience designing, securing, and operating enterprise-grade IT environments across the UAE and India. Trusted to own mission-critical infrastructure at Al Wasl Sports Club — delivering flawless stadium networks for 10,000+ concurrent users per event with a proven 99.98% uptime record. Deep expertise across firewall architecture, Zero Trust security, IPS/IDS threat detection, wireless at scale, and IT automation. Equally comfortable leading the entire infrastructure lifecycle independently or collaborating within cross-functional teams.

7+
Years Exp.
10K+
Users Live
99.98%
Uptime
60%
Cost Cut
Key Competencies
🔥
Firewall & Perimeter Security
FortiGate · OPNsense · pfSense · Multi-layer defence
🛡
Zero Trust Architecture
WireGuard · Cloudflare Tunnel · ZeroTier · No-VPN access
📡
Large-Scale Wireless
UniFi · 160+ APs · Stadium Wi-Fi · VLAN segmentation
🚨
Threat Detection & Response
Suricata · Zenarmor · CrowdSec · Fail2ban · Zeek
⚙️
Infrastructure Automation
n8n · Python · Bash · Docker · Self-healing workflows
🗄
Virtualisation & Storage
Proxmox HA · VMware · TrueNAS · Unraid · Ceph
🌐
DNS & Network Overlay
Unbound · Pi-hole · DNSSEC · DNS-over-TLS · SD-WAN
Cloud & Hybrid Platforms
AWS · Azure · Cloudflare · Hybrid workforce · Backups
Professional Experience
Senior IT Infrastructure Engineer
Al Wasl Sports Club · Dubai, UAE
2022 — Present
📍 UAE Football Association — IT Matchday Operations Certified (2022–2025)
Sole infrastructure engineer responsible for all IT systems across a premier UAE football club — from stadium match days to corporate office.
  • Engineered and deployed high-density stadium Wi-Fi supporting 10,000+ concurrent users per match day using 160+ UniFi APs across multiple VLANs — zero unplanned outages across all events.
  • Architected a multi-layered firewall stack with FortiGate 200E, OPNsense, and pfSense — implementing IPS/IDS rules, VLAN segmentation, DPI, and active threat blocking with CrowdSec + Fail2ban.
  • Deployed Zero Trust remote access via WireGuard and Cloudflare Tunnel — fully replacing legacy VPN and eliminating public IP exposure.
  • Built and maintained Proxmox HA cluster hosting 20+ production VMs with automated failover and TrueNAS shared storage (32TB pool).
  • Implemented Unbound DNS infrastructure with DNSSEC, split-horizon zones, and DNS-over-TLS across all network segments.
  • Managed end-to-end matchday broadcast, digital signage, IPTV, and AV systems for every home match with full redundancy.
  • Deployed Passbolt enterprise vault with TOTP and RBAC for 32+ users — achieving ISO 27001 password policy compliance.
  • Automated IT workflows with n8n and Python — cutting manual ops tasks by 70% through self-healing alert routing and incident response pipelines.
IT Infrastructure Engineer
Joseph Group · Jebel Ali, UAE
2020 — 2022
📍 Jebel Ali Free Zone, UAE
Multi-site infrastructure engineer for a large industrial group operating across Jebel Ali Free Zone.
  • Designed and maintained multi-site enterprise networks with intelligent VLAN segmentation across 5+ locations — improving security posture and inter-site performance.
  • Deployed OPNsense and pfSense firewalls across all branch offices with site-to-site IPSec VPN tunnels and traffic shaping policies.
  • Configured Cisco and HP switching infrastructure, ZeroTier SD-WAN overlays, and hybrid workforce remote access for 200+ endpoints.
  • Achieved 100% backup compliance across all endpoints with daily integrity checks via Synology Active Backup and TrueNAS.
  • Reduced cloud infrastructure spend by 30% through reserved instance planning, right-sizing, and resource optimisation on AWS and Azure.
  • Deployed and managed Microsoft 365, Azure AD, and Intune MDM for device management and conditional access policies.
IT Engineer
Opti Network Ltd & Future Group Pvt Ltd · Bengaluru, India
2018 — 2020
📍 Bengaluru, India
  • Delivered enterprise-scale end-user IT support and endpoint protection across 500+ users — maintaining SLAs and documentation standards.
  • Configured internal wireless networks, VoIP systems, and pfSense-based firewall policies for branch office connectivity.
  • Executed system upgrades, patch cycles, and performance tuning with minimal operational disruption.
Key Projects
Infrastructure2023
Proxmox HA Cluster Migration
Migrated legacy Hyper-V environment to Proxmox HA + Ceph distributed storage — 40% reduction in unplanned downtime, 60% lower licensing costs, and full live-migration capability.
Security2023
IPS/IDS Detection Pipeline
Designed and deployed Suricata IDS + Zenarmor NGFW + CrowdSec + Fail2ban pipeline with real-time IP reputation feeds and custom rule sets — active threat blocking across all perimeters.
Automation2024
n8n IT Workflow Engine
Self-hosted n8n orchestrating alert routing, onboarding automation, incident response triggers, and cross-system integrations — reducing manual IT tasks by 70% in production.
Networking2022
Stadium Wi-Fi — 10K+ Users
End-to-end design and deployment of high-density UniFi wireless infrastructure with dual-WAN load balancing, 4 isolated VLANs (Media, Internal, Guest, Hotel), and seamless matchday operations.
Why Hire Me
🔥
Firewall & Security Depth
FortiGate, OPNsense, pfSense — I architect multi-layered perimeters with IPS/IDS, Zero Trust, and active threat blocking. Not just rules — full security posture.
📈
Proven at Scale
99.98% uptime across critical sports and corporate infrastructure. Stadium-tested with 10,000+ live users. Redundant by design, monitored 24/7.
⚙️
Automation First
n8n, Python, Docker — I eliminate repetitive IT work and build self-healing workflows so teams can focus on what actually matters.
🎯
Full Ownership
From scoping to delivery — I own projects end-to-end. Independently or within cross-functional teams, I deliver without hand-holding.
root@shatheitguy:~$ whoami
Senior IT Infrastructure Engineer · Dubai, UAE

SHARQAN
AHAMED

// SHA THE IT GUY

7+ years engineering the backbone of enterprise operations — from Zero Trust firewalls and Proxmox clusters to stadium-scale Wi-Fi serving 10,000+ concurrent users. Deep expertise in IPS/IDS, Unbound DNS, CrowdSec, and n8n automation. Infrastructure isn't just IT. It's architecture.

View Career Get In Touch
RACK-01 / FIELD OPS192.168.1.0/24
PROXMOX-NODE-01
CPU: 78% · RAM: 64GB
FORTIGATE-200E
THROUGHPUT: 3.2 Gbps
TRUENAS-STORAGE
18.4 TB / 32 TB
CLOUDFLARE-TUNNEL
LATENCY: 12ms · OK
UNIFI-CONTROLLER
APs: 24 · USERS: 847
PASSBOLT-VAULT
USERS: 32 · TOTP: ON
[OK] VLAN-100 traffic nominal
[OK] Backup job completed
[WARN] AP-14 signal —72dBm
RACK-02 / SHA'S HOME LAB10.0.0.0/24
OPNSENSE-FW
ZENARMOR: ACTIVE
UNIFI-CLOUDKEY
SITES: 1 · APs: 6
UNIFI-SWITCH-24
PORTS: 18/24 ACTIVE
UNRAID-SERVER
CPU: 71% · 32GB RAM
TRUENAS-HOME
POOL: 8.1 TB / 24 TB
OPENMEDIAVAULT
SHARES: 12 MOUNTED
[OK] Zenarmor rules updated
[OK] ZeroTier peer connected
[INFO] Plex transcoding x2
7+
Years XP
99.98%
Uptime
10K+
Users
Scroll Down
FortiGate
Proxmox HA
Zero Trust
MikroTik
Kubernetes
WireGuard VPN
TrueNAS
Cloudflare
Unbound DNS
CrowdSec
Fail2ban
IPS · IDS
n8n Automation
OpenClaw
Docker
Python Automation
FortiGate
Proxmox HA
Zero Trust
MikroTik
Kubernetes
WireGuard VPN
TrueNAS
Cloudflare
Unbound DNS
CrowdSec
Fail2ban
IPS · IDS
n8n Automation
OpenClaw
Docker
Python Automation
Live Network Topology

NETWORK MAP

◈ FIELD OPS
Dual WAN / ISP
FortiGate NGFW
Switch / Router
UniFi / Servers
160+ Access Points
200+ CCTVs
VLAN Segments
● LIVE TOPOLOGY
pinch to zoom · drag to pan
Technical Arsenal

THE STACK

🔥
Networking & Security
Firewall & Zero Trust
FortiGate · OPNsense · pfSense · MikroTik · UniFi · WireGuard · Cloudflare Zero Trust
⚙️
Virtualization
Hypervisor & Storage
Proxmox · VMware ESXi · Hyper-V · TrueNAS · Synology · Ceph
☁️
Cloud
Multi-Cloud
AWS · Azure · GCP · Azure AD · Cloudflare DNS · Reserved Instances
🐳
DevOps & Automation
Containers & Orchestration
Docker · Kubernetes · Python · Nginx · Bash · n8n Workflow Automation
🛡️
Threat Detection & Response
IPS / IDS & Active Defense
Zenarmor · Suricata · Snort · CrowdSec · Fail2ban · Zeek · OSSEC · OpenClaw
🌐
DNS & Network Overlay
DNS & SD-WAN
Unbound DNS · Pi-hole · Bind9 · ZeroTier · Split-Horizon DNS · DNSSEC · DNS-over-TLS
🗄️
Database
Data Layer
MySQL · PostgreSQL · MongoDB · Redis · Active Backup
🔍
Monitoring & Observability
Visibility Stack
Wireshark · Zabbix · Grafana · Prometheus · Netdata · ELK Stack
Career History

EXPERIENCE

sha@career — bash — 120×40
sha@career:~$ cat experience.log | grep 2022-PRESENT
2022 — PRESENT
ROLE: Senior IT Infrastructure Engineer
ORG: Al Wasl Sports Club · Dubai, UAE
Deployed high-density Wi-Fi for 10,000+ stadium attendees per event
FortiGate & MikroTik firewall impl — advanced threat protection + routing
WireGuard + Cloudflare Tunnel + Zero Trust remote access rollout
Matchday broadcast & digital platform management end-to-end
UAE FA IT Matchday Ops Certification [2022–2025]
sha@career:~$ cat experience.log | grep 2020-2022
2020 — 2022
ROLE: IT Infrastructure Engineer
ORG: Joseph Group · Jebel Ali, UAE
LAN/WAN across multiple sites with VLAN segmentation
Cisco & HP switch config, VPN tunnel optimisation, hybrid workforce
Backup & recovery: Synology Active Backup + TrueNAS
sha@career:~$ cat experience.log | grep 2018-2020
2018 — 2020
ROLE: IT Engineer
ORG: Opti Network Ltd & Future Group · Bengaluru, India
Enterprise end-user support, virus protection, system troubleshooting
Internal wireless, VoIP, remote access configuration
System upgrades, performance tuning, technical documentation
sha@career:~$
Proficiency

SKILLS

OS & Server Mgmt100
Network Architecture95
Cybersecurity & Firewalls95
IPS / IDS & Threat Detection92
Zenarmor (OPNsense NGFW)90
DNS Management (Unbound)90
Virtualisation & Automation90
CrowdSec / Fail2ban90
n8n Workflow Automation88
Cloud Platforms85
Database & CMS80
Portfolio

PROJECTS

01
Server Infrastructure
Proxmox Cluster Migration
Migrated legacy Hyper-V to Proxmox HA + Ceph — 40% less downtime, 60% lower licensing costs.
02
Private Cloud
Nextcloud Deployment
Self-hosted collaboration with LDAP integration and mobile sync. Full data sovereignty.
03
Cybersecurity
Secure Access Vault
Enterprise password vault with TOTP, RBAC, audit trails — ISO 27001 readiness achieved.
04
High-Density Networking
Stadium Wi-Fi Engineering
Seamless Wi-Fi for 10K+ users — UniFi APs, dual-WAN load balancing, VLAN segmentation.
05
Threat Detection
IPS/IDS Detection Stack
Built and deployed Suricata IDS + CrowdSec + Fail2ban pipeline — active threat blocking with real-time IP reputation feeds and custom rule sets.
06
DNS Architecture
Unbound DNS Infrastructure
Recursive Unbound DNS with DNSSEC, split-horizon zones, DNS-over-TLS and custom blocklists — full DNS sovereignty from edge to endpoint.
07
Automation
n8n Workflow Engine
Self-hosted n8n orchestrating IT workflows — alert routing, onboarding automation, incident response triggers and cross-system integrations. Built and running in production.
08
Automation
IT Helpdesk Automation
Zammad + LDAP ticketing automation cut resolution time by 50%, improved SLA compliance.
09
HR-Tech
Employee Onboarding Portal
Self-service portal with digital forms and IT provisioning — onboarding time cut by 70%.
Measurable Results

IMPACT

99.98%
Network Uptime
Redundant firewalls, proactive monitoring, automated failover.
100%
Backup Compliance
200+ endpoints with daily integrity checks via Synology.
−30%
Cloud Spend
Reserved instances, autoscaling, usage analytics.
−50%
Resolution Time
Helpdesk automation via Zammad and LDAP workflows.
+45%
IT Satisfaction
Faster support, intuitive tooling, personalised onboarding.
−70%
Onboarding Time
HR-Tech portal with automated IT provisioning workflows.
The Person

ABOUT ME

Sharqan Ahamed

I'm Sharqan Ahamed — an infrastructure engineer who treats every network like architecture and every firewall rule like a deliberate design decision.

Based in Dubai, UAE, I've spent 7+ years building systems that don't blink, don't leak, and don't go down. From Proxmox clusters to stadium-grade Wi-Fi for 10,000 fans — I live at the intersection of reliability and innovation.

"Technology itself is neither good nor bad. It's the intent and execution that define its impact."
🔒
Zero Trust Advocate
Device posture checks, MFA, conditional access — security baked into every layer.
🛡️
Threat Detection & Response
IPS/IDS with Suricata, active threat blocking via CrowdSec, Fail2ban & OpenClaw — attacks stopped before damage is done.
🌐
DNS Mastery
Unbound recursive DNS, split-horizon, DNSSEC & DNS-over-TLS — full control over name resolution from edge to endpoint.
📡
Stadium-Scale Networking
10K+ concurrent users, dual-WAN failover, zero complaints at kickoff.
🤖
Automation First
Python, Docker, n8n workflows — thousands of manual hours saved through smart orchestration.
🎓
Knowledge Sharer
YouTube & GitHub tutorials empowering the next generation of IT pros.
Let's Connect

GET IN
TOUCH

Available for Freelance

Open for projects, consulting & collaborations. I respond fast.

[email protected]
Dubai, UAE
+971 567 232 006
shatheitguy.in