Home / Operations

Network Engineering & Operations Leadership

Managing enterprise-grade infrastructure, leading a 5-person ICT team, and overseeing 3 specialized computer labs serving 500+ users

3 ISP Providers (Failover)
5 Team Members Led
3 Specialized Labs Managed
99.9% Network Uptime (6 months)
200+ Devices Under Management
500+ Active Network Users

Enterprise Network Architecture Overhaul

Complete redesign and implementation of MTIB's campus-wide network infrastructure from the ground up

Strategic Achievement: Engineered a resilient, multi-ISP network architecture that reduced downtime by 85% and improved internet speeds by 300% while implementing enterprise-grade security controls.
Campus Network Topology - As Designed & Implemented

Internet Edge (Multi-ISP Failover)

KENET

Primary | 100 Mbps Fiber

NOFBI

Secondary | 50 Mbps

ICTA

Tertiary | 20 Mbps

Security & Routing Layer

pfSense Firewall

Dual WAN | NAT | IDS/IPS

Monitoring Server

Zabbix | Traffic Analysis

Core Distribution

Core Switch

Managed 48-Port Gigabit
• VLAN Trunking
• QoS Enabled
• PoE+ for APs

Access & End-User Layer

Server VLAN 10

ERP, LMS, Monitoring

Jitume Lab VLAN 20

Distribution Switch (24-Port)

Networking Lab VLAN 30

Distribution Switch (24-Port)

VI Lab VLAN 40

Distribution Switch (16-Port)

WiFi VLAN 50

Ubiquiti APs (Guest Isolation)

Admin VLAN 60

Staff Workstations

Multi-ISP Failover Strategy

Implemented automatic failover to ensure zero-downtime internet connectivity

  • Primary (KENET): 100 Mbps fiber - Handles 80% of traffic under normal conditions
  • Secondary (NOFBI): 50 Mbps - Auto-activates if KENET latency > 200ms or packet loss > 5%
  • Tertiary (ICTA): 20 Mbps - Emergency backup if both primary links fail
  • Load Balancing: Round-robin distribution during peak hours (8 AM - 5 PM)
Result: Internet uptime improved from 92% to 99.9% over 6 months

pfSense Firewall Configuration

Enterprise-grade security with deep packet inspection

  • Dual WAN: Policy-based routing with automatic failover
  • IDS/IPS: Snort integration blocking 500+ attack attempts/day
  • VPN Server: OpenVPN for remote administration
  • Traffic Shaping: QoS rules prioritize LMS/ERP traffic over YouTube
  • Web Filtering: Squid proxy with SSL bumping for HTTPS inspection

VLAN Segmentation & Security

Network isolation for security and performance optimization

  • VLAN 10 (Servers): No direct internet access, firewall exceptions only
  • VLAN 20-40 (Labs): Internet allowed, social media restricted during class hours
  • VLAN 50 (WiFi): Guest isolation, MAC filtering, WPA3 encryption
  • VLAN 60 (Admin): Full access with audit logging
  • Inter-VLAN Routing: Controlled via firewall ACLs

Network Monitoring & Control

Proactive monitoring with real-time alerts

  • Zabbix Server: Monitoring 200+ devices (switches, routers, APs, servers)
  • SNMP Polling: 1-minute intervals for bandwidth utilization, error rates
  • NetFlow Analysis: Identifying top bandwidth consumers
  • Alerting: SMS + Email for link failures, high latency, device offline
  • Dashboard: Real-time network topology visualization

Measurable Network Performance Improvements

99.9% Network Uptime (vs. 92% before)
300% Internet Speed Increase
85% Reduction in Downtime Incidents
60% Decrease in Network Support Tickets

ICT Team Leadership & Management

Leading a 5-person ICT team across systems administration, helpdesk, and lab operations

Team Structure & Responsibilities

My Role: Head of ICT

  • Strategic Planning: ICT budgeting, procurement, infrastructure roadmap
  • Technical Leadership: Architecture decisions, security policies, vendor management
  • Stakeholder Management: Reporting to Principal, liaising with academic departments
  • Hands-On: Critical escalations, network configuration, production deployments

Team Composition (5 Members)

  • 2 ICT Technicians: Lab maintenance, user support, equipment repairs
  • 2 Attachés (Interns): Helpdesk, imaging, backup verification
  • 1 Lab Assistant: Jitume Lab operations, equipment tracking

Leadership Approach & Achievements

Capacity Building

Implemented weekly training sessions covering Docker, Git, network troubleshooting, and customer service. 3 team members now handle 60% of tasks I previously did solo.

Task Delegation

Established clear SOPs for imaging, backups, and lab prep. Team operates independently during my absence, maintaining service levels.

Performance Tracking

Implemented ticketing system (osTicket) for support requests. Track resolution time, user satisfaction, and identify training gaps.

Culture of Excellence

Introduced monthly "ICT Innovation Hour" where team members present solutions to recurring problems. 5 process improvements adopted from team suggestions.

Team Outcome: Department satisfaction score improved from 3.2/5 to 4.6/5 over 12 months. Support ticket resolution time reduced from 48 hours to 6 hours average.

Multi-Lab Operations Management

Overseeing 3 specialized computer labs with distinct purposes, equipment, and user needs

Jitume Computer Lab

General-purpose lab for digital literacy and office applications training

Lab Specifications:

  • Capacity: 40 workstations (Dell Optiplex 7050)
  • Software: Windows 10, MS Office 2021, ICDL practice software
  • Usage: 200+ students/week | 8 AM - 5 PM daily
  • Imaging Strategy: Clonezilla multicast deployment | 2-hour full lab reimaging

Operational Responsibilities:

  • Weekly software updates and security patching
  • Lab availability scheduling (booking system)
  • Equipment maintenance (hardware repairs, peripheral replacement)
  • User training on lab etiquette and equipment care

Networking Practical Lab

Hands-on lab for network engineering courses (Cisco CCNA curriculum)

Lab Specifications:

  • Capacity: 20 workstations + networking equipment rack
  • Equipment: 12 Cisco routers, 8 switches, cable testers, crimping tools
  • Software: Cisco Packet Tracer, GNS3, Wireshark
  • Usage: 150+ students/week | Practical exams bi-monthly

Operational Responsibilities:

  • Cisco equipment configuration and reset between classes
  • Network simulation software licensing
  • Practical exam setup (topology configuration)
  • Equipment inventory and security (high theft risk items)

Visually Impaired Lab

Specialized lab with assistive technology for screen reader users

Lab Specifications:

  • Capacity: 15 workstations (high-spec for TTS processing)
  • Assistive Tech: NVDA, JAWS, braille displays, screen magnifiers
  • Software: Accessible MS Office, DAISY readers, OCR software
  • Usage: 100+ VI students/week | Priority access for blind learners

Operational Responsibilities:

  • NVDA/JAWS configuration and voice profile customization
  • Braille display driver installation and troubleshooting
  • Accessibility compliance audits of installed software
  • One-on-one assistive technology training for new students

Standardized Lab Operations Workflow

Daily Operations:

  • 7:30 AM: Lab technician boots all machines, verifies network connectivity
  • 8:00 AM: Labs open for classes/self-study
  • 12:00 PM: Midday check (resolve active support tickets)
  • 5:00 PM: Labs close, technician runs cleanup script (delete temp files)
  • 5:30 PM: Update log sheet (broken equipment, issues encountered)

Weekly Maintenance:

  • Monday: Windows updates (Jitume Lab)
  • Wednesday: Antivirus definition updates (all labs)
  • Friday: Backup verification (test restore on 1 machine/lab)
  • Saturday: Deep cleaning (keyboards, monitors, mice disinfection)
Process Improvement: Implemented automated imaging pipeline reducing lab downtime from 2 days to 4 hours for full rebuild.

ODEL Operations & Training Leadership

Managing Open, Distance and eLearning (ODEL) infrastructure and training both students and faculty

ODEL Technical Infrastructure

Content Creation Studio

  • Equipment: 4K camera, lighting kit, green screen, wireless mics
  • Software: Camtasia, Adobe Premiere, Audacity
  • Workflow: Supporting trainers in recording lectures, creating SCORM packages
  • Output: 50+ video lectures produced (200+ hours of content)

LMS Administration

  • Platform: Moodle 4.5 (deployed on DigitalOcean VPS)
  • Users: 250+ students, 40+ instructors
  • Courses: 35 active courses across 6 departments
  • Uptime: 99.9% over 6 months

Training Programs I Lead

Trainer Capacity Building

Audience: 40+ instructors | Duration: 8-week program

Topics: Moodle course design, SCORM authoring (Articulate Storyline), accessibility best practices, formative assessment design

Student Digital Literacy

Audience: 200+ students/semester | Duration: 2-week induction

Topics: LMS navigation, online collaboration tools (Zoom, Google Meet), digital citizenship, cyber security awareness

ERP Training (VisionLink)

Audience: 60+ staff (admin, finance, academic) | Duration: Ongoing

Topics: Student admissions workflow, invoicing, fee payments, grade entry, transcript generation, reporting dashboards

Cybersecurity Awareness

Audience: All staff & students | Duration: Quarterly sessions

Topics: Password hygiene, phishing detection, data protection compliance, safe browsing, social engineering

Training Impact: Post-training surveys show 85% of faculty now create digital content independently (vs. 20% before). Student LMS engagement increased 40%.

IT Asset & Equipment Management

Tracking lifecycle of 200+ devices from procurement to disposal

Asset Inventory System

  • Tool: Snipe-IT (open-source asset management)
  • Tracked Assets: Computers, projectors, routers, switches, cameras, UPS units
  • Data Captured: Serial numbers, purchase dates, warranty status, assigned user
  • Reports: Asset depreciation, warranty expiry alerts, audit trail

Preventive Maintenance Schedule

  • Quarterly: Deep cleaning of all lab PCs (dust removal, thermal paste reapplication)
  • Bi-Annual: UPS battery testing and replacement
  • Annual: Network cable testing and re-termination
  • Result: Hardware failure rate reduced from 15% to 6% annually