DEVELOPER & NOC SPECIALIST

Sarkis Der Wartanian

I build automation and tooling for monitoring, traffic shaping, and customer diagnostics. Specializing in bridging the gap between ISP infrastructure and modern software development.

Lebanon (Open to Remote)
[email protected]
+961 71 399 210
CERTIFIED: CCNA 200-301 [ID: ee69bf4481664eb89913dcdde8e0c31c]

Download CV

Technical Arsenal

Routing & Switching

  • MikroTik (RouterOS/SWOS)
  • Juniper EX4600 & CLI
  • Cisco (CCNA / Virtualized)
  • pfSense / OPNsense / OpenWrt
  • TP-Link Enterprise

ISP Core & Systems

  • Linux BRAS (accel-ppp / FreeRADIUS)
  • MikroTik Wireless (LDF/912)
  • Mimosa & Cambium Networks
  • Linux Routing (iptables/tc)
  • Zabbix & Grafana
  • ISPCONFIG / PHPmyadmin / Postfix Mail
  • Graylog / Netbox

Development

  • Go (Golang) - Tooling
  • Python - Automation
  • Bash / Shell Scripting
  • Flutter (Mobile)
  • SQL (Postgres/SQLite)

Engineering Projects

Flutter Serverless AWS/Linode API FinOps

Project Heartbeat: Cloud Controller

A secure, cross-platform mobile application enabling authorized stakeholders to toggle cloud resources on-demand. This tool enforces a "Zero-Waste" policy by ensuring development/staging servers are only active when actually in use.

The Problem:
Non-technical users leaving cloud instances running 24/7, leading to wasted budget.
The Solution:
A "Tap-to-Start" mobile interface.

User Tap → Auth → Serverless Function → Cloud API (Start/Stop)
Heartbeat Cloud Controller
Zabbix Grafana Telegram Bot

Integrated Network Monitoring Suite

Created a unified visibility layer for ISP infrastructure, moving beyond standard SNMP to actionable, script-driven monitoring.

  • Built Zabbix triggers that execute custom scripts to modify firewall policers on Juniper devices automatically.
  • Developed a Telegram bot that renders and delivers Grafana panels (via Image Renderer) for on-the-go status checks.
Telegram Bot Notification Sensitive data (IPs/Names) has been redacted for privacy.
Go Linux TC accel-ppp

Traffic Intelligence & Byte-Level Accounting

Developed a proprietary system to differentiate and account for expensive Transit traffic versus cheap CDN/Peering traffic. This directly resulted in significant OPEX reduction.

  • Engineered a Golang collector to scrape bytes from tc classes.
  • Integrated with accel-ppp to handle PPP interface changes and session expiry events.
  • Parsed radius attributes to read speed and service tags dynamically from FreeRADIUS.
Traffic Accounting Dashboard Sensitive data (Usernames/IPs) has been redacted for privacy.
Bash AWS S3 Disaster Recovery

Automated Configuration & Backup Recovery

Designed a "Zero-Failure" backup ecosystem for multi-vendor environments (MikroTik, Juniper, Linux).

Logic:
Script includes intelligent error handling (e.g., detecting "Commit Blocked" states on Juniper) to ensure backups only run when the database is locked and safe.
Optimization:
Integrated regex-based pruning to identify and remove specific file patterns older than the compliance window to minimize storage costs.
  • Automated backups to local QNAP NAS via SFTP/SMB.
  • Implemented cloud redundancy by syncing local archives to AWS S3 using `rclone`.

Professional Experience

Feb 2023 - Feb 2026

Developer & NOC Specialist

CloudSP (Internet Service Provider)

Managed core ISP infrastructure using accel-ppp for PPPoE/L2TP termination. Configured IPS, VLANs, QinQ, and MPLS. Handled firewalling (RouterOS + Linux), queuing, and wireless reachability (MikroTik + Cambium + Mimosa + Ubiquity). Built Lacache servers and Apple Content Caching to offload transit bandwidth.

2018 - 2023

Network & Systems Engineer

Microfolie Computers

Served as Tier 2/3 escalation point for critical outages using deep packet analysis. Authored standardized configuration templates for field teams to ensure security and performance.

2015 - 2017

IT Technician

CompuWorld

Managed security posture of customer-facing servers (SSH hardening, firewalling). Performed low-level hardware recovery (SPI flash programming) for "bricked" devices.

Theoretical Architecture & Research Interests

Protocol Research

The Agnostic Medium

Research into utilizing standard copper mediums for proprietary signal modulation, effectively "hiding" traffic from standard TCP/IP network interface cards.

Zero Trust

Double-Lock Port Security

Developing a "listen-less" server architecture where ports are not open to scanning, but require a pre-signed mutual agreement to become visible.