SUMMARY:

• Experienced Network Engineer with more than 20 years of IT experience. Background includes coordination of planning, implementation, and operations of all information technology infrastructure, standards, WAN, LAN, VoIP, Layer 2/3 VPN design and implementation Systems, video conferencing, IDS, SNMP, TMN, CMIP preferred billing systems, fault management systems, order management systems, workforce management systems, testing systems and support systems.

SKILLS:

• WAN, F5, Cisco IOS, Routers, VPN, VoIP, Gig-E, Juniper Firewalls, IDS/IPS, Information Security, Switches
• F5 Networks: Big IP LTM 1000 Series, Big IP 6400, 8400 Series, F5 Viprion, Big IP ASM, ver 9.x, 10.x, 11.x
• Information Security Platforms: CheckPoint FW-1 v4.0, R55, R65, R75, NG, Provider 1 Certs , PKI, Meta-IP, Secure Remote, Client Auth VPN, Cisco VPN Concentrators 3000/3020, Network Associates: Gauntlet, Sonic Walls, Cisco PIX, ASA, ISS, Intrusion Detection Systems Host and Network , Juniper Netscreen Firewalls, Juniper SSL VPN Appliances
• Communications Hardware/Software: Cisco Routers 700/800s/2500/2600/2800/3600/4000/7200/7500, Hubs and Switches 1538/1538M, Catalysts 1900/2916/2924/2948/3500/3548/3700's/5005/5009/6500, Carrier Switches: MGX 8850 ISH, Cisco IOS: 9.0-12.4 IP, IPX, Frame, ATM RIP, RIP v2, BGP, EIGRP, VOIP, PPP, SLIP, HDLC, Password Encryption, Multi-Link PPP, ISDN, SNA, Token Ring, Appletalk, Cisco AVVID Solutions, Cisco IP Telephony, Unity, Cisco View, Cisco Works for Windows, Cisco Works 2000, Cisco Resource Management Essentials, Cisco TAC - Login, CiscoWorks LMS, CSM, ASDM, SDM, CUOM, S, Nortel Bay networks Wellfleet , Routers: AN, ASN, BCN, BLN, Hubs and Switches 5000/350/450, Accelar 1200, Carrier Switches: Nortel Passport, Management: Site Manager 12.0
• Broadband Communications: xDSL DSLAMs, GPON, and Gig-E NID
• Foundry Networks: Big Iron, Fast Iron Edge x242, Fast Iron 400/800/1500, FES 2802/9604
• Ancillary Networking Skills: OSI-Model, Ethernet 802.3, AARP, FECN, TCP-IP Implementation, Fast E-net, Gig E-netAccess Lists, LMI TYPE, RIP, RIP 2, IGRP, EIGRP, BGP, OSPF, DNS, IPX, TCP-IP Sub-netting, Gigabit Ethernet, Token Ring 802.5, VPN, ATM, Frame Relay, IP Routing, SONET, DEC net, SNA, Banyan Vines VIP , HSRP, x.25, IPSEC, Cat 3, Cat5e, RJ21x, DES, 3DES, TFTP, FTP, LAN, WAN, FDDI, BECN, PKI, LDAP, MD5, 3rd Party T/S, MAN, WINS, 802.
• Operating Systems/Server OS Platforms: Windows Server 2003 /Windows Server 2008, Active Directory
• Operating Systems /WinTel: Windows NT, Windows 95/98/2000,XP Vista, 7 Windows 3.11, UNIX, Linux, Mac OS

• Wireless Communications Hardware Software, LAN, Protocols, Security : 802.11, GSM, 3G Wireless, CDMA, TDMA, W-OFDM, OFDM, ESSID, WEP, Intermec, Air Cargo,
• CSU/DSU Vendors: Adtran, Visual Networks, Digital Link, Prelude, ADC Kentrox, Motorola, US Robotics

EXPERIENCE:

Confidential

Infrastructure Planning Engineer

• Primary resource for all IT Risk Management and Compliance as it pertains to Operational Security.
• Lead Engineer in a major CheckPoint hardware/software upgrades from R55 to R75.30, this included replacing all unsupported hardware appliances with new CheckPoint 9077 and IBM 3650 M8, CheckPoint 12400 devices.
• Reduced overall CheckPoint SS Preimum licensing costs by 45 , with a realized savings of over 465,000.
• Key resource in the internal security related certification processes and procedures for operational deployment and support references for all CheckPoint solutions currently supporting the SunTrust Enterprise Security Infrastructure.
• Additional responsibilities include project management support, for all external/internal business application risk management assessments as it aligned with PCI, SAS-70, SOX, NIST, ISO.
• Additional tasks include customer requirements gathering, high level infrastructure design documentation and reporting during risk assessment discovery phases.
• Tier 3 Network and Security production support tasks, include design, implementation and fault isolation of SunTrust LAN/WAN infrastructure.
• Primary responsibility include design and engineering support for SunTrust Checkpoint Security appliances, including management of over 80 CheckPoint Firewall R75.30 and R75.40.
• Responsible for all Orion Management reporting for all LAN, WAN, Security, and Firewalls
• Lead Infrastructure Engineer in deploying new SunTrust Enterprise Cisco Wireless solutions, covering all enterprise SunTrust corporate offices.
• Lead participant in a major CheckPoint hardware/software upgrades from R55 to R75.45 Gaia to meet strict PCI, SOX compliance deadlines.
• Lead network security administrator for all user and B2B vpn configuration standards and implementations on production Cisco ASA 5520 and Cisco 5540 appliances
• Tier 3 production support for all Cisco Hardware/Software.
• Lead Engineer for numerous business operations projects that aligns with SunTrust external clients for new financial product offerings.
• 3rd level support for all F5 Load Balancer hardware/software, which includes change management, software upgrades, configurations, installation, and RMA replacement efforts.
• Lead resource in the design and deployment of all OpSec applications.
• Tier 3 support for SunTrust Enterprise Wireless leveraging 40 Cisco 5508 series controllers, 600 Wireless Access Point.

Confidential

Senior Security Consultant

• Primary resource for all IT Risk Management and Compliance.
• Additional responsibilities include project management support, for all external/internal business application risk management assessments as it aligned with PCI, SAS-70, SOX, NIST, ISO.
• Additional tasks include customer requirements gathering, high level infrastructure design documentation and reporting during risk assessment discovery phases.

Confidential

Senior Network Security Engineer

• Primary resource for all of NSPI managed customer network infrastructure.
• Additional responsibilities include project management support, for all external/internal business application projects, external vendor VPN design and support.
• Additional tasks include customer requirements gathering, high level infrastructure design documentation and tier 3 support escalation.
• Engineering resource for standardizing all network hardware/software configurations for Cisco hardware, Cisco Call Managers, Cisco 7940 7960, 7970 IP Phones
• Provisioned all SIP, ISDN, IAX2, FXS/FXO configurations for new deployments for all major managed service customers.
• Additional tasks include the design and engineering support on multiple platforms including Cisco CSS Load balancers, F5 Big IP LTM load balancers, Juniper routers, Nortel routers, Cisco Wireless Controllers 2000, Cisco 1231AP, Cisco 1250, Cisco 1100's, Wireless Management tool suites.

Confidential

Network/Security Engineer

• Network lead for ING IM Network Engineering Team, responsible for overall WAN/LAN design implementation, support for Cisco MPLS architecture, QoS, and IP Video/Voice services support for ING IM Americas site.
• Additional responsibilities included project management support, for internal business application projects, external vendor VPN design and support.
• Key accomplishments include redesign of WAN/LAN infrastructure employing Cisco hardware platforms i.e Cisco 2800 series router, Cisco 3800 series routers, Cisco PIX 515E, Cisco ASA 5520 and 5540 Appliances, Cisco SAN architecture MDS 9513 switches, Cisco 6500s, Cisco 4500s, Cisco 4000s and Cisco 3500 series switches.
• Functional tasks included installation and support of network management platforms Cisco Works LMS 3.1, HP OpenView and Solarwinds.
• Key member for authoring new ING IM Americas Network DRP documentation.
• Lead on standardizing QoS documentation for ING IM, and IP Multicast Design and Engineering documentation standards for enterprise deployment.
• Lead resource for scheduling major vendor circuit cutovers for over 75 ING IM offices and ING IM subsidiaries.
• Managed Cisco Call Manager Clusters for ING IM Voice Over IP infrastructure.
• Hands-on experience and knowledge of lab test equipment Protocol Analyzers and Traffic Generators e.g. IXIA, Spirent , and Application.
• Lead engineer for implementing multiple IPSEC-VPN tunnels to various external vendors, platforms included ASA 5510's ASA 5520 and Pix 515-E/525 appliances.
• Key resource in gathering 3rd party business requirements for supporting critical business continuity efforts for ING IM trading and market data platforms.

Confidential

Network Engineer

• Network Engineer for Norfolk Southern IT Network projects for major WAN/LAN divisional upgrade within the Norfolk Southern WAN enterprise. Responsibilities include Cisco WAN hardware assessments, design and implementation tasks for new and existing Cisco routers.
• Additional responsibilities are project coordination of installation tasks, out of band management devices for internal support groups.
• Functional responsibility to configure, test and deploy new and existing Cisco 1760, 2800 and 7200 series routers, to support Norfolk Southern business applications and transportation FPD devices for all external customers within the Norfolk Southern Decatur IL division.
• Implemented all network/security standards employed by Norfolk Southern Corp., which includes integration of documented OSPF Tier 2/3 design and engineering implementation. Quality of service configuration models require per site within Norfolk Southern.
• Key member is project design reviews for all sites listed for upgrades, migrations from legacy 32k circuits to 1.544 Mbps, VPN solutions, or fractional T1 circuits.
• Designed and provision all WAN circuit connectivity with various vendors to ensure site redundant transport to corporate data centers.

Confidential

Network/Security Engineer

• Network Engineer and Lead SME for Cox Communications National VoIP Infrastructure project.
• Responsibilities included site network readiness assessments, design and implementation tasks of all new Cisco network WAN/LAN hardware including Cisco Catalysts 6500's 4500's series switches.
• As sole Engineer, documented new site Layer 3 as-built designs, including new Cisco VoIP infrastructure.
• Additional tasks included supporting new PCI-TFA efforts for Cox Communications WAN devices within Cox Enterprise topology. National coverage hardware included Cisco 4500s, 6500s 3750s, Cisco 3800 series routers, Cisco 7204, Cisco 7206 VXRs Cisco 2600, 2800s.
• Operational PCI compliance efforts included hardening Cisco LAN/WAN hardware access by employing cryptographic Cisco IOS for Cox corporate data centers and field site offices.
• Key team member was providing recommended Cisco IOS security standards and configuration efforts exceeding project timelines for multiple sites.
• Team member in administrative support for all Cox Communications Internet perimeter firewalls, VPN concentrators, vendor VPN connectivity hardware included Cisco ASA 5520, 5540 Pix 515E, 525E firewalls.
• Addition responsibilities included maintaining Cisco TACAS servers, Cisco password two factor authentication measures for all Cox Communications LAN/WAN and firewalls hardware within the enterprise topology.
• Team member in standardizing hardware/software configuration templates designed for PCI-TFA project efforts for Cox Communications. Templates were deployed on all LAN/WAN devices that were not within PCI compliance regulations.
• Key team member in new Layer 3 MPLS WAN deployment for Cox Communication Tier 2/3 sites.
• Key participant in supporting corporate wireless infrastructure including configurations of Cisco Aironet 350, 12000 wireless access points in all Cox Communications, CEI, offices, retail sites, data centers, call centers across the US.
• Tier 3 support for Cox WAN connectivity employing multiple Cisco router platforms, Cisco 7200's, Cisco 3800, 2600, 7500's, 4000's. Cox Communications backbone consisted of multiple redundant OC-12 OC-192 National WAN coverage.
• Key ream member in QoS design and implementation deployment model to support Cox Communications IPCC deployment for national sites.
• Technical support for Cox Communications Cisco Call Manager Call Center deployments and MIS/IT Call Manager clusters.
• Technical support and Tier 3 escalation point for IP Telephony provisioning, T1 Pri's Cisco 3800/2800 ISR HWIC controller configurations, gateway cluster configurations, gatekeeper configurations.
• Third party application support for voice recording and speech recognition, Cisco ICM/IVR support tasks.
• Lead SME for all newly deployed Cisco IPCC/UCCE LAN/WAN hardware monitoring, configuration retention for Cox Communications IPCC Network Operations Center.
• Nortel and Cisco network DWDM optical switch gear, routers, and switches, hardware included Optical Multiservice Edge 6500, Optical Metro 3500, Optical Metro 3000 Series.
• Provided system administrative support, engineering documentation and management

Confidential

Senior Security/Network Engineering Consultant

• Responsible for overall network related issues including WAN Wide Area Network connectivity to existing MarketWorks, Inc. production sites.
• Sole resource for network engineering roadmap efforts and Lead Architect in global remote access project.
• Lead Engineer for major corporate LAN/WAN hardware upgrade to Cisco/F5 Big IP LTM v7.x and Juniper firewall VPN solutions.
• Sole Engineer for all major WAN product evaluations, procurement, design and engineering tasks related to internal/external networking requirements.
• Responsible for all network/information security PCI compliance efforts within the MarketWorks Organization.

Confidential

Senior Security/Network Engineer North Americas and International

• Responsibilities included overall hardware/software engineering support for UCB, Inc. Americas LAN/WAN. Responsible for implementation on network related issues including WAN Wide Area Network connectivity to existing UCB Inc production sites.
• Daily tasks included proactive monitoring of all UCB Americas WAN infrastructure. Provided LAN connectivity for internal UCB MIS move/add/change procedures. Supervised Network Architect in Tier 3 support for all Internet security infrastructure support, management and operations.