Employment

Confidential

Owner / Lead Consultant

• Worked with multiple organizations to architect new solutions to deliver on time and within budget.
• Created customized procedures to support new designs and trained support personnel.
• Designed and worked through large scale migrations from Outsourcing / Off shoring to internal resources.
• Managed team of 8 to deliver F5 configurations, replacing ACE and CSS devices and incorporating iPlanet logic.
• Implemented GTM, ASM, and Infoblox to centralize DNS and provide layer 7 security.
• Designed new data centers for migration either in new locations or in place including Nexus 7k, 5k, and 2k switching, ASR routing, Cat 4500x IDF L3, Checkpoint and ASA firewalls, Cisco wireless, Bluecoat Proxies, and MDS SAN switching.
• Used VDCs to segregate traffic following Mil spec guidelines.

Confidential

Senior Network Engineer

• Designed and implemented first two sites for new contract subject to high security requirements.
• Implemented IPSEC VPNs for both remote access backup and external customer communications utilizing ASA's and Checkpoint.
• Converted several sites from CallManager Express and other products to corporate CallManager and Unity.
• Designed initial wireless implementation and layout using Cisco 2602 access points and a 5508 controller to incorporate voice and data.
• Redesigned primary datacenter for move to new location and implemented / incorporated technologies such as ACS, Solarwinds Orion and QIWI Syslog.
• Created new redundant carrier / routed model for remote sites and implemented in sensitive locations utilizing diverse BGP and OSPF instances.
• Integrated F5 GTMs to facilitate geographic load balancing for redundancy across two primary datacenters.
• Implemented F5 ASM to facilitate financial security requirements with URI based blocking policy.
• Implemented and managed products such as Cisco Nexus 7000, 55XX, 22XX FEX, ACS, ASA 55XX, 29XX, 39XX, 3560X, and 3750X.

Confidential

Team Lead / Lead Wireless Engineer

• Designed and implemented company-wide 802.11 wireless implementing voice and location awareness, encompassing almost 150 hospitals and 1300 clinics.
• Managed over 10,000 Access Points ranging from 1142's to 3502i's spread across the country with some WLANs anchored back to headquarters for guest access.
• Managed WCS Navigator to coordinate the inventory of all WCS servers and subsequent wireless controllers.
• Implemented both location awareness and wireless IPS utilizing MSE appliances.
• Set procedures for performing site surveys utilizing WCS and AirMagnet for corporate assessments and led a team to perform assessments and remediation.
• Implemented controllers ranging from 4400's to 5508's and retrofitted sites as needed.
• Redesigned hospital networks across the nation to comply to Electronic Medical Record requirements. This included designing and implementing circuit designs, VPN tunnels, ISP load balancing, and internal switching.
• Promoted to Team Lead with eight direct reports.
• Redesigned processes used from second week of employment to date. Acted as Western region escalation point covering Alaska, California, Washington, Oregon, Nevada, Arizona, Texas and Oklahoma.
• Implemented and managed products such as Cisco 5508 WLC, 29XX, 19XX, 39XX, Nexus 55XX, 6500, and MSE.

Confidential

Senior Network Engineer

• Designed and implemented company-wide and sister company's 802.11 wireless including voice, location awareness and NAC integration.
• Implemented and used WCS / NCS to manage WLC's and bridges.
• Designed wireless infrastructure starting with two Access Points and ending at near 1000 across 5 high rise buildings in Detroit and approximately 10 other sites.
• Migrated between generations of Access Points ranging from 1142's and ending with 3602i's for internal use and 1552e's for external client / Mesh / bridge applications.
• Implemented building to building bridges Mesh for Campus Area Networks encompassing almost 9 buildings downtown Detroit and covering public areas such as Campus Martius park.
• Integrated wireless with NAC and NAC Guest server to provide sponsored access to wireless across the country. Also changed company from PSK across two Access Points to EAP-TLS utilizing internal PKI and WebAuth for guests with dynamic VLANs for both based on device and role.
• Designed and implemented new datacenter network design to support separated hosting environment and allow for security measures to insure federal and state compliance. Redesigned integration of IPS, Firewall, and other security measures to support new network design while providing the highest security possible.
• Implemented Cisco MARS 110R's in fault tolerant configuration to act as syslog and event repository.
• Replaced Sitescope with Solarwinds for monitoring.
• Implemented CiscoWorks management tools such as CSM, WCS, LMS, and QPM to assist with configuration management and monitoring of core / non-core devices.
• Designed and implementing high availability layer 3 out of band NAC implementation for 7000 users. Utilizing Profiler to assist in categorizing devices based on type. Designed migration to ISE.
• Designed, implemented, and supported multiple size sites with multiple connection options ranging from VPN or T1 to OptEWAN or GigAMAN. Utilized equipment included 2800,3800,2900,3900,ASR's,Nexus 70XX - 55XX, and 6509's and OSPF for internal routing.
• Designed and implemented campus mesh high bandwidth and highly resilient design using 60GHz 1Gb Bridgewave RF links and line speed AES encryption.
• Managed F5 LTM's and GTM's for site load balancing. Juniper SSL VPN appliances, Bluecoat proxies, Managed BIND servers for internal and external DNS.
• Implemented sub-second route convergence and new QOS models to support not only high availability, but to guarantee voice and application performance.
• Worked with Telecom to implement Session Border Controllers and convert to SIP based solutions.

Confidential

Senior Network Engineer / Lead Network Administrator

• Designed, Implemented, and maintained Autonomous wireless in 200 shipping terminal sites and HQ across the country providing location awareness, voice and data services.
• Implemented approximately 2500 autonomous Access Points across the locations both 1131 and 1242.
• WLSE and WDS for self-healing and auto site surveys. Tested and implemented Cisco and Ekahau wireless location services.
• Implemented and managed company IPS systems ISS and Cisco .
• Managed and converted corporate firewalls from Checkpoint to Cisco.
• Designed and supported T1 MPLS based WAN connectivity to the DC and ADC from over 200 sites. Designed and supported redundant OC-48's, MIS circuits and T3's from each data center. Provided routing fault tolerance utilizing BGP and EIGRP to dynamically handle BGP swings and introduce routes from the field and automatic satellite failover for data.
• Implemented Ciscoworks LMS, Telephony Monitor, WLSE, CSM, and MARS for monitoring all areas of the network.
• Implemented and maintained Secure ACS servers with TACACS / RADIUS for switch/router/AP authentication and accounting.
• Redesigned core network configurations and managed network switches, routers and wireless access points. Including a 10Gig core 6509's, 4948's and 3560E's , Gigabit server and FastEthernet desktop connections.
• Designed configurations for VoIP appliances including PoE switches, routers, wireless access points, Voice Gateways, Conference Connection, and Call Manager. These included QOS models, MGCP, H.323 and SIP, Route Patterns, and many other standard models currently in use.
• Managed several ASA 5520 and 5510 appliances and a NokiaIP380/Checkpoint NGX 6.1 firewall. Implemented IPSEC and SSL VPN tunnels for both site-to-site and remote access.
• Tested and designed NAC L2 OOB , Information Center and RFID Passive with exciters for pallet tracking solutions.

Confidential

Network Engineer Contract

• Designed, implemented and supported wireless across 80 material manufacturing sites in the US, using 1131 autonomous Access Points, and using LEAP with WDS and WLSE management.
• Supported Frame Relay based WAN connectivity from the remote sites to the DC with redundant T3's utilizing IPSEC tunnels.
• Implemented Secure ACS server with TACACS / RADIUS for switch/router authentication and accounting.
• Designed and implemented management solutions for both wireless and wired appliances including Ciscoworks LMS, WLSE and Wavelink Avalanche.
• Managed central campus 4700 series switches and OSPF based routing.
• Managed contracted crews 8 people and associated logistics to perform the physical install of all access points within a three month period.
• Designed configurations for VoIP appliances including PoE switches, routers, Unity, IPCC, and Call Manager. These included QOS models, MGCP and SIP, Meet Me, Route Patterns, Calling Search Spaces, least cost routing, and many other standard models used by Thyssen now.
• Managed corporate Cisco and Checkpoint Firewalls.
• Served as 3rd level support for SUS, Exchange 2003 and 2000, Active Directory issues.

Confidential

Network Engineer Contract

• Managed over 300 MDTs and seamless roaming between GMRS, Mobitex and 802.11g through IBM WECM.
• Designed wireless for all terminals both inside and out to facilitate transition for returning trucks.
• Built lab networks simulating link latency and reliability through the use of a Shundra Storm.
• Troubleshot Checkpoint Firewall and Nortel VPN issues.
• Evaluated new products for corporate initiative compatibility, security and performance compliance to best practices.
• Managed radio lab personnel 4 people and duties as they pertained to MDT projects and support.
• Defined remote connectivity solutions and implemented Citrix Secure Gateway for external entities.
• Designed and implemented External Citrix Farm for external company contracts.
• Acted as technical reference for Linux, IIS 6.0, Citrix and Sun Solaris.
• Designed the first 802.11g based network at the terminals.

Confidential

Systems Engineer Contract

• Supported over 300 domains / Citrix server farms.
• Designed new domain structures and implemented client connectivity solutions.
• Designed and implemented new automation techniques for support.
• Supported T1 and DS3 lines and associated routers to provide connectivity for over 400 companies.
• Supported ISDN dial backup for several of the clients.
• Supported Spartacom MODEM pooling for client transmissions of payroll.
• Supported Checkpoint FW1, and F5 LTM's as they related to daily connections from over 400 clients.
• Managed Cisco and Checkpoint firewalls for client access.

Confidential

Owner / Consultant

• Designed and installed wireless for several companies using Aeronet wireless or preferred brand of client.
• Installed and configured Checkpoint NG on Nokia, Windows and Solaris, and PIX firewalls.
• Performed vulnerability assessments on clients, evaluating both internal and external measures.
• Worked with two ISP start-ups to design and implement first generation networks to support new customer base supporting over 124 customer T1's and over one thousand MODEMs for dialup access.
• Worked with several companies to establish high availability networks through the use of OSPF, BGP and EIGRP to manage routing over diverse circuits.
• Installed SofaWare boxes to provide secure connections to over five countries and several states.
• Designed, installed and performed migrations of SUS, SMS, Active Directory, and Exchange 5.5-2003.
• Managed migration and move projects and associated consultants up to 16 people .
• Supported partner network including VoISDN and Checkpoint VPN tunnels to clients of the partner network.
• Implemented ANX connections from providers and served as SME for connection design.