SUMMARY

Dynamic and hands on team player with a System Engineering degree and over 14 years of experience in networking LAN/WAN and strong interpersonal and leader skills.

SKILLS

• Able to work independently or with minimal supervision. Service Level Oriented. Self Starter. Committed. Very Strong sense of details.
• Hands on Cisco routers, switches, firewalls, VPN concentrator, Extreme Network switches and Juniper routers IOS, IOS-XE, CATOS, PIXOS, JUNOS .
• Working experience with T1, T3 and OC3 SONET controller. PPP, MLPPP, HDLC, Frame Relay, MPLS protocols
• Routers: Cisco 10008, 7609-S, 7304, 7206VXR, 7204, 4908, 3925, 3745, 3725, 3660, 3550, 2811, 2801, 2911, 2620, 2821, 1841, 1760. ATM/Frame Relay PVC configuration, CE troubleshooting. VOIP, Quality of Service QoS, ACL, AAA RADIUS, SNMP, NAT/PAT, DHCP, TFTP, FTP.
• Switches L2,L3 : Cisco 6509-E, 5500, 3560X, 3550-12G, 3550-24EMI, 2651, 3550-24-SMI, 3524XL, 2950, 2948. Extreme Network Black Diamond 8810, X450e-48p, Summit300-24. VLANs configuration, ISL, 802.1q encapsulation, Inter Vlan routing. VTP Trunking, Spanning Tree STP , Ethernet Automatic Protection Switching EAPS , Fast Ethernet and Gigabit Ethernet ports, Port Fast, mirroring SPAN ports.
• Firewalls: Cisco PIX 515E 7.2.4 ASA 5500, 5505, 5510, Check Point NGX R62, SonicWall TZ190, Juniper SRX240H2, and Cisco VPN concentrator 3030.
• Protocols: BGP, EIGRP, OSPF, Static.
• Tools: 3Cdaemon, Wireshark, Solarwinds Engineer's Tool Set, Orion SolarWinds SNMP Manager, Observer Ethernet Probe. HP OpenView, SMARTS 7.0, Visio. Office, BrightStor Arcserve. EMC IONIX Voyance . Algosec firewall tools
• OS: Vista, XP, ME, 95/98, NT, 2000, Unix working knowledge. Exchange 5.5, DNS, IIS, IAS.
• Troubleshooting, network Planning and Design, LAN Traffic Analysis, packet captures. Write/update Vision network documentation, Change Controls, Test Exit Reports, Test Plan, IPscan.
• Fluent in both Spanish and English. CCNA Routing and Switching certified. CCNP R S expired. Working on getting CCNP active again. Implementing Cisco IOS Network Security IINS. AAA, TACACS ACS 5.3 troubleshooting.

PROFESSIONAL EXPERIENCE

Confidential

Title: Lead Consultant

Job Description: To provide II level Network Support to PSEG and affiliates Infrastructure and Network Operations in their different Data Centers PSE G, Nuclear, Fossil, Power in NJ. I am currently supporting the Frame-Relay migration to DMVPN across multiple MPLS sites. Re configuring Cisco ACS 5.3 TACACS for AAA access on local and external AD users.

Confidential

Title: B2B Network Integration Engineer

Job Description: Worked on Data Centers migrations in North America External Network B2B connections and Mexico Banamex CORE infrastructure, Frame relay to MPLS migration that involves provisioning of new Ethernet segments and IP allocations, T3, T1, WAN links and implementation of IPSec VPN and GRE Tunnels. Designs involve L2/L3 switches install 6509-E, 3560X, 2960, 3825, ASR 1002 VTP domain, 802.1q trunk, switch port protected VLAN, VLANS, PVSTP, Port Channel, Spanning-Tree, SNMP management for alerts and monitoring, and allocation of new IP segments, static or dynamic routing via RIP, EIGRP, BGP, troubleshooting and manipulating routes via route-maps, distribute list, BGP community, routes redistribution, NAT, traffic filtering via ACL and prefix-lists, routes verification, It also involves inter VLAN routing for shared devices, and HSRP or routing protocol failover. Network Security principles applied to routers config/standards. Network Implementations involve Cisco TACACS server management, TACACS Authentication monitoring, Local server certificates for EAP-TLS wireless endpoints, troubleshooting Qos CBWFQ Traffic shaping, firewall rules implementation, Build Config, Test and Implementation Plan, Post scripts verification and leading the overall change by coordinating other groups associated Firewall team, Systems Admins, Service Owners for changes to be performed on their side, e.g. firewall rules changes, business application testing and post-implementation failover tests. BOM to Report to Senior Managers. Heavy Visio documentation, RFC via ITIL Service Now as Standard Operating Procedure for any scheduled changes or Incident.

Confidential

Title: Senior Network Design Engineer

Job Description: I worked with the Design Engineering Team on the Design and build up of MPLS Core infrastructure to migrate voice/data extranets into MPLS. Part of my role includes but is not limited to configuring Cisco switches and routers 3750, 6503, 4908, 7204, 7206VXR, 7304, 10008 . VRF tables, Route Reflector, BGP and OSPF as well as troubleshooting any unexpected routing behavior. I also configured VLANS dot1q encapsulation and inter VLAN routing, I configured Quality of Service configuration QoS , Policy routing and Multicasting. Configure and administer firewall ASA 5500 and Cisco VPN Concentrator for L2L IPSEC VPN tunnels.

Confidential

Title: Network Administrator/ Technical Analyst

Job Description: I worked on the Network Infrastructure and Operation Team. My primary role consisted in managing the Cisco routers, Cisco PIX firewalls, Cisco VPN concentrators and Extreme network LAN switches on daily basis and for the Voice over IP implementation. I configured 802.1q VLANS for Voice and Data, Inter VLAN routing, BOOTP Relay Agent, on Black Diamonds 8810 10 slots MSM-A/B Cards , X450e and Summit 200/300 LAN switches. I have hands on Cisco 2821 and Cisco 3725 routers to support all dynamic and static routing via OSPF or static routes and provided routing analysis for legacy and networks. I configured Quality of Service QOS and congestion Management to support Voice and Video Class Based and Low Latency queuing CBWFQ and LLQ on Traffic Shaping, Policing and Rate-limit CAR . The traffic marking was based on DSCP values from end points or ACL matching . I configured L2L IPSec tunnels and Remote access on Cisco VPN concentrators to support Business Partner connections or Users Remote access. I upgraded and supported Life cycle changes on Cisco PIX 515E OS to 7.2.4. I Secured all the Cisco devices with SSH and AAA Radius Authentication using Microsoft IAS RADIUS server. I performed LAN, WAN troubleshooting via CLI, Wire-Shark, Ethernet-Probe packet captures port or VLAN based , SNMP polling with tools like: Universal Device poller, Orion Engineers Toolset. I configured Transparent Proxy via WCCP on Cisco router and PIX Firewall and Bluecoat SG proxy server. Write Change Control follow SOPs, Create/update LAN/WAN Visio Diagrams and keep documentation updated.

Confidential

Title: Network Security Analyst

Job Description: I worked with External Connectivity Service ECS and Security Team on a Firewall Policy Rules Remediation configured on a Checkpoint Provider-1 NGX R62 firewall. This was part of a DMZ Design Project and involved Analysis and assessment of the Security Policy Rule Base, High Ports and High Risk Ports, on the Frontend Internet and Backend DMZ CMAs on the Global and Local Rules. The analysis was performed on Active, Shadowed and Unused Firewall Rules, Rules Owners and Unused objects at each gateway. I created a tracking sheet to track rules submitted for deletion. I have working knowledge of Tufin Secure Track Firewall Audit Tool version 4.3,

Confidential

Title: Network Engineer

Job Description: I worked for Network Management and Security Testing Team NMST performing simulation failures of an E320 Juniper JUNOS router as well as 7609-S Cisco router against EMC SMARTS fault management tool running on sun Solaris 6.9. The success of a testing would determine if a router would go for deployment of FIOS FTTP. The Test consisted on simulating and stressing out architectural components failures RSP processors, fiber optic uplinks for Gigabit Ethernet, ATM, POS interfaces and controllers, etc . Layer 2 and 3 components failures encapsulation, BGP sessions, ATM PVCs , Discover devices via ICMP/SNMP polling. Configure SNMP/ perform to snmpwalks for complete or specific OID, Identify root-cause or point of failure. I performed Technical writing Test Exit, Test Plan Reports , to report Critical, Major and Minor issues with Vendor.

Confidential

Title: Router Engineer

Job Description: Tier III Global network troubleshooting for MIS maintenance, INCS, EPVN and MRS customers on 1760, 1841, 2620, 2801, 3550, 3660, 3745, 3725, 7204 routers LAN switching and CPE issues. Perform protocol routing analysis and troubleshooting. Troubleshoot, maintain 30000 Cisco routers and provide remote network support. MARO design support on BGP based on Local Preference, IP prefix lists for Internet customers. HSRP for failover. FTP configuration. Network Troubleshooting routing issues, routing protocols redistribution, route maps configuration based on ACLs, etc .

I Performed Life Cycle changes SNMP, community strings configuration, DHCP/NAT, IP helper address, load balance/load share on NXT1 circuits per packet/destination , static and default route changes, Access control Lists, IP address schema implementations, redundancy . IP accounting, ip cache flow, ip nbar for dynamic traffic. Perform MARO failover test with customers and provisioning Engineer. CE support on MPLS sites BGP routing/troubleshooting, Quality of Service QoS troubleshooting CBWFQ and LLQ configuration. Traffic Shaping, Policing and Rate-limit configuration/support. Traffic marking based on ACL matching. Class map, policy maps according to AT T's standards for voice data. Working knowledge of ATM/ima cards and VCs. Basic Multicast IGMP PIM Working knowledge. IGMP group configuration on participating interfaces. Router startup troubleshooting ROMMON . Perform IOS and hardware upgrade, troubleshoot boot system. Password recovery. Console/VTY password config. T1s, DS3 troubleshooting from CPE point, DTE local/line loops, to determine point of failure. Encapsulation changes. Perform data and voice PVC test and turn up with INCS provisioning Engineers

Confidential

Title: Design Engineer

Job Description: Network Design Engineer for Managed Services Organization MSO . Design and Implement Data voice networks OSPF, EIGRP, BGP . CE router configuration for MPLS with BGP or static routes depending on router's capacity . Troubleshoot Network connectivity issues and perform protocol routing analysis and troubleshooting. EIGRP, OSPF on LAN. Redistribution of these routing protocols into BGP or routes originated from BGP depending on the number of LAN learned network s . DS3, T1, multiple T1s on MLPPP, OC3 configuration, PPP and frame relay as L2 protocol on the CE. CPE verification IOS and hardware compatibility . QoS according to Verizon's standard for voice and data.

Confidential

Title: Router Engineer for Router Management Group

Job Description: Tier III Global Support for MIS and INCS customers on 1760, 2620, 2801, 3660, 3745, 3725, 7204 routers. MARO design support on BGP, HSRP, OSPF. CPE troubleshooting DTE loops, cache flow, controllers soft/hard testing, etc Network Troubleshooting routing issues, network advertisements, etc . Life Cycle changes SNMP config, DHCP/NAT, load balance, route changes, ACLs . CE support on MPLS sites BGP routing/troubleshooting, QoS according to AT T's standards for voice and data. Working knowledge of ATM/ima cards ad VCs.

Confidential

Title: Network Consultant Engineer

Job Description: Migration of 7256 layer 2 and layer 3 multilayer switches for Washington Mutual WAMU to MCI's network private management operation, some of them migrated remotely through Cisco Works 2000. SNMP, TACACS - AAA configuration, access-list, configuration 6500 CATOS and MSFC, 4000 series, 5500, 3550-12G, 3550-24EMI, 2651, 3550-24-SMI, 3524XL, 2950, 2948 switches as well as Physical Inventory, Sparing Analysis based on Poisson distribution formula for Bronze Plus and Platinum sites. Internal Audit, Remediation, Basic working knowledge of MPLS.

Confidential

Title: Network Independent Consultant

Job Description: I performed Juniper SRX 240H2 firewall install to replace SonicWall TZ190 firewall along with UTM Unified Threat Management setup. I performed IP subnet migration on LAN, WLAN devices such as Cisco router 2600 series, Cisco switch 2950 and the firewall. Installed and upgraded Sonic Wall Firewall SOHO and TZ190-W. I configured firewall rules and Remote access via VPN, NAT. I configured DHCP on the LAN and over the VPN tunnels. Drive the DSL/T1 ISP Migration. I configured a Windows 2000 server, Active Directory, DNS, TCP/IP, DHCP. Unix users migration to a NT domain. Samba server setup on Unix SCO Open server. Installed Brightstor Arcserve v9 backup software and created Backup Policies. I created a standard convention names for users, servers, workstations for easier management. Updated Network documentation

OVERSEAS EXPERIENCE

Confidential

Title: Network Administrator

Job Description: I designed and implemented Last Mile Migration. Dial Up Demand Routing Plan based on Asynchronous lines as backup system, IP address Migration, Cisco Router 2500 and switches 2924 administration and support NT domain Model Implementation, Standard Naming conventions, NT 4.0, Windows 2000 server, Exchange Server support ArcServer 6.5 Enterprise Edition, LAN /WAN Troubleshooting, SMS 2.0 Implementation for remote users support, Backup Policies Implementation and Disaster Recovery Plan, User support.

Confidential

Title s : Wan Analyst, Network Administrator

Job Description: I performed the LAN/WAN data, voice migration between Kraft and Nabisco for 16 Sales offices, 3 plants, and 2 main Offices in Venezuela. I redistributed EIGRP traffic between different EIGRP AS and into OSPF at network boundaries, in 4 countries Venezuela, Ecuador, Colombia and Peru. I managed core routers Cisco 3640, 2500, 2600. I Performed the Planning, Design and support of Frame Relay point-to-point and the migration to Cisco MC3810 routers to handle voice over Frame Relay dial peers destination pattern 4 digits and 5 digits for Andean Region according to Uniform Dial Plan created on PBX . I configured DHCP scopes. Dial Up Demand Routing implementation based on Asynchronous connections as part of a Backup contingency plan for Sales offices. I planned and performed the Kraft Foods and Tobacco Phillip Morris voice/data LAN/WAN split. I planned the ISP migration. I managed the Checkpoint VPN Firewall-1 local gateway for domestic users. I Managed 21 NT 4.0 Servers and 4 Exchange 5.5 . I also managed Quota Manager and ArcServer 6.5 Backup Software, implemented Backup Policies and Disaster Recovery Plan, I implemented SMS 2.0 for remote support, HP Open View to monitor WAN links and devices. I planned and performed the Data Center migration. I Managed LAN core and access switches Catalyst 4006 and Cisco 3524.

Confidential

Title: Technical Support

Support of Windows NT 4.0, Exchange 5.0, Proxy Server 2.0, Novell Netware 4.11 and 3.12 RAID 5 / 1, Installation of a 10BaseT network in Johnson son Peru offices, Technical support