Objective

Provide network, systems, cyber security experience, knowledge, and solutions in a system and network - diverse environment. Protect confidentiality, integrity, and availability of information systems. Advise and engineer secure solutions for business opportunities. Learn and experience, mentor and share.

Professional Summary

Over twenty years' experience supporting and designing networks, routers, switches, firewalls, hardware and software. Industry experience in Financial Services, Internet Service Providers ISPs, Engineering, Manufacturing, Power and Utility Industry, and Telecommunications companies.

Consulting Skills

Network Hardware

• Cisco Security Products: Adaptive Security Appliance ASA Intrusion Protection System IPS Web Security Appliance WSA Wireless LAN Controller Wireless Access Points WAP
• Cisco Firewalls: 5585-X Data Center 5555-X Internet Edge 5515-X Branch Office
• Cisco IPS Sensors:
• Cisco WSA IronPort: S680 S670 S380 S370 S170
• Cisco WLC: Flex 7500 8500
• Cisco WAP: 802.11ac n
• Cisco Routers: MGX BPX 75XX 72XX 47XX 38XX 28XX 1700 1600
• Cisco Nexus LAN: 45XX 38XX 36XX 29XX
• Cisco Nexus Data Center: 70XX 60XX 50XX 30XX 20XX

Secure Access Systems

Cisco Secure Access Control Server ACS Cisco Identity Service Engine ISE Cisco Monitoring, Analysis, Response System MARS

Network Security Analysis Tools

Cisco IOS/ASA Application Filtering: Context-Based Access Control CBAC, Zone Base Firewall ZBF, Flexible Packet Matching FPM, and Deep Packet Inspection DPI, Cisco Payment Card Industry PCI 2.0 Retail Audit Review.

Encryption, Hash, Diffie- Hellman Groups Authentication Methods

DES, 3DES, AES 128 192 256 SHA, MD5 Group 1 2 5 Pre-Shared Keys, RSA Signature Certificate Authority CA, Digital Certificates.

Security Protocols

Public Key Infrastructure PKI, IP Security IPSec, Transport Layer Security TLS, Secure Shell SSH, Secure Socket Layer SSL .

Network Protocols

OSPFv3, VRF, EIGRP, IGRP, BGP, ODR, and RIPng, IPv6, TCP/IP, IPv4, DHCP, WINS, DNS, IPX, Netbuei, HDLC, SNMP, ASYNC, PPP, HSRP.

VPN Technologies

LAN-2-LAN VPN, Remote VPN, SSL VPN, Group Encrypted Transport GETVPN, Dynamic Multipoint DMVPN Phase 1 2 3, GRE-Base VPN, Easy VPN, Standard IPsec VPN, Site-2-Site VPN.

Work Experience

Confidential

Network Solutions Architecture Consultant

A professional consulting, advisory, and solution delivery company dedicated to protecting global digital assets enabling companies to do business with confidence in today's global interconnected electronic marketplace. Expert knowledge in cloud computing and Information Assurance thru cyber security threat management, risk management and solution implementation. Responsible for secure technical architectures/designs oversight of solution implementation, project leadership, assessment scoping establishment review of technical methodologies evaluation integration of leading cyber security products, services best practices into solution delivery portfolio.

Confidential

Network Solutions Architecture Consultant

Designed and implemented configurations for firewall and network routing infrastructure to establish secure transmission of data collected from Phasor Measurement Units PMUs and related substation components to Command Center consulted on customer process delivery documents including, but not limited to, the Build Specification Deployment Plan Functional Design Logical Model Technical Model Test Plan and Service Transition Handover as part of a successful multipart Smart Grid pilot project for a leading energy northeastern utility.

Confidential

Network Security Architecture

• Responsible for the design, configuration and the implementation of network security appliances which includes the following:
• Intrusion Prevention Systems 4200 Series IPS
• High-end Security Appliance 5580-20, 5580-40
• Cisco: Mid-range Security Appliance 5510, 5520, 5540, 5550
• Develop and implement strategies for securing assets, customer services delivery, and regulatory/audit compliance.
• Responsible for deployment of the following technologies: Nat-Control, ACS4.1, AAA, TACACS, Radius, DMVPN, GDOI, and Remote VPN.
• Responsible for performing Cisco PCI audit reviews for retail store clients.
• Responsible for providing analysis and recommendations to improve our client's network security.
• Responsible for performing security reviews of new applications and requirements.
• Responsible for enforcing our client's network security policies.

Confidential

Network Architecture Consultant

• Responsible for the architectural design, planning, and installation of two new data center locations Equinix and Telx .
• Responsible for collecting, analyze and determine data center networking system and service requirements. Install, upgrade, and maintain existing data center communication systems and services.
• Responsible for performing security reviews of new applications and requirements.
• Responsible also included working with cross-functional teams to establish network standards regarding new technologies.

Confidential

Network Security Consultant

• Responsible for the design, configuration and the implementation of network design and security appliances of Dow Jones MarketWatch branches and lockup sites nationwide. For MarketWatch branch offices and lockup sites that have five or less users, an option exists to connect to the Dow Jones network over the internet using a Virtual Private Network VPN .
• Responsible for setting up security policy for MarketWatch branches and lockup sites.
• Responsible for the configuration of the network security appliances Juniper Netscreen and Cisco ASA .
• Responsible for the designing a reliable and fully redundant network implementing various routing protocols such as OSPF and BGP.

Confidential

Network Solutions Consultant

• Responsible for the design, configuration and the implementation of Engineering Interoperability Lab. This Interoperability Lab will be used for the certification of new technologies and testing various production problems.
• Responsible for the designing a reliable and fully redundant network implementing various routing protocols such as OSPF, EIGRP, and BGP.
• Responsible for the configuration and setup of the switched Ethernet environment using Cisco Catalyst switches 6500, 4500, 3700, and 3500 with Gigabit Ethernet fiber optic backbone core.
• Configured VLANs, trunks, EtherChannel and inter-VLAN routing.
• Responsible for providing detailed Microsoft Visio diagrams for the physical and logical layout of the Interoperability Lab.

Confidential

Network Engineer Contract

• Responsible for the upgrade of 640 retail branches within Citigroup global router network
• Responsible for the implementation of Reuter's data and news feed into 510 retail branches within Citigroup
• Provided first level network operational support for all branch site installation, which support Cisco routers 3745, switches 6500 / 3560, EIGRP, OSPF, Multicast, T-1, Frame-Relay, IPSEC, and Static Routing

Confidential

Senior Design Consultant Contract

• Assumed the Technical Lead Engineer position that was responsible for the architecture, site surveys, technical design, standardization, accuracy and functionality of the technical components across the Consolidation Site Survey and Point of Sale POS projects
• As the Technical Lead Engineer, was responsible for twenty Field and Support Network engineers that was responsible for the following technical components
• Performing Consolidation Site Surveys for more than 1200 public schools within the network, and was responsible for the Network Integration strategy into an existing network for new equipment deployed at the public schools
• Standardized the implementation strategy for approximately 1200 3550 switches into an existing network
• Standardized the implementation strategy for more than 2200 POS and Kiosks into an existing network

Confidential

Network Design Consultant Contract

• Performed a major network infrastructure upgrade for the entire school system which included 108 remote public schools
• Created, installed, and implemented deployments plan of redundant Cisco 6513 Core switches and redundant fiber connections for new data center
• Configured 3550 switches with cluster management for Customer LAN
• Responsible for the configuration and installation of Cisco Wireless APs 1200 Series for the public schools
• Implemented a Voice over IP VoIP network utilizing Cisco voice telecommunication equipment in the school IDF/MDF closets
• Implemented and configured 802.1p for Cisco QOS/COS voice traffic transverse over redundant 802.1q VLAN trunks
• Designed and created VLAN architecture, IP Addressing schema, HSRP redundancy, and DHCP scopes
• Created and utilized Microsoft Visio and NetFormx to document, present, and detail customer's network infrastructure
• Developed and delivered documentation and training for the support team

Confidential

Senior Network Consultant Contract

• Delivered a VPN/Remote Access Solution--replaced Ascend MAX, PRI/BRI lines, and Microsoft NT RRAS server with an efficient and cost saving solution
• Installed a Cisco 6500 switch, Cisco 3000 VPN Concentrator, Cisco Wireless AP'S, Cisco Secure, Remote Access Security Policy, and Global remote access accounts
• Designed, planned, and presented the Remote Access Solution to the IT staff, Department Head, and end-users
• Implemented Cisco wireless AP 350 within Honda Help Desk area for the regional managers
• Network documentation was provided using Microsoft Visio and NetFormx drawing tools

Confidential

Network Consultant Contract

• Designed the internetworking topologies and generated the accompanying Cisco 2600 access router and switch configurations for over 2800 branches
• Created Cisco router configuration to handle SNA and DLSW traffic. Designed a Microsoft Access database to store VTAM-NCP definitions for PU type 2.0, 2.1, and 4.0 devices
• Researched and analyzed branch network utilization and bandwidth requirements for customer physical layer topology. Generated and submitted over 2800 WAN Circuit orders to various telephone carriers AT T, MCI, and Sprint . Correctly, verified NPA/NXX numbers to determine cost effectiveness of customer's intra and inter LATA traffic
• Provided 3rd level network operational support for all branch site installation, which supported BGP, OSPF, HSRP, DS1, Frame-Relay, ISDN, ATM and Static Routing
• Network documentation was provided using Microsoft Visio and NetFormx drawing tools

Confidential

Senior Network Consultant Contract

• Created, presented, and drafted a plan to convert network from 10/100 BaseT to Gigabit Ethernet configuration. The plan involved researching Cisco 6500 hardware requirements, creating detailed network diagrams, documenting a plan for the Installation plan, Backup/Recovery, and Test plan
• Responsible for configuration management of Cisco 6500 switches and network intrusion detection. Worked with Cisco 4000/3500 LAN switches, 515 PIX firewalls and 2600/3600 routers
• Presented network upgrade strategy to IT management and staff
• Responsible for providing 3rd level support for Cisco powered LAN/WAN environments
• Network documentation was provided using Microsoft Visio and NetFormx drawing tools

Confidential

Senior Network Consultant Contract

• Data Center and Campus LAN Relocation - Supervised and coordinated the relocation of DCS Data Center and 30 remote locations into the new Glenridge data center and the installation of Cisco Wireless AP's 340 Series
• Responsible for providing network design and implementation of Cisco 7500s powered data center core network for Cingular Wireless frame-relay clients
• Designed, planned, and presented the physical layout necessary for main data center and MDF/IDF closets
• Created customer Service Level Agreements SLA for network operations, disaster recovery, and security policies
• Responsible for troubleshooting Cisco 7500, 6500, 4500, 3600, 2600, 2500. Worked with DS3, Frame-relay, ISDN, CSU/DSU, BGP, OSPF, L2TP, EIGRP, RADIUS, and ATM
• Network documentation was provided using Microsoft Visio and NetFormx drawing tools

Confidential

Lead Network Design Engineer Contract

• Responsible for providing network planning, design and implementation of Cisco powered WAN infrastructure for QOS clients
• Design IP Addressing scheme, POP layout for each core site, and configuring BGP for upstream ISP connection
• Proposed, architected, managed, and developed strategic direction for company's LAN/WAN environment
• Provided procurement testing of all networking equipment before installation into the production network
• Responsible for configuration management of network components of clients' LAN WAN interconnections
• Responsible for configuring and troubleshooting Cisco 7500, 6509, 2600. Worked with DS3, Frame-relay, CSU/DSU, BGP, OSPF, and RIP
• Network documentation was provided using Microsoft Visio and NetFormx drawing tools

Confidential

Senior Network Consultant Contract

• Worked as third-level NOCC Engineer supporting Level 1 Level 2 NOCC engineers in BellSouth CLEC, ISP, NOCC environment
• Responsible for escalated calls from international remote sites and training level 1 2 personnel on network environment troubleshooting techniques
• Responsible for the design of each international POP layout for the core sites, and configuring BGP for upstream ISP connection
• Responsible for configuration management of network components of clients' LAN WAN interconnections
• Responsible for configuring and troubleshooting Cisco 7500 and 5500. Worked with DS3, Frame-relay, CSU/DSU, BGP, OSPF, and RIP
• Network documentation was provided using Microsoft Visio and NetFormx drawing tools

Confidential

Network Engineer Contract

• Responsible for the integration of internet access into 2000 public schools, state-wide in Tennessee
• Responsible for configuration management of network components Cisco 2600 of ENA - LAN WAN interconnections
• Responsible for installation and troubleshooting of Cisco 2600 routers and Catalyst 2900 switches. Worked with Frame-relay, CSU/DSU, OSPF, and RIP

Confidential

Senior Network Design Planning Engineer

• Responsible for determining communication needs, producing and presenting network solutions, as well as planning, designing and supporting the network infrastructure
• Formulate operational designs of creative and innovative nature for the development and maintenance of the LAN/WAN systems
• Managed enhancements and improvements to the existing network infrastructure including the DNS, WINS, and DHCP servers
• Proposed, architected, managed, and developed strategic direction for company's LAN/WAN environment, and securely handled, processed, and stored company data and proprietary client information
• Architected, designed, managed, and administered company FTP sites, and remotely accessible systems being utilized for imaging, data, and document processing
• Network documentation was provided using Microsoft Visio drawing tools
• Responsible for configuring and troubleshooting Cisco Routers 7500, 7200, 4700, 2500 and Switches 5500 . Worked with DS3, Frame-relay, CSU/DSU, BGP, EIGRP, and RIP

Confidential

Senior Network Engineer/Lab Manager/AVP

• Designing/Engineering Cisco router-based solutions, using TCP/IP, OSPF and BGP as the routing protocol on a large-scale corporate internetworking for Citicorp branches
• Responsible for providing detailed router design and project implementation plans for the Private Banking Group
• Assist in the establishment adherence to corporate standards and guidelines on both technical and compliance issues
• Voting member of IEEE 802.3 Working Group that approved IEEE Standard 802.3u-1995 100Base-T .
• Designed, implemented, deployed, and supported network designs and upgrades, multi-location networks, and provided second and third level support to resolve network Infrastructure and server/system challenges
• Lab Manager for the GRN test network facilities in LIC and Plainview Responsible for the network architecture and design of test network which consisted of 21 Cisco router and 24 Cabletron switches
• Identify necessary technologies, planned, redesigned, migrated, implemented, consolidated networks, and monitored corporate firewall, routers, switches, hubs, and tested and evaluated new systems and technologies
• Network documentation was provided using Microsoft Visio drawing tools
• Responsible for configuring and troubleshooting Cisco Routers 7000, 7010, 4000, 2500 and Cabletron Switches. Worked with T-1, Frame-relay, CSU/DSU, BGP, OSPF, and RIP

Confidential

Telecommunication Auditor

• Provide telecommunication knowledge and support to the EDP Audit Group within Corporate Audit, involving network system reviews and other technical projects
• Participate in team audits, regularly assuming a lead role, on telecommunication related system reviews and audits of various technical areas
• Developed, documented, implemented, established and maintained network policies, security procedures, and systems standards

Confidential

Senior Network Engineer

• Responsible for the continued testing and certification of all network products e.g. X.25, T-1, LAN Technology, Frame Relay, Network Management, etc.
• Making recommendation for products use based on results of product evaluation, feasibility study, and user requirements
• Responsible for configuring and troubleshooting Telematics X25 Switches. Worked with T-1, 56kbps, CSU/DSU, Cylink Encryptors, and Timeplex Switches

Confidential

Telecommunication/Software Engineer

• Engineered Protocom's proprietary Packet Assembler/Disassembler PAD software for interfacing data communications equipment to X.25 Packet Switched Networks
• Involved with extensive laboratory simulation of data network, significant use of protocol analyzer to program emulation scripts for debugging and code implementation of PAD software

Confidential

Software Programmer

• Responsible for all phases of operation including: Operating and installing telecommunication equipment Computer Operator