OBJECTIVE:

• Seeking a position as a Senior Network Architect/Engineer. A positon that would give me the opportunity to bring to a company my 16 years of experience building IT solutions to resolve complex technology and business challenges.
• My goal is to help an organization achieve the highest standard of technology integration andnetwork performance while aligning technology investments to business vision and objectives.

PROFESSIONAL EXPERIENCE:

Confidential

Senior Network Engineer/Architect

• Short term project
• Solutions Design: Providing design/architectural solutions for the deployment of data center protocols and technologies including: Fabricpath, Vpc, Cisco MDS storage, Cisco Nexus 7k/5k2k, Cisco UCS.
• Network Capacity Analysis/Readiness: Conducted network capacity assessment to understand current protocol/application trends in preparation for migration to cloud based application environment.
• Improvements Recommendations: Presented solutions and recommendations to improve current internal and external routing implementation for BGP, EIGRP, OSPF, MPLS, DMVPN.
• Trusted Advisor:Technical advisor to IT executive team providing direction and vision for next generation data center adoption.
• Protocol Analysis: Evaluated current data center implementation for following protocols: OSPF, BGP protocols, Spanning tree, VLAN architecture, IP addressing architecture. Identifying flaws, configuration and design errors then presented findings and recommendations for improvements to IT leadership.
• Executive Communication: Interfacing with IT leadership team to understand current technology challenges and problems, providing technical guidance and solutions to resolve campus/LAN/WAN implementation challenges
• Problem Resolution : Resolved outstanding business impacting network services problems within 4 week time frame, directly and significantly improving electronic health records systems accessibility for physicians/surgeon staff

Confidential

Network/Data Center/Systems Architect

Responsible for network solutions implementation, architecture development, technology selection and network operations support for Guide wire's domestic, remote and data center network infrastructures. Technical advisor to IT executive team providing direction and vision for next generation network adoption.

• Network Resiliency improvements:Identified flaws/weaknesses in current LAN/WAN and data center technologies. Analyzed and assessed implementation of network protocol implementation OSPF, EIGRP, BGP, MPLS, and STP . Documented findings for IT leadership team. Proposed recommendations for improvement to implementation and architecture emphasis fault tolerance, reducing single points of failure and improving overall redundancy strategy
• Next Generation Firewall migration : Designed and hands on configuration and implementation of next generation Palo Alto networks firewalls, including conceptualizing security zones, designing partner/vendor DMZ, configuring access policies, configuring VPN polices, troubleshooting/debugging of firewall events.
• Data Center Migration: Designing, implementing and operations support of converged virtualized infrastructure solutions for data center platforms including: routers, switches, firewalls, load balancers from Cisco, Juniper, Brocade, HP and Arista. Worked on application migration from legacy to new data center.
• Day to Day Network operations support: Provided tier I / III escalation network engineeringhands on configuration/ support for mixed multi- vendor infrastructure Brocade, Cisco, Dell . Hand's on configuration/troubleshooting of network infrastructure devices including: Cisco Catalyst 6500/3750/2906 campus switches, Cisco Nexus 7k / Cisco Nexus 2k fabric extenders/ Cisco 5k data center switches, Cisco ASR/ISR routers, Brocade VDX 6700, Brocade ICX switches.
• Protocol Implementation: Hands on configuration/deployment and design of common networking protocols and solutions including: OSPF/EIGRP/BGP routing protocols, Spanning tree protocols, TCP and UDP protocols, Next generation Data center oriented technologies such as virtual port channels VPC , Fabric path, fiber channel over Ethernet FcoE , virtual switches, network virtualization.
• Technical Leadership: Developed and trained junior staff members on methodologies to troubleshoot complex routing/switching network errors and evangelized the adoption of methodologies/processes to IT leadership staff.
• Network Architecture Assessment: Conducted enterprise wide network architecture/ evaluation assessment for LAN/WAN, data center networks. Identifying key performance effecting configuration/implementation problems. Documented data and presented recommendations for improvement to senior IT leadership.
• Methodologies Development: Standardized on methodologies for network technology deployment. Resulting in measureable reduction in time to deployment and project timelines.
• Multi Vendor network support: Engineering, implementing and supporting multi vendor network infrastructure consisting of Cisco, Brocade, HP, Dell, Juniper platforms.
• Network deployment: Hand's on configuration and deployment of switches Cisco 3750,4500,6500, Nexus Cisco ISR/ASR routers 1900,2900,3900 Cisco ASA firewall gateways implementation

Confidential

Senior Network Engineer/Architect

• Data Center fabric upgrade- Implemented next generation data center fabric consisting of Cisco Nexus data center solution, platforms included: Confidential and Unified computing systems. Collected business requirements, conducted product evaluation, developed network architecture/design, presented to IT executive leadership, provided oversight for implementation
• Multi- vendor network support:Hand's on configuration, design, deployment and operational support of HP/Brocade and Cisco infrastructure, platforms include: HP 2620/5400/5130 switches, Brocade VDX 6700, Cisco Nexus 5k/2k.
• Enterprise security improvements: Improved overall enterprise security by designing Cisco Confidential firewall security policies, implementing perimeter security, intrusion detection services, device hardening, identity access control, switching/routing security authentication
• Protocol Implementation: Hands on configuration/deployment and design of common networking protocols and solutions including: OSPF/EIGRP/BGP routing protocols, Spanning tree protocols, TCP and UDP protocols, Next generation Data center oriented technologies such as virtual port channels VPC , Fabric path, fiber channel over Ethernet Foe , virtual switches, network virtualization
• Network Security Audit: Conducted review of network security strategy. Reported findings and recommendations VA1 to CISO. Proposed strategies for device/perimeter/LAN hardware and software hardening. Implemented more robust threat prevention, intrusion prevention and security monitoring systems.
• Technical Leadership: Provided technical guidance to other network engineers for the design, configuration and deployment of network infrastructure devices and solutions. Coaching and training network engineering staff on configuration/implementation best practices
• Operations efficiencies improvements: Reduced network defects 20 by instituting standard testing processes and root-cause analysis systems for troubleshooting and resolution of tier 3 escalation issues. Resulting in 5x faster resolution to critical network down issues.
• WAN Edge infrastructure redesign and refresh - Proposed WAN design to consolidate and reduce connectivity costs. Migrated to MPLS network for > 20 WAN locations. Improved performance, application and network availability.

Confidential

Senior Network Engineer/ Architect

• Network Infrastructure Operations/Design/Architecture: Tier II support forcomplex networking issues. Troubleshooting/diagnosing of network connectivity issues for Ethernet and IP and TCP/IP protocols. Design and implementation routing/switching protocols, OSPF/EIGRP/BGP. Lead network design/architecture review boards. Developed standardization of network device configurations for existing and office expansion efforts.
• Enterprise security improvements: Improved overall enterprise security by designing Cisco ASA firewall security policies,implementing perimeter security, intrusion detection services, device hardening, identity access control, switching/routing security authentication.
• Technical Leadership: Developed and trained junior staff members on methodologies to troubleshoot complex routing/switching network errors and evangelized the adoption of methodologies/processes to IT leadership staff.
• Network Security Audit: Conducted review of network security strategy. Reported findings and recommendations to CISO. Proposed strategies for device/perimeter/LAN hardware and software hardening
• Campus Upgrade/Refresh: Developed network design for local area network campus refresh. Successfully executed on the installation/implementation of > 100 network devices independently within 6 week time frame. Delivering solution on time and under budget.
• Network Operations Support: Day to day tier III escalation support for network infrastructure consisting of the following platforms: Cisco 3750/3550/2900/6500/Nexus, Cisco ISR 1900/2900/3900 routers, Cisco ASA 55xx firewalls.
• Quality of Service Implementation: Designed enterprise quality of service strategy. Deployed Qos configurations to optimize VOIP/Video/sensitive traffic across LAN/WAN and global sites.

Confidential

Network/ Security Architect Consultant

• A senior network security architect with duties including project implementation, technology evaluation, network infrastructure architecture assessments, risk analysis, etc. .
• Network equipment consolidation - Reduced IT network spending by 25 evaluating network equipment infrastructure costs and eliminating unnecessary items. Project resulted in significant hardware costs savings. Integrated network virtualization into current and future state architectural developments.
• IP telephony readiness for conversion to a converged data and voice network - Leading enterprise wide network/VoIP/security assessments to prepare and position infrastructure for converged/unified IP fabric.
• Technical Leadership: Developed and trained junior staff members on methodologies to troubleshoot complex routing/switching network errors and evangelized the adoption of methodologies/processes to IT leadership staff.
• Protocol Implementation: Hands on configuration/deployment and design of common networking protocols and solutions including: OSPF/EIGRP/BGP routing protocols, Spanning tree protocols, TCP and UDP protocols, Next generation Data center oriented technologies such as virtual port channels VPC , Fabric path, fiber channel over Ethernet Foe , virtual switches, network virtualization
• VPN rollout project- Successfully engineered, architected and engineered a full a mesh enterprise wide DMVPN solution across 20 domestic locations, 2 data centers and international sites. Project resulted in cost savings for wide area network connectivity, by eliminating unnecessary/expensive WAN circuits.

Confidential

Network ArchitectConsultant

• Network architect responsible for interfacing with business units to gather business/technical requirements and translating to an executable implementation and integration.
• Multi-carrier internet service provider solution: Designed more scalable, highly redundant multi carrier solution resulting in more optimal network uptime and availability
• Network Security Initiatives: Engineered network security solutions. Wrote security policies/procedures. Recommend threat mitigation solutions. Rolled out perimeter/WAN/LAN security hardening configurations.
• Implemented incident/network/security response systems: Reducing the exposure to data theft and access to sensitive data, reducing databreaches by 50. Implemented security intrusion event management platforms, intrusion prevention/detection systems and firewall solutions.
• Day to Day Network Operations support: Provided tier I/ III escalation network engineering support for mixed multi- vendor infrastructure Brocade, Cisco, and Dell . Hand's on configuration/troubleshooting of network infrastructure devices including: Cisco Catalyst 6500/3750/2906 campus switches, Cisco Nexus 7k / Cisco Nexus 2k fabric extenders/ Cisco 5k data center switches, Cisco ASR/ISR routers, Brocade VDX 6700, Brocade ICX switches.
• Network Assessment's/ Audit: Conducted review of network security strategy. Reported findings and recommendations to CISO. Proposed strategies for device/perimeter/LAN hardware and software hardening
• Enterprise Systems Upgrade : Upgraded 1,800 work stations across 12 sites to achieve project deliverables, restore client relationships, and initiate a strategic partnership for future engagements

Confidential

Network Solutions Architect

• Complex network device troubleshooting: Troubleshooting and diagnosis of highly complex networking protocols situations.
• Hand's on network device deployment: Implementation of routing protocols BGP, OSPF, EIGRP. Configuration of Cisco Catalyst 6500/3560/2960 switching fabric. Configuration of firewalls, Juniper SSG, Cisco ASA.s
• Office expansion projects: Communicated and collaborated with cross functional business units to gather requirements. Developed network architecture and implementation plans for protocols/technology integration into existing network. Interfaced with vendors to conduct product evaluations, set up proof of concept labs.
• Network Security Strategy : Improved network security strategy by proposing and implementing perimeter/campus level security hardening solutions.
• Firewall Migration: Migrated infrastructure to next generation firewall solutions including: Palo Alto networks firewalls, router/switch device hardening, OSPF route authentication, BGP authentication, etc

Confidential

Network Architect/Network Engineer

• Escalation Engineer: Senior technical leader for world class Cisco Technical assistance center. Provided resolution to highly complex network/network security related issues for Fortune 50-200 enterprise accounts. Recognized for exceeding customer satisfaction scores. Resolving cases related to Cisco product portfolio including: Cisco ASA's, DMPVPN, Cisco Access control server, Cisco intrusion detection systems.
• Protocol Implementation: Hands on configuration/deployment and design of common networking protocols and solutions including: OSPF/EIGRP/BGP routing protocols, Spanning tree protocols, TCP and UDP protocols, Next generation Data center oriented technologies such as virtual port channels VPC , Fabric path, fiber channel over Ethernet FcoE , virtual switches, network virtualization
• Day to Day Network Operations support: Provided tier I/ III escalation network engineering support for customer networks. Hand's on configuration/troubleshooting of network infrastructure devices including: Cisco Catalyst 6500/3750/2906 campus switches, Cisco ASA/PIX firewalls, Cisco IPS/IDS systems, Cisco WLAN controllers, Cisco ACE.

Confidential

Network Engineer

• VA1 Responsbile for conducting ongoing network security audit to identify holes/vulner at the network level. This being a bank, they were subject to onging audits. Before I was brought on, they had failed audits based on weak security at the network level, they had almost no security implementation at the layer 2 or layer 3 level. I proposed an end to end network security solution, consisting of deploying layer 2 attack meareus such as BDPU guard, DHCP snooping, control plane policing, interface protecdtion. Etc This resulted in passing of the next scheduled audit.