SUMMARY:

• Goal - driven and seasoned professional with extensive experience in all aspects of information systems management, networking, and information security. Additional qualifications include:
• Exceptional talent in overseeing large and complex projects, with focus on ensuring successful completion and alignment with budget and schedule requirements
• Expertise in conceptualizing, developing, managing, Amazon Web Services (AWS) cloud infrastructure, network, and system security architectures
• Provided Ideas in Innovations and has changed the traditional IT to T&I (Technology and Innovation) and assisted a utility company to make product and sell it to the other utility companies.
• Align IT services with current and future needs of the business and its customers while improving quality of services delivered
• Strong knowledge in developing business aligned IT strategy, short-term and long-term roadmaps identifying capabilities that have the greatest impact, including development comprehensive business case(s) to highlight desired business outcomes / ROI.
• Spearheaded in developing strategic and collaborative partnerships with senior commercial leaders including utilities Affairs by demonstrating deep domain knowledge of the business and related technology enablers and becoming a trusted adviser.
• Strong familiarity with various networking concepts related to LAN, WAN, systems, security, IT communication, and networking devices management and maintenance within multiplatform environments
• Adeptness in motivating, guiding, and leading teams of professionals to collaborate toward a common goal and guarantee fast-paced and high-quality product delivery
• Strong communication and interpersonal skills in building positive work relationships with professionals of all levels
• Datacenter and SD-WAN Technologies
• Cisco UCCE Infrastructure and Contact center
• Amazon Web Services
• Azure Cloud Services
• Security Monitoring and Incident Response
• Network Access and Policy Audits
• Process Improvement and Automation
• Business Impact Analysis
• Threat, Vulnerabilities, and Risk Assessment
• Quality Assurance and Technical Review
• Network Perimeters Configuration and Management
• Disaster Recovery and Business Continuity Planning

TECHNICAL SKILLS:

Operating Systems: Microsoft Windows Server Linux UNIX

Networking and Protocols: Routing Information Protocol (RIP) Interior Gateway Routing Protocol (IGRP) E1/T1 VLAN Enhanced Interior Gateway Routing Protocol (EIGRP) Border Gateway Protocol (BGP) Multicasting Open Shortest Path First (OSPF) VLAN Trunking Protocol (VTP) Spanning Tree Protocol (STP) Multiprotocol Label Switching (MPLS) Unicasting Internet Protocol Security (IPsec) Integrated Services Digital Network (ISDN) Asynchronous Transfer Mode (ATM) High-Level Data Link Control (HDLC) Rapid Spanning-Tree Protocol (RSTP) Point-To-Point Protocol (PPP) Hot Standby Router Protocol (HSRP) F5 GTM and LTM Citrix Load Balance HP OpenView CiscoWorks Access Control List (ACL) Manager Juniper Cisco Nortel Infrastructure and Architecture Synchronous Optical Networking (SONET)

Cloud Technologies: AWS (Amazon Web Services) - EC2, Lambda VPC EMR SandBox S3 EFS IAM Resource Access Manager GuardDuty CloudWatch CloudFormation IOT CloudFront Direct Connect Cloud Connect (Contact Center) Microsoft Azure

Security: Internet Security Scanners Intrusion Detection System (IDS) Ettercap Core Impact Cisco Adaptive Security Appliance (ASA) Firewall Retina Vulnerability Scanner Check Point IPSO Check Point Firewall UTM-1 Snort Wireshark AppDetect WebScarab WebInspect nCircle ArcSight AppScan Blue Coat Qualys Radware IDS DefensePro Alteon Systems WebInspect BMC-Patrol Checkpoint SPLAT Platform Burp Suite AppScan Ethereal MIMIC Symantec Endpoint Encryption Symantec Protection Suite Enterprise Edition Symantec Network Access Control SMART Websense Security Gateway Websense Email Security

Hardware: Cisco switches and routers (1700, 2600, 7200, 3750, and 3845 series) Cisco Layer 3 switches Alcatel Devices Avaya IP Telephony HP ProCurve 6600 switch series Crossbeam C Series Cisco 9k switches, ASR and ISR Router Viptela VEdge (5000, 2000, and 1000) Juniper Switches and Routers Cisco ASA 5500 series

Software: VMware Server Microsoft Exchange Server

PROFESSIONAL EXPERIENCE:

Confidential, Camden, NJ

Principal Technologist, Network, Voice, Systems and Security

Responsibilities:

• Assisted, suggested the CTIO of the organization to change the traditional name of Information Technology (IT) to Technology and Innovation (T&I).
• Ability to set expectations with business partners and effectively leverage governance for a positive business partner experience.
• Exceptional ability to lead change using positive and collaborative methods. Skilled at conflict resolution and problem-solving to achieve win-win outcomes.
• Able to influence and motivate others using personal rather than positional power.
• Able to communicate technical or complex subject matter in business terms. An outside-in focus: outstanding end-customer relationship skills.
• Demonstrated acumen and passion for business and technology.
• Facilitating requirements definition and process analysis & design sessions with business customers
• Understands the IT industry well, e.g. emerging technologies and trends, industry standards, solution architecture, the vendor landscape and Best Practices in Data Integration.
• Developing detailed budget estimates, project plans, and identifying change management and communication strategies to support successful implementation of technology within the business
• Vendor Management, Contracting knowledge, Service Level Agreements
• Provide leadership to infrastructure architecture, availability, performance, incident, capacity, configuration, and change management processes, as well as tools, vendors, and resources to support 24/7 uptime and availability service level agreements (SLAs)
• Lead the installation, configuration, and deployment of two datacenters in Dallas and New York with scalability and redundancy by setting up a true SD-Wan, Spine, and Leaf infrastructure
• Render overall IT infrastructure vision and execution direction for the company, including establishing detailed roadmaps, leading planning and execution, developing skilled and capable teams, and ensuring continued alignment with key stakeholders
• Partner with the Operations Team in maintaining high level of operational readiness on the infrastructure front, which entails proactive monitoring of existing infrastructure; governance, review, and approval of infrastructure changes; and resolution of infrastructure and network issues as they arise
• Collaborate with the DevOps and Applications Engineering teams in deploying new applications and implementing operational procedures and guidelines
• Oversee new and existing support and services vendors, and work with the Internal Procurement Team in ensuring all appropriate SLAs are adhered to and integrated into the service contractSelected s:
• Spearheaded all security activities related to infrastructure based on the security roadmap, which involved constant collaboration with the chief information security officer (CISO) on security assessments, reinforcement of all infrastructure assets, and mitigation of vulnerabilities
• Supervised several migration initiatives, including:
• MPLS to true SD-WAN technologies, generating approximately $40M in savings annually
• All physical server infrastructure to AWS cloud
• Existing UCCE contact center infrastructure to AWS connect for 900 CSR agents
• Continuously sought out new opportunities to streamline technologies to boost employee productivity and reduce costs

Confidential, New York, NY

Vice President, Network and Security

Responsibilities:

• Direct the operations of the Network Engineering Team, which involve assigning duties, mentoring the team, and guiding them in meeting department and division goals
• Assist the Senior Management Team in planning and budgeting IT purchases, creating IT operational plans, and making long-term technology roadmaps
• Establish timelines and deliverables for network and datacenter projects to guarantee high-quality, cost-efficient, and timely results
• Work with project teams in ensuring that infrastructure for new projects is up and running
• Develop proof of concepts and vendor comparisons, and provide solutions aligned with business requirements
• Exemplify expertise in configuring Nexus 7K, 5K, and 2K with overlay transport virtualization (OTV); Cisco 3800 and 2800 routers for ING branches, head office, and internal and external vendors; BGP network for third-party vendors; and Nexus 7000, 5000, and 2000 series switches at the head office and DR locations
• Supervise the design and set up of Aruba mobility controller 7200 series; RAP 3; Cisco WebEx with Cisco CallManager and Meeting Place Express; Bluecoat proxy server; Checkpoint firewall UTM-1 and VPN environment at ING and branch locations; Cisco ASA firewall and zone-based firewall; and various IDS products, such as Radware DefensePro and Alteon switch
• Regularly assess network and security architecture, and lead the implementation of new technologies and integration with current technologies
• Pioneered the implementation of all IT security projects to ensure completion within time and budget requirements
• Redesigned a combined static route/EIGRP implementation, with a robust, multi-area OSPF design; supervised the deployment of bidirectional forwarding detection (BFD) for sub-second WAN failover on a dual provider, as well as VPLS network with multiple path while reducing operational costs by $40K annually
• Restructured the entire L2 topology, while protecting the spanning-tree topology by implementing bridge protocol data unit (BPDU) guard, root guard, unidirectional link detection (UDLD), hot standby router protocol (HSRP), port channels, and dynamic host configuration protocol (DHCP) snooping
• Managed the migration of security infrastructure firewall and IP from Checkpoint UTM to Palo Alto 3060 PAN-OS
• Integrated a BGP, multi-home dual ISP solution with security features, such as TCP intercept, Cisco TACACS server, and extensive access lists to safeguard against spoofing, hacking attempts, and DOS attacks on Cisco 2920 routers
• Gained distinction as a security subject matter expert, conveying strategic insights on network and security best practices for all IT initiatives
• Conceptualized and executed change management strategy, peer review process, and incident and problem management guidelines that guaranteed standardized methods and procedures were utilized for all changes
• Achieved and sustained 99.9% uptime for security infrastructures, which included vulnerability management, antivirus, encryption, DLP, SIM, and IPS
• Automated procedures and processes to streamline overall security monitoring and incident response programs
• Received a letter of appreciation from General Electric for successfully configuring the branch before project deadline

Confidential, Ramsey, NJ

Associate Director of Networks and Security | Senior Engineer, Networks and Security

Responsibilities:

• Keenly monitored security operations in the enterprise infrastructure and business applications
• Set up Nexus 7000, 5000, 2000 series switches with OTV, VPC, and several VPC over IPsec
• Examined network vulnerabilities to transform information security policies into operational use
• Configured security to databases on the SQL Server, as well as created backups of SQL and Oracle Server
• Initiated penetration testing on SQL Server, code injection with Acunetix, Webinspect, Retina, Wireshark, and Snort; along with hot and cold site disaster testing, vulnerability assessment, risk analysis, and threat assessment to determine software, server, and network compliance with security guidelines
• Led the installation and configuration of Checkpoint and Crossbeam Firewall with RSA Secure ID; CounterACT, AlgoSec, and vulnerability scanners such as Accunetix and OWASP; F5 LTM and GTM; and Cisco and Juniper Layer 3 switches, firewalls, and routers
• Contributed innovative recommendations to ensure that the system adhered to BS7799 standards and Information Technology Infrastructure Library (ITIL) processes
• Functioned as a consultant on numerous projects, including:
• Hacking countermeasures with RSA anti-fraud on phishing, Trojans, and spywares
• Infrastructure and application security design and reengineering
• Reverse engineering and enterprise audits
• Vulnerability management
• Expertly managed the installation, setup, and maintenance of wide area application services; Cisco content switch services 11000 series; Cisco security products; client-to-site VPN with Checkpoint and Cisco Pix; and Pix Firewall, Cisco 4710, F5 load balancer local traffic manager (LTM), global traffic manager (GTM), and quality of service (QoS)
• Handled configurations for RIP, IGRP, EIGRP, BGP, OSPF, VTP, VLAN, STP, MPLS, IPsec, E1/T1 and ISDN, ATM, PPP, HDLC, SONET, multicasting, and unicasting
• Implemented the IBM ISS site protector SP6 and Proventia Management Tool