TECHNICAL SKILLS:

Primary skills: Cisco routers and switches; F5 Big - IP LTM Load Balancers; PIX/ASA, NetScreen (Juniper), and Checkpoint Firewalls; IPSec/SSL VPNs; OSPF, EIGRP, and BGP routing protocols; SNMP monitoring; Frame-Relay, ATM, MPLS; Ethereal/Wireshark sniffers.

Secondary skills: F5 3DNS, F5 Big-IP LTM Load Balancers, UNIX/Linux, Windows 2000/2003 Servers, DHCP, DNS, CMTS, and VMware Server.

PROFESSIONAL EXPERIENCE:

Confidential, Atlanta, GA

Network & Firewall Engineer

Responsibilities:

• Expert level troubleshooting of Cisco ASA firewalls (using ASDM) with IPSEC or SSL VPNs, bandwidth utilization and connection testing with Wireshark, TCPDUMP, and SNMP tools.
• Troubleshooting routing protocols including BGP, OSPF, EIGRP, and 801.11 wireless protocols.
• F5 load balancing, SSL offloading, NATs, SNATs and iRules for application control.
• Analyze and interpret results of security audits, vulnerability scan reports, CIS hardening scan reports and providing recommendations for remediation of identified risks.
• 802.11a/b/g/n wireless connectivity triangulation, and analysis of radio signals for optimal azimuth (signal strength) locations.
• Fine tuning of XML (or HTML based) Voice and XNMP applications, and VoIP noise filtering.
• Installed Cisco ASA 5510 firewalls between office VLANs with fiber optic (FDDI) backbone.
• Basic UNIX system administration including various CLI tools and file manipulation (cat, vi, grep, passwd, kill, mv, mkdir, rmdir, chmod).
• ASA 5510 firewall installs and installation of MCK VoIP hardware with Nexus 5K/7K switches.
• Checkpoint firewall user administration (R65) with IPSec VPNs, rule administration with Smartdashboard, troubleshooting and monitoring QoS with Wireshark, and SNMP logging.

Confidential, Atlanta, GA

Network Engineer

Responsibilities:

• F-5 Big-IP LTM load balancer configuration with emphasis on WAN traffic balancing.
• Assignment of links to proper VRF subnet based on location and traffic content.
• TCP/IP configuration and spanning-tree (STP) design with focus on failover and redundancy.
• Data Center Engineer, proficient with Extreme switches, Visio diagrams (Visio), and Wireshark.
• Maintained a (TCP/IP) LAN/WAN Data Center Infrastructure supporting T1/T3, frame-relay, and troubleshooting with Network General Sniffer, Ethereal (Wireshark), and/or TCPDUMP.
• Checkpoint UTM-1, Power-1, and Edge appliance installation and configuration.
• Verification of firewall rulesets, priority of changes needed, updates to Checkpoint Firewall-1.
• Mentoring of other personnel on SPAN port, QoS, SNMP logging, and NMS troubleshooting.

Confidential, Suwannee, GA

Senior WAN Engineer

Responsibilities:

• Data center connectivity with Cisco 6500 switches (Sup720) and 7600-S series routers (RSP720).
• UNIX (SunOS/Solaris) administration and troubleshooting for end-users across the enterprise.
• Multi-homed BGP inbound and outbound policy configuration including route-maps, as-path access-lists, filter-lists, as path prepending, and associated troubleshooting.
• Backbone network redesign planning, documentation, ISP selection and screening for MPLS solution option supporting VoIP with jumbo frames and burst capability.
• F5 LTM, Cisco ASA, and NetScreen firewall administration (managed services).

Confidential, Atlanta, GA

IP Security and Network Engineer

Responsibilities:

• Cisco (6513, 7609) and Juniper (M320) router configuration including load-balancing, route-maps, ACLs, OSPF, port-channels, call-flow troubleshooting, and BGP routing configuration.
• Cisco IOS scripting, VPN fast re-route operations, and change management documentation.
• Firewall ruleset changes to permit communication through ISP, direct connect, or VPN.
• Cisco ASA firewall administration for external site-to-site VPN customers (multiple contexts).
• Cisco CSS 11000 administration for HTTP web portal load-balancing operations.

Confidential, Norcross, GA

Network Engineer

Responsibilities:

• Data center redesign and configuration of network including Cisco 6509 and 2960 switches, F5 Big-IP LTM load balancers, Checkpoint R65 Firewalls (Nokia IPSO), and VLANs with VTP.
• F5 Big-IP LTM 3400 and 1500 load balancer design and configuration including upgrades to version 9.4, nodes, members, virtual servers and server pools, NAT, SNATs, and iRules.
• Cisco PIX 6.35configuration including access-lists and multiple site-to-site VPNs.
• On-call Engineer (24x7) responsible for troubleshooting WAN communications and firewall security breaches, and performing real-time break-fix for trouble ticket incidents.
• Suse Linux Enterprise Server 10 configuration with Cacti/Hobbit for network/server monitoring.
• Checkpoint Connectra R62CM SSL VPN installation and configuration with embedded, Web, and Native applications, RADIUS authentication, and portal customization.
• Cisco 6506 CatOS L2 configuration (VLANs, Etherchannel) and troubleshooting; replacement of Supervisor card and power supplies, and upgrade to Native IOS.
• Network troubleshooting and traffic optimization with tools such as TCPdump, Sniffers (Ethereal/Wireshark), Cacti (SNMP), and Kiwi Syslog Daemon (firewall logging).

Confidential, Alpharetta, GA

Senior Infrastructure Engineer

Responsibilities:

• Designed two new data centers for hosting of proprietary web application servers with 99.999% uptime SLA, full redundancy with dual core Cisco 6509s (Sup 720), HSRP/VRRP, and OSPF multi-area routing with Virtual Links, F5 Big-IP Server Farms, and ASA 5500 series Firewalls.
• Design and installation of Load Balancing solution with F5 BIG-IP Local Traffic Management (LTM), with Web and Application Servers, iRules for code enhancement, and SSL offloading.
• Maintenance of legacy data centers with F5 1500 Load Balancers (130 server farms), dual PIX firewalls (6.3(5)) with multiple DMZ/security levels, Cisco 4509 cores running HSRP.
• Radware Linkproof ISP Global Load Balancer design and administration.
• Site-to-Site VPN connectivity provided with Cisco PIX (6.3) and ASA (7.2) firewalls using the CLI or ASDM, in Active/Passive failover mode with NAT and/or PAT, IPSec.
• Troubleshooting of various Cisco switches and routers (1800, 2800, 2960, 3750, 4509, 6509) including syslogs, AAA, TACACS+, packet debugging, Ethereal sniffing/analyzing capture files.
• VMware ESX Server installations and administration with VirtualCenter Client 3.x.
• F5 BIG-IP 3400 OS upgrades, setup of VIP listeners (virtual servers), virtual forwarding servers, HTTP/TCP profile optimization, traffic analysis with TCPDUMP, and of system administrators (140 Server Farms).

Confidential, Atanta, GA

NSD Implementation Engineer

Responsibilities:

• Cisco 7609 and Juniper M320 router configuration including Syslog, TACACS, VLANs, line card and PIC installation and configuration, and layer 2/3 connectivity testing.
• F5 LTM Load Balancer configuration export and decommissioning.
• Routing protocol configuration including BGP peering sessions and OSPF troubleshooting.
• Network design, planning, and documentation with Microsoft Project and Visio.

Confidential, Atanta, GA

Network Engineer

Responsibilities:

• External customer support on various routing and switching platforms for 24x7 NOC.
• Network router and switch configuration and troubleshooting (Cisco 3845, 4510, 6509, 7500, 7600; Juniper J2300, M-series) and routing protocol configuration (EIGRP, OSPF, BGP).
• Network Security Policy documentation and architecture design with focus on national SIP based VoIP backbone (Nortel), and infrastructure consolidation for SIP rollout.
• Cisco PIX and ASA (Adaptive Security Appliance) VPN configuration with IPSec encryption (3DES, MD5, SHA) using command-line (PIX) and/or ASDM client.
• Checkpoint firewall-1 v4.1 administration and conversion to Watchguard Firebox SSL gateway.
• T1-T3 circuit loopback and BERT testing, circuit turn-ups, DSLAM configurations, and liaison with ILEC and IXC carriers for local ISP.

Confidential, Stamford, CT

Network Security Engineer

Responsibilities:

• Top-tier support for 45 branches and core infrastructure including service provider WAN (Cisco 7200s, 4500s, 6500s with QoS (IP Precedence for VoIP), frame-relay mesh, VoIP (Avaya, MCK hardware), VPN’s, and VLAN’s; EIGRP routing.
• Responsible for network security including Checkpoint firewalls, Active Directory GPO’s, Snort IDS configuration, vulnerability scanning with Nessus, policy documentation, Tiger Team report remediation, and logging and tracking of suspicious or virus related activity.
• UNIX (Solaris and Linux) support including general file maintenance and networking.
• Cisco PIX firewall configuration with NAT rules, IPSec VPN, failover, and multiple DMZs.
• Check Point Firewall NG with Application Intelligence configuration for corporate office, firewall rules, NAT, DMZ, and monitoring with Smartview Tracker for security related issues.
• Change control documentation in Remedy and network group representative for change management, auditing, and control meetings.
• SNMP/RMON probe monitoring and management with HP Openview, SolarWinds and MRTG.
• VPN configuration using Cisco 3000 Concentrator, Nortel Contivity gateways, Vircom RADIUS authentication, SSL s and/or IPsec VPNs with standard encryption (3DES, MD5, SHA).
• TCP/IP network design and documentation with Visio, and documentation and report writing.

Confidential, New York, NY

Senior Network Engineer

Responsibilities:

• Cisco router configurations (7200, 3600, 2600, 2500) for inter/intranet connectivity, DMZ, NAT, and VPNs; TCP/IP, Frame-relay, and ISDN; and routing protocols (RIP, EIGRP, OSPF).
• Security auditing and reporting, policy recommendations, penetration testing with Nessus vulnerability scanner, and vulnerability assessment report writing for external clients.
• Design and documentation for DOCSIS project proposals, research of solutions involving cable, ILEC, and IXC carrier offerings, and Visio designs for HFC CMTS proposals.
• RIP, OSPF, EIGRP, and DECnet routing protocol configuration and optimization.
• Cisco PIX Firewall configuration including IPSec VPN, NAT, DMZ, rules, and access lists.
• Picturetel Videoconferencing system installation, troubleshooting, and maintenance.

Confidential, New York, NY

Sr. Network Engineer

Responsibilities:

• Configuration of Cisco routers (IOS 11/12.x), access servers, and Catalyst switches with HSRP.
• Cisco PIX Firewall installation and configuration (PIX v.4.x) with VPNs and failover.
• CSU/DSU and Telco line configuration including Frame-Relay, X.25, HDLC, ATM, and TCP/IP.
• Remote configuration and troubleshooting of Cisco and Newbridge routers, and SNMP trap events on NETscout probes using Telnet over leased lines (24 x 7 NOC).
• Configuration and troubleshooting of Windows NT/2000 Servers, DNS and DHCP servers.
• Designed TCP/IP network diagrams with Visio, and documentation of security policies.

Confidential, Marietta, GA

Network Operator

Responsibilities:

• Solaris 2.4 administration including NIS, NFS, shell scripts, and tar backups.
• Troubleshooting of remote Confidential with HP Openview, Solaris 2.x in a NOC environment.
• Configuration of IIS Web Servers, NT 4.0 Servers and Workstations.
• Network resource usage analysis, and recommendations for application performance.

Confidential, Roswell, GA

Electronics Technician

Responsibilities:

• T-1 lines, ISDN PRI racks, D-4 channel banks, X.25 PADs, CSU/DSUs (Verilink, NT, Confidential &T).
• SNMP based agents for tracking performance, and network traffic analysis baselining and reporting between regional data centers of BellSouth OSI Platform (BOSIP) intranet (60,000+).
• Maintained UNIX (HP-UX 9.0) NIS and NFS, configured NetManage ChameleonNFS TCP/IP for intranet connectivity, and performed custom backups using tar shell scripts.
• Network monitoring and reporting with Best1 for UNIX or HP Openview..
• Helpdesk troubleshooting to localize problems between customer premise equipment, LECs (telephone companies), and X.25 Packet Data Network.