Experienced network / security professional with experience designing, and implementing systems in varying environments. Capable of providing maintenance and troubleshooting of systems from vendors including Cisco, Juniper, Microsoft, Citrix, and others, providing resolution to complex outages and issues. Contributes to team efforts by providing technical/process expertise and guidance while working towards common goal. Strong written and verbal communication skills, also effectively works with Business users and Global team members in a collaborative and respectful manner. Able to interpret IT Security requirements and the value of IT Security to Business customers in a manner that is easily understood. Instills a sense of urgency in driving assignments to completion. Monitors progress of self and others and redirects efforts when goals are not being met. Strong attention to detail and accuracy. Interim Secret Clearance.

Confidential

SWACC WAN Security Engineer

• Design and troubleshoot Wide Area Net WAN and Local Area Networks LAN Security.
• Use engineering disciplines as well as current information technology to support the TNOSC mission.
• Troubleshoot Cisco Pix Firewall, Concentrators, Router ACLs, and make sure all the routing protocols are being authenticated properly.
• Evaluate network security, tune network security infrastructure including routers, switches, fast Ethernet links, network address translations, firewalls, routing protocols, and security features, in accordance with DOD, Army, CENTCOM, DISA, TNOSC, 335th Sig Cmd, and 160th Sig Bde regulations, bulletins, manuals, pamphlets, circulars, standards and directives.
• Provides network security policy recommendations, project planning, change control, firewall management/release updates, and routing Access Control List ACL management.
• Responsible for configuration policy enforcement, routine maintenance, Virtual Private Network VPN policy recommendations, routing policies for Active Directory AD domain controllers, IDS, Exchange, and system maintenance.
• Ensures all the Firewall Modifications is in compliance with DoD regulations according to AR25-2
• Periodically scan the Network to detect vulnerabilities and reinforce the security infrastructure working in conjunction with the IA teams.
• Plans network development and expansion as needed. Engineer technical solutions and advise military counterparts of cost impact and timelines for implementing them.

Confidential

IT Compliance Engineer

• Thorough understanding of IT policies and standards and IT policy lifecycle management process
• Application security experience performing code/peer reviews
• Experience with performing audits, security, vulnerability, penetration tests, assessments and evaluations
• Experience with WebInspect, Qualys, Retina, Nessus
• Strong problem solving, decision-making, reporting, communication and management skills
• Knowledge of the products, policies, operations and procedures related to Compliance and Security
• Strong planning, implementation and negotiation skills, effective interpersonal communication skills
• Extensive knowledge of federal, state , local laws and Privacy regulations PCI, NIST
• Knowledge of the products, policies, operations and procedures related to Privacy
• Strong organization, analytical and project management skills, research and writing skills

Confidential

Global Information Systems, IT Security Analyst

• Acts as the primary liaison between stakeholders and technical teams to identify, analyze and translate security policy into solutions that enforce policy and mitigate risks.
• Collaborates with external vendors on specific design projects and product acquisitions for DDoS initiatives.
• Evaluates firewall logs in order to determine rule usage. Submits econnect for firewall rule change.
• Works with team to design and test Prolexic and Arbor detection and mitigation solutions.
• Works with team to design and deploy NAC/802.1X solutions in the banking centers.
• Worked with network enclave team on high level design of virtual desktop environment.
• Works with the governance team on design and certification of technology solutions.
• Works with Project Management staff and leadership to create, maintain and update required management reports on the status of current projects, product initiatives, and development issues.
• Collaborates and communicates with other business analysts and leaders to coordinate cross project initiatives and activities.
• Works with project managers, other business analysts, development resources, and quality assurance team members throughout the systems development lifecycle and assist a project from start to final implementation.
• Recommends preventive, mitigating, and compensating controls to ensure the appropriate level of protection and adherence to the goals of the overall information security strategy.
• Assisted in the development of access-controls, separation of duties, and roles.
• Assists in incident response and recommend corrective actions.
• Communicates with personnel about potential threats to the work environment.
• Participates in forensic recovery, analysis and development and maintenance of global information security policy.
• Assists with designing security infrastructure, including IPS, IDS, log management, and vulnerability assessment systems.
• Assess threats, risks, and vulnerabilities from emerging security issues.
• Assists with drafting enterprise security standards and guidelines for system configuration.
• Participates as part of the security incident response team.
• Assists with the creation of procedures for system security audits, penetration-tests, and vulnerability assessments.

Confidential

Senior Customer Support Engineer

• Provides reactive and proactive assistance to customers, partners and field engineers via phone, email, and web-based support tools
• Understands and troubleshoot customer questions and problems regarding the use of the RedSeal system as it integrates in to their environments.
• Has working knowledge of network devices imported into the Redseal system to show security posture. Device integration includes Aruba controllers and AP, Check Point Smart Center and Provider 1, Cisco Nexus / IOS / ASA / PIX / FWSM, Citrix Netscaler, F5 Big Ip/ EM, Fortinet, Juniper Junos / Netscreen, McAfee, Qualys
• Guides customers through problem resolutions and to more effective understanding of the RedSeal system
• Reviews and prioritize open cases on a daily basis, also perform engineering escalations when required
• Leverages customer and product interactions to enhance the product, documentation, training, and related resources
• Communicates with the customer to understand their network and security architecture, infrastructure and operational environment
• Communicates with the customer to understand their network security objectives
• Defines practical plan for integrating RedSeal into a customer environment to meet their specific objectives
• Assists customer towards realization of the effectively integrated system
• Hands-on leadership to resolution of technical/integration problems
• Provides accurate, complete and timely written documentation for all project phases

Confidential

Sr. Security Engineer

• Check server and firewall logs, scrutinizing network traffic, establishing and updating virus scans, and troubleshooting.
• Administers and maintains Cisco 5500 series ASA firewalls including rule updates as well as remote and site to site VPN access.
• Analyze and resolve security breaches and vulnerability issues in a timely and accurate fashion, and conduct user activity audits where required. Conduct penetration testing.
• Works with a team that develops, implements, maintains, and oversees enforcement of policies, procedures and associated plans for system security administration and user system access based on industry-standard best practices.
• Works with a team that design and implement disaster recovery plan for operating systems, databases, networks, servers, and software applications.
• Assess need for any security reconfigurations minor or significant and execute them if required.
• Keep current with emerging security alerts and issues.
• Interact and negotiate with vendors, outsourcers, and contractors to obtain protection services and products.
• Works with customers, peers, other support teams on coordination of change windows and other project related activity, providing leadership, and teaming within the dept.
• Recommends, schedules, and performs security improvements, upgrades, and/or purchases.
• Deploys, manages and maintains all security systems and their corresponding or associated software, including firewalls, intrusion detection systems, and anti-virus software.
• Participates in the planning and design of enterprise security architecture and in the creation of enterprise security documents and policies.
• Maintains up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
• Determines ways to improve overall enterprise security.
• Self motivated, self directed, reliable, and have excellent communication skills.

Confidential

Network assessment Engineer

• Performs analysis of customer environments to determine causes of faults or degradations.
• Performs analysis for capacity planning purposes as well as make recommendations for improvement.
• Installs the Riverbed suite of tools for data collection in order to perform network analysis.
• Performs IOS and Firewall rule audits to ensure that best practices are adhered to in order to ensure optimal network performance.
• Provides detailed reports and makes presentations to senior level management with findings and recommendations.
• Coordinates projects with resources from several different organizations located in varying geographic locations.
• Provides guidance and high level designs for improvements and enhancements to network technologies.
• Provides guidance for design of wireless networks using various vendor products.
• Provides network analysis to determine the complexity of wireless / network designs to include but not limited to customer interviews, diagram reviews, and application assessments.

Confidential

Sr. LAN / WAN Engineer

• Provide leadership and guidance to junior engineers.
• Provide technical direction to meet Network Infrastructure Operational Service Levels.
• Design, install, configure, upgrade, test, and support government Network Datacenter.
• Lead Network projects as approved by or as determined by business needs.
• Evaluate emerging network technologies and recommend network enhancements.
• Make network design recommendations that support network architecture initiatives.
• Participate in change management procedures pertaining to the network.
• Support maintenance of network performance exceeding the contract Service Level Agreements.
• Support maintenance of the network in accordance with established policy and procedures.
• Support and enforce established policy and procedures governing work methods and performance.
• Develop and maintain a strong working knowledge of the hardware and software deployed in the C4S network including C4S architecture and designs elements.
• Perform other duties as directed by the Infrastructure Manager to support the SIPR / NIPR government networks.
• Familiar with DOD JITC, ATO. IA procedures
• IT support for the customer, providing technical guidance as well as troubleshooting to a degree required to isolate malfunctions to a specific Hardware, Software, IOS , installation, removal, and replacement of defective hardware components, IOS and equipment, installation and configuration of LAN WAN switches, routers.
• Monitors CiscoWorks and SolarWinds Orion to ensure network availability, perform network assessments for capacity planning, configuration management, and change control.
• Provides server support and to isolate problem to a network or server issue.
• Provides 3nd level support to junior level LAN WAN Engineer for PC operating systems and the end user's desktop applications.
• Provides technical assistance to remote end technical personnel on the cabling configuration and switch-port connections.
• Updates procedural documentation as required to support the core and all remote sites.
• Implements Life Cycle Replacement of switches and routers including racking and cabling.
• Insures documentation is present to support work performed.
• Maintain Inventories on all systems on all sites.
• Tracks support requests through the Remedy system while keeping an Inventory database updated with current network devices.
• Updates, repairs and coordinates warranty work for switches and, routers.
• Provides on the spot assistance and training as required.
• Works independently with limited or no instruction but follow direction when needed to meeting operational readiness deadlines, IAVA updates and SOPs.

Confidential

Wireless / Network Engineer

• Part of a team that is responsible for implementing the largest Aruba wireless mesh network in the world.
• Implements and troubleshoots network and wireless gear to include Cisco 3800 routers in high availability mode. Cisco 2900 and 3500 series switches. Installing and configuring Fortigate devices.
• Install and configure Aruba Controllers, wireless devices, and antennas for the wireless mesh topology in order to provide access to clients, provide mesh redundancy, and back haul support.
• Installs and configures Comtech modems for satellite communications.
• Configure and Use ASC Signal terminal to perform peak / pol on 3.8 meter dish. Also perform maintenance and adjustments to make sure dish follows bird in the box.
• Performs RF surveys using Air magnet tools to troubleshoot issues to include interference from APs in our network as well as interference from other sources.
• Climbs towers to point antennas for point to point communications for the backhaul communications.
• Provides help desk services using Microsoft Active Directory to authenticate users.
• Construct towers and rigs in order to be able to mount antennas.

Confidential

AO Supervisor / IP Field Specialist

• Deputy area lead responsible for supervising 20 specialists in hazardous duty region on LOGCAP IV.
• Reports directly to Area Operations lead Supervisor in southern Afghanistan.
• Schedules and directs meetings to discuss team projects and deployment schedules.
• Performs weekly performance reviews recommending staff promotions.
• Performs site visits to ensure employees maintain a high level of moral auditing conditions.
• Research and drafts policies for resource usage based on limited capacity.
• Creates and maintains network topologies with Microsoft Visio to display present design as well as future recommendations.
• Works with and mentors specialists empowering them to provide excellent customer service.
• Works with our in country Regional Manager and international NOC to help install and trouble shoot network related problems, down to the desktop PC's and VOIP phones.
• Installs, configure and maintain Cisco 2800 routers and Catalyst 2960 switches.
• Installs, configure and maintain Cisco 1300 Bridges for encrypted point to multipoint and client communications.
• Configures and troubleshoots iDirect 5000 and Paradise PD 25 modems.
• Builds and points 2.4 and 3.8 meter dishes.
• Monitors network using Solarwinds tools to provide traffic analysis for future capacity needs.
• Utilized Wireshark to analyze packets in order to perform network analysis.
• Creates and responds to customer requests using the CA Unicenter Service Desk ticketing system.
• Provides remote support to specialist and customers in our area of operations.
• Install, operate, and maintain satellite communication systems including peak and pole using the iSite software for the iDirect satellite modem.
• Provides network administration functions on a daily basis.
• Maintains inventories for site equipment to include test equipment.
• Occasionally climbs on tower not exceeding 10 meters.
• Ensures site cleanliness and serviceability of all support equipment.

Confidential

Sr. Network Consultant

• Managed all phases of the project including preliminary scope statement construction, scope planning and definition
• Directed and managed project execution, monitored and controlled all project work
• Worked with the sales team to drive business development focused on wireless networking and mobile, infrastructure and security solutions.
• Provided consulting services to sales team and developed competitive SOWs for bidding projects.
• Provided Qualys scanning and reporting as well as performed fishing exercises for consulting clients.
• Used Retina and Nessus for network enumeration and vulnerability scans.
• Configured Cisco ASA devices for remote and site-to-site VPN access.
• Configured Juniper SSG /SRX series firewalls for remote and site-to-site VPN access.
• Configured Juniper SA SSL VPN devices for remote VPN access, and Juniper EX series Switches.
• Configured Watchguard X peak, X core, X edge and X wireless devices in HA for point to point communications in over 200 sites for VPN upgrade project
• Configured Cisco Catalyst series switches and routers.
• Worked with a team to ensure the proper design of complete end-to-end solutions.
• Worked with equipment vendors, perform evaluation of sites and equipment and make recommendations.
• Evaluated existing networks for inefficiencies, develop and manage implementation of network changes and additions.
• Perform ongoing security risk analysis and assessments to identify threats and vulnerabilities.
• Perform quarterly firewall security risk analysis and assessments to identify threats and vulnerabilities.
• Performing security audits against client infrastructure and documenting results.
• Perform ongoing connectivity and end to end network and platforms security risk analysis and assessments to identify threats and vulnerabilities.
• Recommend security countermeasures to mitigate risk.

Confidential

Sr. Network Consultant

• Worked with the sales team to drive business development focused on wireless networking and mobile solutions.
• Worked to design and build wireless networks and assist in documentation for proposals, statements of work, and delivery documentation.
• Worked with a team to ensure the proper design of complete end-to-end solutions.
• Performed Site Surveys using AirMagnet suite of tools, NetStumbler and Cognio spectrum analyzer.
• Prepared Site Survey, Installation Certification documents.
• Worked with wireless equipment vendors, perform evaluation of sites and equipment and make recommendations.
• Evaluated existing networks for inefficiencies, develop and manage implementation of network changes and additions.
• Used extensive network troubleshooting and resolution skills to isolate, resolve and prevent network outages.
• Experience in the design of wireless networks and incorporation of mobile solutions.
• Experience performing wireless site surveys for wireless LANs indoor outdoor .
• Understanding of mobile computers such as Symbol and Intermec Handheld bar code readers.
• Understanding of new technologies such as 802.11i, 802.16 a , and RFID.
• Possess expert knowledge and experience in 802.11 wireless networking a,b,g,n 802.1x Cisco ASA, Steel Belted Radius , 802.11i, EAP, TTLS, TKIP, Radius, TCP/IP, radio frequency communication principals, war driving/walking, TCP/IP, network routing and switching, and network engineering.
• Performed ongoing application security risk analysis and assessments to identify threats and vulnerabilities.
• Managed project timelines for multiples client engagements.
• Performed quarterly firewall security risk analysis and assessments to identify threats and vulnerabilities.
• Performed security audits against client infrastructure and documenting results.
• Recommend security countermeasures to mitigate risk.

Confidential

Staff Network Engineer

• Responsible for setup and configuration and upgrade of Catalyst 6513 and 6509 Switches with Supervisor II MSFC 2, Supervisor 720 MSFC 3, and 10/100/1000 48 port card.
• Responsible for conversion of Cisco Catalyst 6500 and 3500 switch from hybrid to native mode operation.
• Worked with team to perform survey of site for USARC Data Center to include network design and implementation, power, cooling, cabling, security, and fire suppression.
• Built and configured Cisco Works 2000 server with the LAN Management Solution.
• Responsible for switch configuration to include creating and configuring VLANS / Trunks / OSPF / HSRP
• Tier 3 after hours network support responsible for 12 Catalyst 6500 switches in our production Data Center. 12 in our test network and several Catalyst 3500 switched in wiring closets.
• Tier 2 after hours server support for 300 Dell 1750, 2650, 6500 series servers using CA Unicenter NSM.
• Administered Windows 2003 Enterprise consisting of 50,000 users. Resolving email, user account, DNS and Active Directory issues using the CA Unicenter ticketing system.
• Aided primary with configuration, maintenance and management of F5 load balancers.
• Responsible for patching servers in Data Center and cable management.
• Configured servers for deployment and documented procedures for SOP's

Confidential

Network Engineer / LAN Manager

• Administration of 300-user environment in home site and 13 satellite offices consisting of 30 servers and 200 workstations / laptops.
• Administration of Microsoft 2000 / 2003 servers of multiple domain Active Directory networks running various services.
• Microsoft Exchange 2000 / SQL Server 2000 administration.
• Remote administration using Microsoft Remote Desktop, Microsoft Terminal Services and Dameware.
• Troubleshoot internal network VPN, RAS, DHCP, DNS, WINS, and Frame Relay connection problems.
• Monitored backups to ensure recoverability of critical databases and servers.
• Configured, installed and maintained Cisco 2600 and MC 3810 access routers / Cisco Catalyst 3500 switches.
• Maintained Cisco PIX Firewall Ver.6.3 2 using CLI and PDM.
• Monitored network security which includes patch management and updates to servers and network equipment.
• Performed external security scans using Retina and Solar Winds security scanning software.
• Researched software and hardware for purchase recommendations.
• Tracked work progress in Track-IT software database.