OBJECTIVE:

Professional Network, firewall and architectural Engineer looking for an interesting and challenging new role. Ideal position offers the ability to use over 22 years professional experience as a network engineer to build and support mission - critical data, security and voice networks.

TECHNICAL SKILLS:

Hardware: Juniper Firewalls, Confidential switches, Palo Alto Firewalls, IP Turrets, Cisco IP telephony, Cisco IP phones, Avaya IP Phones, Cisco MSFC SUP1 2 cards, SUP720 cards, Nokia firewalls, DWDMs OCI & OCLD cards, IBM Blade Servers, Juniper NetScreen firewalls, Nokia Firewalls, F5 Big - IP LTM/GTM load balancers Ethernet gigabit SFPs, GBICs, Cisco MGX8850, Stratacom IGX,Nortel Optera traffic analyzers, Catalyst, Arista 7050 Series, Arista DCS-7124SX-F 8540, Catalyst 6500 switches, 3com 2500 &4007 switches., Frame Relay, ISDN, Cisco Routers 3k, 4k, 6k platforms, SUP720/32, SUP6E/6LE/7E/7LE/8E.ATM Switches (OC 3, 12 48), DS3Datacom modem, Netscouts and Gigamons, Cisco WAAS, Riverbeds

Software: Cisco QoS, Cisco CallManager 4.0, Cisco IOS, Net screen Security Manager (NSM), NiksunCheckpoint firewalls, Cisco Wan Manager 10.4, CiscoWorks 2000(CWSI), HP OpenView (NNM), Spectrograph, Netscout Manager for Frame Relay DLCI utilization, strataviewLancentry Analyzer v4.2.1.

PROFESSIONAL EXPERIENCE:

Confidential, New Jersey/New York

Sr. Network Security Architect

Responsibilities:

• Design, architecture and implementation of multiple extranets connectivity in low latency Datacenters.
• Experience designing global DMZ architectures across Tier 2,3 and 4 datacenters.
• Experience designing and implementing load balancing solutions for large enterprises F5 Big - IP LTM and GTM load balancing concepts including pools, VIPs, SNAT and iRule development.
• Good knowledge of load balancing strategies/techniques, expertise in application switching/traffic management, knowledge of persistence and SSL profiles
• Complete understanding of basic and advance F5 load balancer configurations, including migrating configurations and general troubleshooting of the F5 load balancers.
• Networking Experience including configuring Cisco, Arista, Juniper Networks switch including 10/40/100Gb. Experience designing and configuring Arista and Cisco Switches and Routers, review technical requirements for deployment
• Responsible for designing, installing, maintaining and troubleshooting integrated to CISCO routers, CAT6K switches, Juniper and Palo Alto firewalls.
• Conducting investigations on any system failures and implementing programs to prevent re-occurrence relating to Cisco switches, routers, firewalls, DMZs, and servers in coordination with vendors.
• Coordinating with various business departments and liaising/negotiating with vendors pertaining to pricing, deadlines and timely supply of network and security products.
• Architect infrastructure to accommodate installation of new firewalls with redundant ISP connection.
• Strong technical, analytical, and organizational skills associated with planning, design and implementation of complicated service provider architectures and applications
• Strong written and interpersonal skills and the ability to communicate complex topics to non-technical teams.
• Strong knowledge of Internet architectures, IP/MPLS, optical transport, metro Ethernet, and wireless (WiFi, point-to-multipoint, point-to-point, etc)
• Strong knowledge of Cisco routing (ISR 4000 series, ASR 1000 series), switching IOS XE and NxOS (Nexus 3000, 5000, 7000 and 9000 platforms) Highly Desirable Cisco ACI,
• Experience working in a lab environment developing and performing test plans.
• Expert understanding of EIGRP, BGP, OSPF, MPLS, ATM, VPN, Ethernet, DSL, GetVPN, QoS, COS, SNMP, VoIP, SIP, VLANS, Subnetting, Supernetting, Trunking, Virtual Networking, Unified Communications, PKI and Network Monitoring, Analytics and Security.

Confidential , New York, NY

Sr. Network/Firewall Architect

Responsibilities:

• Network architecture, Data Center design, engineering, and implementation including: DMZ, VLANs, firewall zoning, VoIP, wireless LAN & WAN, B2B connectivity.
• Architect and Design Engineer for Confidential Trader Voice Unigy deployments in all Data Centers and also migrating from Alliance to Unigy platform.
• Extensive knowledge of Routing protocols and platforms BGP, OSPF, RIP, MP-BGP, MPLS, L2-VPN's, Multicast (PIM SM/DM/SSM) ASR1K.
• Trader Voice designed and architecture of NICE Trading Recording (NTR), Core and Satellite Servers and implementing network access-list (ACLs) to support recordings from trading environment and all major recording interfaces, such as E1 and IP for PBX platforms like Avaya and Cisco
• Architecture and engineering enterprise premium voice solution installing IPC IQ/MAX Turrets, Nice Recording, Speaker Bus private lines as well as hoot systems. Additionally, hands-on experience in call control, IP routing, network ACLs and experience with IPC turrets Alliance and MX, Speaker bus, Nice Voice Recorders.
• Design and architect complex networking environments including routing, switching, vlans, firewalls, and other security technologies.
• Extensive knowledge of Switching concepts, platforms Spanning-tree protocol (RSTP, PVSTP+, 802.1q trunking), CEF, ARP, DHCP snooping, TCAM, Dynamic ARP inspection, IGMPv2/3, 3k, 4k, 6k platforms, SUP720/32, SUP6E/6LE/7E/7LE/8.
• Wide Area Application Services (WAAS) Cisco/Riverbed implementations, WCCP, ICA.
• Analyze technical needs, requirements, and state of the network’s infrastructure design, integration, and operations.
• Wireless Familiarity with Cisco, Aruba hardware and design concepts.
• Solid understanding of WAN/LANs, network operating systems, enterprise architectures, routing and transport protocols and information security Implementation plans for all LAN, WAN, voice and external network connections - including organizing vendors and users, network drawings and scheduling.
• Experience implementing and managing Cisco powered networks, including QOS, IBGP and BGP.
• Experience in designing, developing, configuring, and implementing enterprise networks with diverse solutions from multiple vendors.

Confidential, New York, NY

Senior Network &Firewall Implementation Engineer

Responsibilities:

• Designed and configured Confidential 7K’s, 5K’s and 2K’s data centre switching platforms including the 2148T series fabric extenders. Also installed Nexus 7K core switches and Nexus 5K and 2248 server access switches. Configured 7010’s with multiple distribution VDC’s running EIGRP for route propagation.
• Deployed Avaya VoIP enabled PBX equipment running on a Cisco IP network. In addition, rolled out IP Telephony and QOS throughout the network to support VOIP and Video applications on various Cisco PoE switches.
• Designed and built a fast-paced environment, supporting a low-latency trading management platform for high-frequency trading. Also deployed multicast technologies and feeds from major exchanges like Nasdaq, SFTI, BATS and Direct Edge along with normalized feeds for low-latency trading applications
• Provide senior level engineering support, administration, design, configuration and implementation for firm's network technologies including but not limited to WAN, LAN, Wireless, Firewall, MPLS, and VPN.
• Monitor activities and implement firm's network security procedures to protect the efficiency, accuracy, productivity and integrity of data used and maintained on the firm's network.
• Evaluate emerging technology to judge functionality and benefits to prepare recommendations to IT management concerning network enhancements, improvements or upgrade.
• Create and maintain adequate technical guidelines and procedural records to maintain document the WAN, LAN, Firewall, wireless, VPN and MPLS environment and operation; including routing schemas and configurations, network diagrams, inventory lists, backup and failover plans for the WAN and IS continuity, security protocols and non-standard use configurations.
• Provide technical, procedural and managerial support to all areas of IT staff to ensure proper integration of systems' functions with WAN, LAN, firewall, MPLS and wireless operation.
• Coordinate with ISP and WAN vendors to facilitate network design, enhancements, new implementations and problem resolution.
• Participate in firm-wide IT projects including committees, work groups, and other organizing, planning and deployment efforts.
• Collect, analyze and report on operational and performance data for use in maintenance, tuning and planning for future network enhancements or other systems upgrades/migrations and/or as management tools.
• Assist firm management and IT managers in providing network design options, budgetary planning, hardware specifications, maintaining accurate records of network requirements, systems maintenance schedules, leased line costs, and IT-related expenditures.
• Designed and built NetScreen Firewalls clusters for third party network connections.
• Designed and migrated a number of third party market data applications from Nokia firewalls to Juniper NetScreen firewalls.
• Configuring IP multicast routing such as enabling PIM on an interface, RP and also in dense mode, sparse mode, or sparse-dense mode. Also configured IP multicast static routes (mroutes) allow you to have multicast paths diverge from the unicast paths.
• Experience designing and setting up VLANS, configuring HSRP in LAN/WAN technology with Cisco routers, VLAN extension projects, local area mobility projects and provision of IBM blade servers technology.
• Configured and Implemented RIP, OSPF, EIGRP, Multicast cgmp, igmp and other routing protocols on all domestic and backbone Routers and switches respectively.
• Designed and provisioning of VOIP interface between the PBX and the IP network such as the PBX as a standard T1/E1 trunk.
• Designed and implemented VOIP on standard router platforms - Cisco 3600 / 2600 with Codec (coder-decoder) in the gateway. The G.729 to compresses the signals to 8K or 24K on the wires.
• Configured VOIP Peer - Used for handling connections to the IP network & POTS Peer - Used for handling connections to the E1/T1 trunks.
• Used my specialties and strong diverse background in LAN/WAN architecture to design networks including implementation, configuration and troubleshooting CISCO routers as well as catalyst switches 4006,5000, 5500, 6500, 8540,Cisco 3640,Cisco 7206 Routers and other series Routers and switches.
• Configuration and of deployment of OSPF (OSPF Areas, Area Border Routers, Designated Routers, Link State Database Analysis, Virtual Links, metric assignment), BGP (the need for BGP, Autonomous Systems, traffic redistribution, route aggregation, CIDR, EBGP vs. IBGP), and OSPF-BGP interactions.
• Designed Gigabit Ethernet network to replace 10baseT network, with an emphasis of Layer 3 switching at the core and routing at the border. Network: experience with configuring and troubleshooting many different types of CSU/DSU and locating points of failure in a global network. Familiar with T1 theory and have hands-on trouble-shooting experience with ATM, frame-relay and point-to-point WAN connections, as well as LAN and VLAN/trunking protocols
• Built and installed Nokia IP440/IP650 Firewalls installing Checkpoint and SSH packages and adding firewall policies and rules on Firewall Management servers for third party market data services.
• Designed, configured and deployment of NetScreen firewall for disaster recovery and data centers: configuration including direct (console/web interface), installing rules/policies, and setting up trust/untrust port modes including NAT
• Designed, built and configured Cisco Catalyst switches as Core, Distribution and Access switches over Gigabit Ethernet and Dark Fiber.
• Used Net scout manager to troubleshoot Network traffic including Frame Relay dlci branch offices as well as capturing traffic and decoding packets on 3com probe analyzers.
• Configured and implemented routing protocols in branch offices routers and over Frame Relay, T1 and DS3 network and worked with line carriers (TELCO) to troubleshoot serial circuits of routers
• Maintained and used Cisco Resource Manager/Cisco Works 2000 for all Router backups/configuration as TFTP server, SNMP alarming tool and as a Syslog server.
• Maintained and used NetID and QIP to split up subnets and make DNS entries.
• Deployed (dense wavelength division multiplexing) DWDM technology to metropolitan area and, eventually, in the access networks using hybrid architectures of fiber and coaxial media to increase the capacity of fiber routes and switching technique for reconfiguring channels. Also provided gigabit fiber channel connectivity via OCI cards for SAN connectivity.
• Upgraded a Cisco CallManager Publisher to version 4.0 and add CallManager Subscribers to form a cluster for redundancy. Added Cisco IP phones 7905, 7920, 7960 using the Bulk Administration Tool and add Softphone to the configuration.
• Added media resources to share with CallManagers in a cluster and configured MGCP, H.323, SIP, and T1 gateways to the network. Created a dial plan to make calls intra- and inter-pod over inter-cluster trunks (gatekeeper, non-gatekeeper, and SIP controlled), and public switched telephone network (PSTN).
• Added users to Cisco CallManager, connected to voice mail, and configure MLPP EXPAND MLPP with Annunciator and verified Cisco Emergency Responder and update the dial plan for emergency E-911 calls.

Confidential , NJ

Senior Network & Systems Engineer

Responsibilities:

• Configured and Implemented RIP, OSPF, Multicast cgmp, igmp and other routing protocols on all domestic and backbone Routers and switches respectively.
• Configured and maintained SUN Solaris UNIX boxes that had all network management tools running.
• Installed and configured Cisco Works 2000 and Cisco Wan Manager servers.
• Designed, built and implemented Cisco Routers and Route Switch Modules in conjunction with catalyst Switches that were migrated into Ethernet and Fast Ethernet Environments.
• Currently responsible for implementing and alarming all Routers and Switches in HP Open view NNM 5.0 to 6.10 for the Data NOCC and support of all management stations.
• Responsible for implementing the Cisco WAN Manager 10.4 and alarming and troubleshooting all Cisco MGX/IGX switches and trunk circuits.
• Support and implementation of CiscoWorks2000 3.x, NMS on Sun Solaris 2.7, to utilize Resource Manager, Campus Manager, Content Flow Manager, Device Fault Manager, Traffic Director and ACL Manager to manager Cisco Routers and Switches and Assist the NOCC personnel in adding MIB’s for new elements/Servers.
• Responsible for IOS upgrade on RSM flashcards, RSP flash cards, boot registers configuration settings and maintenance of general IOS functions.
• Assist the Data NOCC in day-to-day troubleshooting of ATM, Frame Relay, T1 and DS3 circuits for critical and lost connectivity of Cisco and Nortel Routers.

Confidential, Somerset, NJ

Senior Network Design Engineer

Responsibilities:

• Architect and designed LAN/WAN including designed technologies such as ATM, FRAME RELAY, ISDN as well as using routing protocols such as OSPF, BGP, RIP2 and EIGRP on CISCO/BAY ROUTERS.
• Used Net view and Optivity HP Open View (expanded) to monitor and trouble shoot all Chase remote Bay routers, switches and Synoptic hubs.
• Troubleshoot all remote Cisco routers (7000, 4000 & 2501 series), enabling interfaces and routing protocols as well as checking for all interface errors affecting local segments.
• Used the sniffer to monitor and trouble shoot all Chase remote routers and servers.
• Used Site manager to make dynamic configuration changes on all Bay routers. Checked configurations on router circuits and ATM backbone configurations and all circuit stats.
• Had access into all catalyst switches to trouble shoot all affected local segments.

Confidential, New York, NY

LAN/WAN Specialist

Responsibilities:

• Used UNIX HP Open View to tftp router configs as well as upgrade router configs on Bay routers (Advanced Remote Nodes, Access Stack Nodes, Access Nodes and Backbone Concentrator Nodes) and Cisco 1600,2501,4000 and 7000 series for all customers.
• Monitor and check configurations of bay routers and Cisco routers on a Frame Relay and ISDN Circuits.
• Used Site Manager to change LAN & WAN configurations on the routers.
• Upgraded images on the routers and also trouble shoot with and network general sniffers to capture and analyze traffic on the network.

Confidential, Brooklyn, NY

LAN/WAN Specialist

Responsibilities:

• Installed DSS sniffer servers on all segments and monitored all servers from the sniffer console to capture both IP, IPX packet on various segments. Also analyzed all traffic on the entire network as well as protocol headers.
• Configured and tftp configurations from HP OpenView to Access Nodes (AN), Advanced Remote Nodes (ARN) and Backbone Concentrator Nodes (BCN) routers as well as checked configurations all interfaces on the entire network.
• Used Optivity running on HP-UX to troubleshoot all segments including bay network remote and local BCN (Backbone Concentrator Nodes) routers.
• Setup and configured GDC spectracomm station running on HP-UX to troubleshoot and Monitor GDC CSU/DSU T1 modem connections at both local and remote sites.
• Monitored and used concord network health check for LAN, WAN bandwidth and utilization as well as checking all NDS trees and Netware file servers (Context and logins) using Bindview Enterprise utility.
• Used Site manager to check configurations on router circuits and ATM backbone configurations. Also used the C A Unicenter to view the entire LAN/WAN network and troubleshoot all network segments.
• Troubleshooting of networks with the Fluke/Lanmeter to check for connectivity and IP/IPX traffic.
• Installed and configured synoptic concentrators and Network management modules for different LAN/WAN Segments.
• Administered all Solaris and SunOS UNIX servers and gave file permissions to groups.
• Maintained, mounted and Unmounted all file system on the Unix application servers.
• Performed Network Administration functions such as upgrading overly congested Ethernet through hardware, software, and re-designing the network infrastructure.
• Image and memory upgrade of all remote Access stack nodes and Access Nodes routers with 12.01 image.

Confidential, Whippany, NJ

Network Administrator/NT/UNIX

Responsibilities:

• Provided UNIX/Solaris system administration Network (TCP/IP, Async and front end support)
• Implemented file backup system to backup and restore the different desktops in client/server environment
• Changed file permissions, transfer of files, creating job list with cron utility and UNIX Vi editor.
• Performed addition of new disk drive, mounting and unmounting of file system. Restoring file systems and understanding system initialization scripts init daemons and backing-up. Also handled system crashes and scheduling maintenance programs through Crontab files.
• Configured Autofs, automounter and all related files.
• Responsible for all remote access accounts and configurations to the server.
• Administered NT web and proxy servers and also installed and configured NT workstations and servers.
• Diagnosing network problems, setting up and maintaining both NIS and NFS servers and client problems.

Confidential, Edison, NJ

Systems Engineer

Responsibilities:

• Monitoring Systems & Users, via token ring network.
• Responsible for running Batch production and monitoring networks.
• Rebooted and responsible for four Windows NT servers and three OS2 Warp servers.
• Provide technical intervention with programming as well as second level support when needed.
• Also involved in setting up and running new applications under OS/2 Warp.
• Monitored an NT routing PC with an OS/2 working station.
• Responsible for user ids and connecting user to the (GISO server) automated Work Distributor (AWD)
• Responsible for access of users to fax servers and print servers
• Scheduled and monitored task that will update Prudential Investment account database (PIADB)

Confidential, Bedminster, NJ

LAN/WAN Engineer

Responsibilities:

• Established connectivity between routers using Frame Relay on the WAN and enabling Frame relay on the serial Interface as well as configuring over both IP and IPX protocols.
• Configured router processor (RP) cards for production CISCO 7000 routers
• Used the system Configuration Dialog “ setup” to create an initial configuration for the router, which includes hostname, password and IP addresses of the interfaces.
• Changed configuration and boot roms to match new router software.
• Format flash cards and configured to boot from flash on CISCO 7010 series
• Turned on IP routing, dynamic routing as well as check static routes. Also configured traffic filters using standard IP access list.
• Able to turn on both IP and IPX globally as well as enable apple talk globally.
• Launched TFTP software on a workstation and configured the incoming directory to c:\configs as well as copy the startup configuration file from the router to the TFTP server.
• Use sniffer check for network signals and trace individual port address to comm room.
• Used Site Manager SNMP based tools to check and update configurations on the router interfaces as well as protocols.
• Troubleshoot and resolved LAN & WAN network environment.
• Responsible for the documentation of Network Design using Visio.