SUMMARY:

I have more than 16 years of experience in Network and Security Network Engineering while working on various government and corporate networks. I am enthusiastic about technology and look forward to providing support and guidance for a network that will yield a high return on investment.

PROFESSIONAL EXPERIENCE:

Confidential

Security Technical Analyst

• Global Recognition Silver Award recipient for excellent customer service.
• Global Recognition eCard recipient for excellent customer service.
• Numerous mentions from customers for great work.
• Engineered solutions for load balancing requirements
• Maintain near perfect percentage of tickets closed within SLA.
• Provided consultation of engineered solutions for firewall requirements
• Performed troubleshooting of Symantec Bluecoat Proxy Server troubleshooting.
• Used administrative tools such as Splunk, wireshark, syslog and understanding of TCP/IP protocol as well as command line functions to test and troubleshoot issues.
• Experience with modern ITIL operations methodologies

Confidential

Security Technical Analyst

• Responsible for reducing ticket queue by 25% through management of vendors and troubleshooting of devices as Checkpoint and Juniper Firewall SME.
• F5 Load Balancer analysis and troubleshooting on both GTM and LTM devices for security operations in a break fix environment.
• Blue Coat Proxy Server troubleshooting and ticket closure in an environment responsible for implementing complicated policies for the Confidential network.
• Use of Splunk application for ticket management.
• Juniper SRX Firewall Troubleshooting and management
• Checkpoint Firewall Troubleshooting and management. Eliminated chronic issues related to management of devices in the first month of assignment.
• Fortinet Fortigate firewall troubleshooting and analysis.
• AAA Analysis troubleshooting for BYO devices.
• Use of Remedy application for ticket management and statement of record for work conducted during incident management.

Confidential

Security Architect / Consultant

• Cisco ASA Firewall Vulnerability Assessment, Health Check and Penetration testing.
• Juniper SRX vulnerability Assessment and health checks
• Checkpoint Gaia vulnerability assessments and health checks
• Fortinet Fortigate firewall.
• Palo alto vulnerability assessments and health checks
• Security Auditing
• Security Team oriented remediation

Confidential, New York

Firewall Engineer/Security Consultant

• Assigned to team to administrate security stack
• Palo Alto Firewall and Tipping Point administration
• Firewall Policy Optimization
• Palo Alto policy implementation
• Troubleshooting and remediation
• Remedy Ticketing System operation for ticket management administration and engineering
• Used Splunk to search logs

Confidential, Tulsa, OK

Firewall Engineer/Security Consultant

• Confidential was chosen to assist Confidential disaster recovery and business continuity initiative. Goals included the assessment of the network, documentation of findings, and implementation of rule changes identified to resolve the findings discovered in the assessment.
• A Team of 6 members was assembled to address an international network of 1700+ employees, 20 firewalls, multiple servers and domains of Rovi and its acquisitions.
• The Vulnerability Assessment for the firewalls was conducted by me and another team member and included an extensive assessment using different tools such as Nipper studio and Solar Winds Firewall Security Manager.
• After the assessment was completed a compilation and verification of the findings was necessary to facilitate implementation of the changes required to bring the firewalls current. This required an expert level of knowledge for the Cisco ASA.
• Estimated Project budget was $100,000.
• Scans performed with Nipper and Solar winds utilities.

Confidential, Lanham, MD

Security Engineer

• Confidential need an initial security evaluation of their network after being awarded a contract with the United States Department of Health and Human Services.
• An initial security evaluation was performed that included a scanning of all of the network resources including the Servers, Firewalls, Routers and switches.
• The findings were documented and a report submitted. I was responsible for all of the work performed.
• Vulnerability assessment performed with Nessus and Retina utilities.

Confidential, Orlando, FL

Web Developer and Network Security Engineer

• A PHD Psychologist created a startup to provide mental health services for children in his local community. I was asked to provide the infrastructure to allow him to focus on running his business while the IT infrastructure was created.
• Developed Website and application to record confidential Patient information using (HTML, CSS, PHP, JavaScript, Gimp, Inkscape)
• Built secure HIIPAA compliant CentOS distro web server
• Conducted firewall assessment and rule set implementation
• Built secure Postfix Mail Server

Confidential, Washington, DC

Firewall Engineer

• Conducted Firewall Engineering and maintenance for the District of Columbia.
• Implemented firewall rule - set modifications as received from tickets in Remedy system
• Provided augmentation of existing network configuration to accommodate growth
• Created Perl and Bash scripts for automation of administrative tasks.
• Created Perl and Bash scripts to assist team in completion of scheduled projects.
• Conducted changes on Cisco ASA and Checkpoint Firewall devices.
• Daily Palo Alto Firewall administration and configuration on PAN 5.0 and Pan 6.0
• Checkpoint R7.6 administration and troubleshooting
• Used Cisco ASDM and CDM to manage 20+ firewalls

Confidential . Richmond, VA

Network & Security Engineer

• Created VPN connections with Federal Reserve business partners.
• Implemented firewall rule-set modifications as received from tickets in Remedy system
• Provided augmentation of existing network configuration to accommodate growth
• Implemented configuration changes for load balancers.
• Worked on Cisco ASA, Juniper SRX Firewall and Checkpoint Gaia firewalls.
• Modified configuration and performed troubleshooting on F5 Load Balancers
• General Troubleshooting

Confidential . Richmond, VA

Senior Network & Security Architect

• As the Senior Network and Security Architect for Reynolds Packaging I managed two teams responsible for serving a global company with remote datacenters in Alpharetta, GA and Carlstadt NJ.
• Performed High Level Engineering and Analysis on collapsed core architecture with remote LANs situated throughout the world.
• Responsible for daily analysis of logs and management of access control lists for Cisco ASA firewall solutions, a Cisco FWSM architecture and Checkpoint firewalls.
• Responsible for engineering and implementing security posture.
• Reengineered Cisco 6509 Core architecture to resolve inherited issues related to latency and lack of predictability in the network.
• Performed numerous upgrades and migrations related to LAN architecture for remote sites and Core data center.
• Completed configurations and analysis related to BGP/OSPF routing protocols.
• Performed as lead architect on an eVPN MPLS WAN network for Reynolds and CSI
• Used Nagios for monitoring of networks.
• Implemented Snort and Linux monitoring tools for remote networks.
• Worked with Vendors to accomplish tasks.
• Utilized existing Open source platform for monitoring of network resources that required scripting tools written in Bash and Perl.

Confidential, Washington DC

Senior Firewall Engineer Consultant,

• Senior Firewall Engineer/Internet Services Administrator for the Confidential .
• Performed troubleshooting on Stonegate and Sidewinder firewalls
• Responsible for daily analysis of logs.
• Used scripting and web development tools to generate an intranet site that automated log analysis.
• Built, configured, performed maintenance & monitoring of firewalls such as ASA and PIX.

Confidential, Tysons Corner, VA

Senior Firewall Engineer/Internet Services Administrator

• As a Senior Firewall Engineer/Internet Services Administrator for the Treasury Communications System (TCS) project I provided support to Treasury bureaus for all TCS provided Internet related services. The TCS project in support of its efforts for the treasury acts as the Internet service provider for one of the largest private networks in the world.
• Performed troubleshooting on Cisco ASA and Juniper Raptor firewalls.
• Responsible for DNS and Bind implementation on Solaris UNIX platform.
• Responsible for daily analysis of logs.
• Used scripting and web development tools to generate an intranet site that automated log analysis.
• Created tools using Perl and PHP for Administration related tasks.
• Built, configured, performed maintenance & monitoring of firewalls Symantec Enterprise Firewall, PIX, Checkpoint, Raptor & Velociraptor DNS servers BIND v.8 & 9, VPN gateways SEF 7.04, email servers (mailhubs & relays) sendmail & postfix, load balancers F5 Big-IP, web servers Apache, iPlanet & IIS, and Active Directory systems LDAP over X.500 .
• Built and configured Cisco PIX firewalls for customers’ stateful inspection networks.
• Created and maintained Visio network diagrams demonstrating interconnectivity inside the Dept. of Treasury's infrastructure.
• Performed maintenance & updates to internal and external name servers BIND v9.0
• Provided UNIX shell scripting solutions for automation of daily maintenance tasks, including the use of PERL, PHP and MySQL for log file manipulation & large binary file processing.
• Performed troubleshooting of VPN access solutions through a multiple firewall configuration including load balancers
• Developed dynamic database driven websites for the analysis of logs and the generation of reports and SNMP data.
• Implemented VPN solutions using ASA firewalls and Cisco VPN concentrators with FINCEN BSA customers.
• Implemented IRS upgrade to Cisco Pix with new Cisco ASA VPN firewalls. During this migration over 140 different financial institutions that have VPN tunnels were migrated using scripting techniques to facilitate the transfer.
• Designed Security upgrade to BSA Production and disaster recovery network for FINCEN
• Juniper Netscreen firewall administration

Confidential

Network Security Engineer II

• While working on a six month contract at Sprint Nextel Communications I served as a team member responsible for the analysis of VPN, Firewall solutions and Border routers for Sprint customers.
• Performed troubleshooting on Checkpoint, Juniper Netscreen and Cisco Pix firewall and VPN solutions for Managed Network Services infrastructure at Sprint.
• Performed troubleshooting on Cisco router and switch communication solutions
• Performed administration of network using Solaris UNIX platform.
• Performed design/support of security devices such as Checkpoint, Netscreen, PIX, Netcache, Arbor.
• Responsible for IDS technologies - Cisco IDS & Enterasys Dragon.
• Denial of Services (DoS) experience with Cisco IP Defender & Arbor Networks.
• Performed analysis and maintenance of VPN solutions from Nortel, Juniper, and Cisco.
• Performed analysis and maintenance of routing and switching technologies for Cisco & Juniper.
• Provided Internet, Network, Systems, wireless, and emerging technologies and solutions.
• Windows OS and applications (IIS, Exchange).
• UNIX OS and applications (Apache, MySQL, Sendmail).
• Provided limited hands-on incident response.

Confidential

Network Security Engineer

• Responsible for Information Assurance through the documentation and recommendation of security measures to improve the security of the network infrastructure. Designed and implemented VPN, Firewall, and IDS solutions. As Marine Corps Technical C&A Lead submitted packages that included all scans, documentation and configurations for review for DA’s office.
• Marine Corps Technical Lead for C&A Packages on NMCI project.
• Used Microsoft Baseline Security Analyzer and ST&E scripts to generate reports on server security.
• Used Retina to scan and analyze routers, switches, Netscreen VPN devices and Windows 2K and 2K3 servers.
• Performed C&A duties for Technical and Non Technical C&A responsibilities on NMCI network including SSAA and ST&E documentation.
• Installed Windows 2003 Management servers and secured these architectures to maintain IAVA compliance according to DOD directives for administration of Cisco Pix and Juniper Netscreen Firewalls.
• Performed and documented testing procedures of recommended solutions for firewall, VPN and management infrastructure.
• Created Perl Scripts to assist in the implementation of Firewall and VPN solutions including rule conversion between vendor platforms and the automation of administrative tasks.
• Served as member of Security team for Pentagon Renovation Project with responsibilities which included the administration, design and configuration of the IDS, Firewall and VPN solutions for both the Black and Red side.
• Migrated legacy infrastructure and implemented DITSCAP compliance standards on new configurations.
• Promoted to position of NMCI manager at the Chantilly office.
• Performed installations and upgrades for NMCI remote sites.
• Scanned equipment for security vulnerabilities with Retina or ISS scanning applications.
• Used Packet Sniffing technologies such as Ethereal and TCP/IP Dump.

Confidential

Network Engineer / Analyst

• I performed the design, implementation, and administration of enhancements to the existing network infrastructure. Performed Engineering of communication solutions for the Scientific community and the analysis of network performance.
• Worked on Team that designed, configured and administered a full mesh topology of Netscreen Firewalls and VPN solutions for remote networks.
• Performed enhancements to network architecture at the Access and Distribution layers of the 4000+ node collapsed core architecture while working with OSPF, BGP, HSRP, EIGRP, IPX, AppleTalk and TCP/IP protocols.
• Performed WAN troubleshooting of Frame Relay, BGP, PPP and remote access issues while working closely with the ISP.
• Created scripts that monitored and updated network equipment using SNMP, Perl, shell scripting and Linux servers.
• Created scripts that automated tasks for Help Desk Administrators using WSH, Dos and Perl.
• Served as Administrator over Linux and Microsoft 2003 servers used to administrate the network resources.
• Served as member of Microsoft Exchange implementation team during migration from Lotus Notes to Microsoft Exchange
• Performed Army TNOSC and DITSCAP Order Compliance on firewalls and router access lists.
• Assisted Help Desk, Linux and Windows Server teams in maintaining IAVA Compliance and troubleshooting using various tools such TCP Dump, Fluke and Ethereal for traffic analysis.
• Performed and maintained documentation of network infrastructure and procedures.
• Responsible for maintaining local hardware and software configurations of Cisco routers, switches, firewalls and VPN devices.
• Responsible for configuration and design of Pix firewalls and Netscreen firewalls VPN solutions.
• Served as Lead Engineer and Project Manager of solution for Flood Sensors Project.
• Performed network engineering research, design, development, and other assignments in conformance with customer specifications.
• Performed troubleshooting of remote access issues for multiple sites.
• Served as lead engineer over campus-wide UPS issues.
• Performed administration and troubleshooting of Linux management servers.
• Performed maintenance & updates to internal and external name servers.

Confidential

Help Desk Analyst

• Responsibilities included Desktop support for network users in a 500+ node environment of Novell and Windows NT server platforms.
• Member of team that doubled office productivity through the resolution of network and desktop issues.
• Designed and distributed help desk surveys for the purpose of monitoring customer satisfaction.
• Maintained databases of purchased equipment and software.
• Created Lotus Notes applications for report generating.
• Performed analysis and troubleshooting of Cisco switches.

Confidential

Intern

• Lotus Notes IT consultant and web researcher for STI team members
• Performed research and submitted reports as instructed for STI team members while working for the EPA

Confidential

Work Study

• Help Desk and Network Administrator of mixed network environment for the U of M campus. Performed troubleshooting on printers, Desktop applications, and Novell Servers as well as Windows NT servers.
• Performed network troubleshooting of Cisco switches and Routers