TECHNICAL SKILLS:

Networking : TCP/IP , Static Routes, Access lists, Route Maps; MPLS Routing Protocols EIGRP, OSPF, BGP,

LAN/WAN: IEEE 802.1q, VTP, STP, RSTP, HSRP, GLBP, Ether - Channel, NAT/PAT,, IPSEC VPN, SSL VPN

Technology: Confidential VPN Anyconnect, DAP, Active Directory, Group policy, AAA , 802.1x , UCS , CIMC, SNMPv3, Nexus VPC, Core VSS

Operating Systems: Windows 10/8/7 - Windows Server 2003/2008 and VMware Vcenter, Vsphere Environments

Hardware: Confidential ASR 1000x, 2900, 6500, 7200 Routers; Confidential 3500, 3800, 4500 , 6500 ,6880 Switches; UCS B&C Series Chassis, Confidential FEX 2000-X; VOIP CUCM 9/10.x, VG 200 & 300

Security & Next Gen: Nexus 5K,7K,9K VDC,VPC; ASA 5500-X NGFW/ Firepower , Snort, Sourcefire IPS , Palo Alto NGFW

PROFESSIONAL EXPERIENCE:

Confidential

Senior Network Engineer

Responsibilities:

• Provide consulting and advice to Senior Enterprise Architect on Network Wide Visibility, Vulnerability, and Security Posture
• Provide policy consulting to clients on Performance, Vulnerability, and Security Posture for proprietary services including AWS
• Facilitate the development of project NOM for state of the art Federal Bio-Research Facility
• Implement network security changes: Add/Edit Firewall QOS, SSL VPN, IPSEC VPN, NAT, CSR, & Global Policy for desired traffic flow
• Execute ownership over Configuration, Installation, and Maintenance of Next Gen. Security appliances: Palo Alto, ASA, Sourcefire
• Manage daily operations for Corp Confidential and remote site infrastructure including ISE, NGFW, WLC, & Nexus 5,7,9K platforms
• Proficient w/ major Voice, Video, Security, LAN, Wireless, and Data Center technology platforms w/ virtual and physical appliances.
• Investigate security anomalies including but not limited to: traffic shaping, traffic control (ACL’s, VPN-filters, AAA), storm detection, bandwidth utilization, protocol authorization, context aware traffic analyses.
• Provide guidance, training, triage, and escalation support to Tier I & II technical assistance engineers
• Develop project proposals, interfacing closely with management to evaluate business impact. Providing technical and strategic guidance on customer relation incidents for over $30 million dollars of network infrastructure services.

Confidential

Network Engineer

Responsibilities:

• Maintain Internal integrated Network Infrastructure of Corporate Sites and Data Center for 24-7 Technical Assistance Service
• Upgrade, Troubleshoot, Configure all classes of Confidential devices: Collaboration, Voice, VTC, UCS, Data center FEX/FI, R/S, and Security
• Complete and partial network upgrade deployments: providing planning, As-built Documentation, and configuring Routers, Switches, Firewalls and both virtual & physical Application Appliances such as F5 load balancers, WAN accelerators, Confidential ISE & ACS, Traffic Monitors (PRTG, SolarWinds), Syslog servers, network repositories.
• Assist w/ deployment and early life cycle maintenance on full Meraki Wireless solution
• Demonstrate problem ownership & execute Tier 3 Service request resolution and ticket management
• Investigate security anomalies including but not limited to: traffic shaping, traffic control (ACL’s, VPN-filters, AAA), storm detection, bandwidth utilization, protocol authorization, IPS, access control & context aware traffic analyses,
• Proficient w/ most Voice, Video, Security, LAN, Wireless, and Data Center technology platforms w/ virtual and physical appliances.
• Upgrade, configure, and maintain distributed Confidential wireless infrastructure including WLC 5500, LWAPs and Autonomous AP’s.
• Provide guidance, training, triage, and escalation support to Tier I technical assistance engineers

Confidential

Network Engineer

Responsibilities:

• Manage Confidential R/S enterprise network for over 3600 personnel. Maintained large scale campus network routing over EIGRP
• Resolve tickets daily, requiring skilled troubleshooting and detailed attention for configuring remote site VPN’s & improving poor WAN performance or connectivity failures at multiple Coast Guard remote networks & Metro WAN infrastructure
• Thorough network documentation of address allocation, backup configurations, and network diagrams
• Monitor network performance closely to effectively identify and reduce waste such as poor network design and bottle-necking
• Plan changes and upgrades of internal data center fabric: FC, FCOE, East-West flow to reduce downtime on Coast Guard Networks
• Plan strategic implementation of VLANs to enhance traffic forwarding efficiency and maintain network security
• Perform logical and in-depth analysis of network infrastructure to provide competitive monitoring and resolution services
• Design and scale logical network security features including traffic filters using extended access lists, Nat, Port-Security
• Exploit versatility of platform scripting incl. Linux and Confidential EEM for programming network event detection and device automation

Confidential, Ft. Belvior

Junior Network Engineer

Responsibilities:

• Expertise in the implementation, analysis, optimization, Troubleshooting and documentation of LAN/WAN networking systems
• Completed various tickets per day ranging from resolving host connectivity issues, access-list modifications, and Confidential switch configuration and installation when tasked with modifying network infrastructure.
• Configured and maintained STP and basic access layer security features such as Portfast, BPDU Guard, Loop-guard, Root-guard
• Performed subnetting TCP/IP configuration on a daily basis for end users, printers, and client servers
• Developed Mastery of Confidential IOS on Confidential 2600/3600/7200 Routers and CatOS on 3500,
• Configured and troubleshoot 3600 series routers specifically for OSPF in single and multiple areas
• Responsible for installing and supporting network hardware, software, and applications on clients’ machines
• Configured local switch and routers for network security features such as AAA for TACACs+ authentication/authorization.
• Upgrading switch and router hardware such as Gbics, ethernet cables, SC/LC fiber ports and cables, and switch supervisors
• Utilization of Microsoft Active directory via Windows Server 2003, 2008 to add users to domain and reset passwords