System Architect Resume
5.00/5 (Submit Your Rating)
New, JerseY
SUMMARY:
- Over 18 years of network experience in Financial and Insurance industry.
- Design and implement Cloud connectivity to O365,Azure and AWS.
- Design and implement Enterprise DMZ infrastructures.
- Design and implement redundant Network solutions with third parties.
- Maintain time - critical networks for trading applications.
- Strong troubleshooting and problem-solving skills.
- Detail-oriented, multi-tasker with strong organizational skills.
- Work effectively independently or as a part of a team.
- My work has been recognized by regular bonuses, performance awards and promotions.
TECHNICAL SKILLS:
Networking: VSS,VPC,VDC,VRF,HSRP/MHSRP,STP,Trunking Private Vlans, NAT,Ether-channels,Flexwans,TCP/IP, SPAN,RSPAN,Routing protocols (Eigrp BGP OSPF and RIP),DHCP, F-5 3DNS,Multicast,SIP
Software: Windows 95/98/NT/2000/XP, Cisco IOS, Lotus notes, Exchange,MS Office, Visio 2005, Remedy, Vitalnet
Hardware: Cisco Routers (ASR, ISR,2800,7200)
PROFESSIONAL EXPERIENCE:
System Architect
Confidential, New Jersey
- Design and Implement Cloud connectivity to O365 and Amazon
- Implemented dual 10 gig redundant links to Microsoft 365
- Work with Equinix on installing hardware in their cage
- Use Equinix portal to bring up the layer 2 connections
- User Microsoft Portal and PowerShell to bring up layer 3
- User Amazon Portal to bring up Layer 3 connectivity
- Build redundant link using bi directional nats on ASA
- Turn over the portal to business areas to enable VM
- Design and Implement DMZ infrastructure in new Datacenters
- Review Requirements for new build using bandwidth and port requirements and growth
- Draft the build on Visio and review with team and Mgmt.
- Use cisco build tool and generate a Hardware quote for Mgmt.
- Once the Hardware arrives check codes against cisco bug report and update as necessary
- Or ship the Hardware directly and configure using console
- Provided a detailed network/cable diagram to site contact and troubleshoot as needed
- Connect the infrastructure to the core implement tacacs+ and turn it over to Operations.
- Train/Review with operation any new functionalities with new Infrastructure
- Design and Implement B2B connections with third parties
- Attend kick-off meeting and gather all the necessary application requirements
- Design the b2b network using the application, network availability, bandwidth and costs in mind.
- Implement the design and test all applications.
- Clearly document in detail the design and turnover the connection to 24x7 operations for Tier-2 support.
- Review all the connections periodically and look for cost savings by reducing the bandwidth on circuits, consolidating multiple circuits into two, suggesting using internet vpn as back-up instead of 50Mg Ethernet circuit.
- Provide Tier-3 support for all Extranet WAN connections
- Troubleshoot network issues utilizing Wireshark.
- Trouble-shoot Mpls,10Mg Ethernet on the switches and also interpret the results
- Trouble-shoot HSRP and routing protocols RIP EIGRP,OSPF and BGP
- Trouble-shoot VPN issues
- Use Vitalnet to capture bandwidth utilization on circuits
- Document resolutions in REMEDY for all the tickets that are opened by Tier-2
- Create ticket in REMEDY as necessary for any and all changes being implemented on devices
- Escalate issues to Cisco using their web tool TAC Case
- Day to day operations include firewall ACLs, switch port add/changes, diagnose wan performance issues, administer monitoring systems
- Deployed Isolated DMZ that Isolates non-employees’ VDI behind a pair of ASA.
- Deployed Nexus 5k pair w/ L3 module and FEX for connectivity to support VMware blades for VDI
- Deploy CDA that links to AD and provides Firewall user identity for ACL support.
- Implement DNS Doctoring to support vendors that do not want to route RFC1918 address
- EOL Datacenter (DMZ) Upgrade from 6500 running FWSM to 6800 VSS switches with ASA’s
- Perform a Major ASA code upgrade from 8.4 to 9.2 on pair of ASA with approx. 30 vendors.
- Implement VRF’s to isolate Customers and then Leak vrf if customers need to communicate.
- Plan and implement Hardware upgrades across the enterprise with scheduled downtime
- Configure routers and switches to handle multicast traffic (Pim and igmp joins)
- Configure PBR, MSRP on customer facing routers to for redundancy
- Configure and maintain Cisco routers (7000, 262x and 3640 series) with BGP,EIGRP, and RIP as a routing Protocol
- Configure Private Vlans, VACL, Ether channel, QOS.
- Engineer multiple site to site VPNs to vendors over IPSEC.
- Engineer third party connections with private leased lines (10gig,50mg,T1,T3, MPLS and ISDN)
- Configure Virtual IP pools on 3-DNS for seamless failovers
- Set up quarterly meetings with the team to review new technologies.