SUMMARY:

• A highly motivated IT professional with an extensive background in the architecture and implementation of network and systems infrastructure at multiple levels and in several IT disciplines, namely networks, the related OS stack level components and security pieces. An innovative and inquisitive solution provider skilled at quickly assessing anomalous needs and designing a creative way to solve the issue. Excellent mechanical and technical aptitude with the ability to quickly acquire and apply new skills.

TECHNICAL SKILLS:

Firewalls & LB: Cisco Firepower/ASA/CBAC, FWSM & ACE, WatchGuard, Linux, F5, SonicWall

Routers: Cisco ASR 1K, ISR 4K/3K/2K/1K/800, Cat 6500/4500, Nexus 9K, Juniper, Ciena, Linux (eb & ip tables)

Switches: Cisco Cat 6500/4500/3800/9300/2960/ etc., Nexus: 2K/5K/7K/9K/6K(UCS), Arista, Juniper, Dell

Servers & OS:: Windows, Cisco HX, Cisco UCS, VMware ESX 5x - 6, CentOs, Ubuntu, Kali, Raspberry Pi

Security:: Nessus, Ettercap, Sysinternals, IDS/IPS, Metasploit, Pen-Testing, Reversing, Fuzzing, POC code

Programming: C/C++, Assembler, Python, VBScript, PHP, Ruby, Perl, PowerShell, AutoIt, SQL

Applications: Active Directory, Microsoft SQL, Exchange, DNS, DHCP, FTP, Open Source Tools

Protocols: BGP, OSPF, EIGRP, MPLS, DMVPN, IPsec, GRE, FHRPs, vPC, OTV, TrustSec, VXLAN(lab), STP/VTP, RDMA, Multicast, PfR(lab), Cisco IWAN(lab), Cisco ACI(training)

Analysis & Monitoring: Wireshark, Olly and Immunity Dbg., IDA Pro, OpManager, Orion, Kiwi Cat Tools

Voice &Telecom: T1/PRI, Asterisk, Avaya, Cisco

Microcontroller: /Basic EE: Arduino, Raspberry Pi, PIC, Servo/Stepper Motor, Linear Actuator, Cellular/WiFi/Zigbee, GPS, IoT, basic circuit design and implementation, coding and exploration

PROFESSIONAL EXPERIENCE:

Confidential, Atlanta, GA

Senior Network, Systems, & Sec. Architect

• Helped architect a new hyper converged solution package that enables rapid deployment of the complete technology infrastructure required for us to stand up remote develop studios and labs in environments requiring us to make use of the minimal resources offered.
• Managed and executed project to migrate the aging Cisco Cat. 6500 datacenter core gear to Nexus 9K pairs. This involved integrating both the L2 and L3 infrastructure on a common pair of 9Ks (peers). vPC, HSRP, IP SLA/PBR and route protocol peering were used simultaneously to maintain high availability for each layer within this pair.
• Designed and implemented bridged Casino Gaming DC infrastructure, using ESX 5.1/5.5, Cisco UCS and Nexus gear, and Compellent SAN, increasing Casino System uptime to 99.9% for first time in company history.
• Built new MAN infrastructure connecting multiple office DCs via 10G fiber ASEoD, OTV/MACSEC and enhanced vPC.
• Redesigned WAN VPN infrastructure using Cisco DMVPN, HSRP and IPSEC, correcting legacy security problems, and providing end-to-end VPN security for first time in company history. Design also improved routing convergence and increased effective WAN speed 1.5x.
• Wrote custom application that detects hijacking attempts of on-site Casino Servers and engages security alerting and responses, protecting company intellectual property.
• Utilizing both C and Assembler, created custom Casino System security patch addressing both legacy vulnerabilities and those detected through pen testing and reverse engineering.
• Created SSMS tool/add in that logs all manually entered SQL queries in a secure fashion.
• Developed tools to manage local security settings and users on standalone (non-domain) Windows servers.
• Authored Windows and Linux applications to detect, capture and manipulate network traffic
• Created proprietary encryption utility that incorporates phone-home capability to help protect assets in the field.
• Created wireless bridge and WAN emulation/fuzzing appliance utilizing Raspberry Pi
• Technical contributor on project for a software related patent.

Confidential, Alpharetta, GA

Senior Network Engineer

• Led migration project to convert older IPSEC style connectivity, between vendors (e.g. NYSE, BofNY, Rueters) and the E*Trade networks, to faster and more reliable/redundant point-to-point circuits. This involved creating BGP peer relationships with the customers over up to 10Gig circuits that were connected to multiple data centers. Optimized routing info to provide quick convergence in the event of of failure.
• Led project to convert all Cisco ASA 55xx devices to new 5585 ASAs throughout the infrastructure. This was an upgrade from pre 8.3 code to 9.x code require tedious amounts of configuration conversions, some by hand.
• Evaluated and load tested new Cisco (pre-released N9500) and Arista equipment and QoS policies to migrate from legacy Infiniband RDMA networking platform to loss-less RoCE.
• Worked on replacing RIP with OSPF in large multicast environment.

Confidential, Norcross, GA

Network Architect

• Migrated company to VoIP infrastructure using multi-site Asterisk system, Cisco DMVPNs, Zone Based Firewalls and Asterisk DUNDI protocol
• Managed network infrastructure migration from Novell NDS to Windows 2003 Active Directory
• Implemented multi-WAN failover architecture utilizing both Cisco (HSRP, IP SLA) and WatchGuard HA technology
• Redesigned LAN/WAN Network infrastructure to provide seamless and secure communications between branches, upgraded core to 10Gb Cisco platform
• Managed IT infrastructure build out for new corporate office construction
• Played a key role in creating customer-facing payroll entry application
• Created multiple custom applications: AD Provisioning tool, PDF Encryption tool, Password Generation tool, MS Authentication tool utilizing Crypto API, Secure Email/FTP File Transfer tool
• Created microcontroller (Arduino/Zigbee) based wireless device used to monitor office backup power facilities.

Confidential, Tucson, AZ

PC Technician

• Integrated Windows 2000 into existing network infrastructure
• Supported all corporate PCs/Users and assisted with support for web, mail and RAS servers

Confidential

Lead IT Specialist

• Implemented IT security policy to automate the encryption of all in-flight sensitive data
• Assisted in planning and migration of corporate server network from Windows 2000 to Windows 2003
• Cisco network/VOIP/wireless deployment