SUMMARY:

Energetic and self motivated, who enjoys learning new technologies, has a broad knowledge and experience in analysis, design, implementation and troubleshooting network infrastructures. Experienced network security project manager who proactively achieves project milestones, excels Confidential critical thinking and problem resolution.

SOFTWARE SKILLS:

Operating Systems: Checkpoint R55, R65, R70, R75, Cisco ISO Software 12.x, Pix 6.x, ASA 7.x, ASA 8.x, Linux, Windows XP/Vista/2007, 2003 Server.

Network Security/Monitoring: Gaia, Provider 1, Orion Network Manager, Cisco Intrusion Prevention, Unix, Syslog, Cisco MARS, Wireshark, Checkpoint Smartview Monitor, Arcsight, SMS, Active Directory, Nmap, WildPackets, Cisco ACS, RSA SecurID Server, Metasploit, Putty, SecureCRT.

Application Software: Citrix Metaframe server, SQL Server, Oracle, PowerPoint, Access, Clarify, Remedy, Outlook, Lotus Notes, Microsoft Project, Microsoft Visio, Microsoft Excel, Virtual Box, VMware.

Programming Languages: Visual Basic, Visual Basic .NET.

Tools: GotomyPC, PC Anywhere, Microsoft SMS, Citrix Metaframe, Cisco VPN Client, Cisco ASDM, Bomgar.

Protocols: TACACS +, RADIUS, LDAP, DHCP, DNS, POP3, FTP, SFTP, TFTP, NAT, DNS, IPSec VPN, SMS, Spanning Tree, BGP, RIP, OSPF, EIGRP, IGRP, STP, VTP, HTML, TCP, UDP, SMNP, SMTP, VLAN, VRRP, ARP, SSH, Telnet, HTTP, SSL, SFTP.

Firewalls: Crossbeam X80, Crossbeam X60, Crossbeam X30, Cisco ASA 5540, Cisco ASA 5542, Cisco 500 Series Pix, Cisco 3000 Series Concentrator, Checkpoint NG65, 71, 75

Switches/Routers: Cisco 4948, Cisco 2900/3700 Switches, Cisco 1900 and 2500 routers.

Load Balancers: Cisco ACE, Citrix Netscaler

PROFESSIONAL EXPERIENCE:

Confidential, Atlanta, GA

Lead Security Engineer

Responsibilities:

• Lead Security Engineer responsible to helping existing network engineering team work new security tickets and help reverse engineer existing firewall infrastructure and as well as helping with hospital network consolidation project.
• Reverse engineered existing site - to-site and SSL VPN configurations.
• Responsible for establishing and documenting the process of how to establish new site-to-site VPN tunnels
• Lead the upgrade project to upgrade code version on ASA to patch Cisco SNMP vulnerability
• Configured, staged and implemented HA firewalls to replace single legged firewalls in multiple hospitals
• Worked day to day firewall and networking tickets
• Established guidelines on consolidation of new hospitals into the Confidential network, including firewall rule base, NAT design as well as network routing guidelines

Confidential, Atlanta, GA

Senior Network Engineer

Responsibilities:

• Worked with Senior engineering team that maintains the state of Confidential ’s steady state network.
• This team works with all the state agency’s within the Confidential state government.
• We help maintain the current network, and provide support for new changes and additions to the infrastructure, such as new/changing routing, creating or reassigning VLANs, IP address management, wireless support, CCTV and video conferencing, etc.
• Maintains Checkpoint and ASA firewalls, assisting in creating new application flows, reverse engineering application flows and general troubleshooting the firewall infrastructure
• Works with state agency’s to preform wireless surveys to recommend and purchase wireless equipment for onsite installation
• Helps maintain the site-to-site VPN mesh between agency, this includes adding new access and aggregating IP ranges when needed
• Researches and resolves URL filtering issues based on user and group needs and permissions
• Provides support for long term projects and is a subject matter expert for project managers in strategic meetings
• Designs and implements new network architecture as needed by the customer

Confidential, Atlanta, GA

Senior Security Engineer

Responsibilities:

• Helped cross-train junior engineers, including network topology, Checkpoint, Blue Coat
• Worked with team to create and redefined change management processes
• Daily administration of Bluecoats allowing exceptions for web users
• Worked on team troubleshooting details ranging from Crossbeam failovers,
• Actively worked with Clients and vendors to resolve internet and intranet connectivity over MPLS, Cisco router VPN, Checkpoint VPN and Cisco ASA/PIX VPN
• Worked with both Checkpoint Client VPN to resolve issues for remote users
• Updated Checkpoint site-to-site VPNs for new vendor/client connectivity

Confidential, Atlanta, GA

Senior Security Engineer

Responsibilities:

• Worked on team which managed over 50 Checkpoint, versions ranged from R55 to NG71, firewalls using Provider 1 to manage multiple policies on numerous clusters throughout the network.
• Troubleshoot infrastructure issues as they arose and helped to resolve issues in a timely and efficient manner.
• Worked closely with the wireless management team to plan, configure and test new wireless VLANs worldwide
• Worked with network engineering team to create new connections, including setting up static routes, new VLANS and VRRP on Checkpoints.
• Troubleshoot network issues ranging from network engineering, wireless, and monitoring issues. Also helped create application flows for Delta business units.

Confidential, Birmingham, Al

Systems Engineer

Responsibilities:

• Member of the DMZ engineering team, accountable for managing Cisco, Citrix and Checkpoint firewalls, Cisco switches, Netscaler load balancers, Cisco VPN concentrators, Cisco ACS servers, and RSA SecureID Token servers.
• Troubleshoot infrastructure systems that include DNS servers, VPN devices, firewalls, enterprise token authentication servers, and Cisco ACS servers. Over 150 Network Devices
• Reverse engineer legacy Pix firewall configurations, with some consisting of more than 1000 lines of code, for migration as legacy firewalls are retired.
• Actively monitor and change rule base to resolve Remedy problem tickets on Cisco Pix, Cisco ASA, Cisco switches, Cisco 3030 VPN concentrator and Checkpoint NG71 firewall.
• Develop and maintain information security polices documentation for client based IPsec VPN.
• Provide entry point contact for vendors, which included addressing inquiries and providing recommendations for all new site-to-site VPN configurations
• Design, plan, implement, and document all new IPSec site-to-site VPN tunnels and dedicated circuits entering the Regions network.
• Administration and maintenance of vendor VPN connections on Cisco ASA 5540, and 3000 Series Concentrator.
• Consult with vendor engineers to discuss design and implement issues related to remote connectivity solutions, including creating IPsec client VPN tunnels, IPsec site-to-site tunnels, as well as frame-relay connections.
• Monitor and maintain 400+ site-to-site VPN connections.
• Manage more than 3000 remote employee Cisco client IPsec VPN tunnels.
• Actively work with Cisco TAC to resolve various issues.
• Oversee configuration of SPAN ports on Cisco switches for Snort and Tipping Point sensors.
• Troubleshoot RSA token issues using RSA SecurID token Server.
• Configure new users and user groups on Cisco ACS server as requested.
• Implement HTTP and SSL flows through Citrix Netscalers and Checkpoints through DMZ to web server farm.

Confidential, Birmingham, Al

Desktop Support Representative

Responsibilities:

• Supported SQL server 2000/2003, Oracle 8i, 9i and 10g issues.
• Supported Citrix Metaframe issues that involved account and shared printer configuration.
• Performed client installation and configuration for new workstations.
• Corresponded with customers and resolved concerns regarding software/hardware issues.
• Researched software bugs and created detailed case notes for bug resolution.
• Provided technical documentation of programming bugs and modification requests.
• Applied upgrades, installed patches and form fixes to customer computer systems.
• Served as a team member in performing on-site software installations and software upgrades projects.
• Provided customer and consulting, addressing software questions and Windows OS utilization.
• Received numerous customer service s.

Confidential, AL

Systems Administrator

Responsibilities:

• Assisted in detecting and removing malware and viruses on workstations.
• Managed Active Directory implementation project.
• Managed project for migrating from XP Home/Pro to a Windows Pro/2003 Windows Server environment.
• Designed, documented and implemented new internal network address schema.
• Setup and configured new workstations and printers.
• Provided on-site help desk support for more than 15 end users to assist with hardware and software issues.
• Configured and tested digital video recorder and servers.
• Traveled to customer sites to assess and troubleshoot IP camera systems and hardware/software.
• Implemented new inventory tracking system for warehouse.
• Created a user manual for new inventory tracking software