Summary

I am a team lead, senior network engineer and network security engineer who is passionate about information technology and how it can make our lives easier. I have a proven track record of network migrations, design, security design and mitigating security vulnerabilities. I have configured, hardened and deployed Cisco, Brocade, McAfee and other vendors' routers and switches, firewalls and security appliances.

Professional Experience All full-time positions except team lead role with 275th MP

Confidential

Team lead, 275th MP Company, DC Army National Guard, June 2008 to Present. Serve as a team lead and occasional squad leader for 275th MP Company. Provide leadership and consultation support for other solders. Accomplish mission objectives in a timely manner. Provide support and feedback for senior leadership.

Confidential

Provided information systems support, for the DC Army National Guard, during a deployment in support of Operation Iraqi Freedom OIF . Operated the GPS-based BlueForce tracker system. Operated various IED countermeasure systems, including cell phone jamming systems and anti-infrared IED systems. Operated several convoy communication and radio systems.

Confidential

Migrated this organization to Windows Active Directory 2003. Updated access lists and Organizational Units. Migrated the organization to newer routers and switches, including Cisco 2600 routers and 3500 switches. Documented and resolved IT issues. Created scripts to automate Windows domain controller functions.

Confidential

. Operated a mobile network operations center that provided secured encrypted voice and data support in a remote environment. Upgraded organization's infrastructure to Cisco routers, improving network bandwidth and performance. Generated bit-error-reports to improve network availability and in resolving network issues. Operated various encryption, PSTN, and IP networking hardware from Raytheon, Cisco and other vendors.

Confidential

Acting as network team lead and network engineer at a Department of Defense training center, Ft. Meade, MD. Work on network infrastructure, network security and management systems, Windows Server 2008 and 2008 Core, Citrix Xen Desktop and VMWare ESX servers, Cisco ASR 1001 routers and Cisco Nexus 7010 switch. Create and update Visio diagrams, update and maintain SolarWinds NPM system, update DNS server as needed. Migrated one of the enterprise uplinks off of a Cisco 2900 and onto a new Cisco 1001 ASR and OC-3 circuit. Developing new VLAN access-control lists to filter traffic to and from server VLANs, with the work including inventorying all server assets, their network VLAN assignments and the ports and protocols used for each server. Troubleshoot network issues daily, including port-security, SNMP and TACACS failures, etc. Working on rolling out OSPF for internal network, migrating the enterprise off of trunk links and onto layer-3 links. Working on re-doing the IP subnet addressing scheme to provide for route aggregation and summarization, for routing purposes. Working on adding a new switch to the DMZ to provide for equal-cost BGP load-balancing to remote AS two routers single-homed to one ISP . Working on replacing Cisco 6500 core switch with a Nexus 7010 switch, and, also to install a second Nexus 7007 switch to create a vPC peer-group and to have vPCs.

Network Administrator Contractor

Confidential

Provided network administrative support for Operation Enduring Freedom. Supported routed networks hosted by 8th Comm, RCT-7, USMC based out of 29 Palms, CA . Worked with other contractors and United States Marine Corps personnel in keeping networks operational. This includes Cisco 3800 and other routers, Cisco 6500, 4500 and 3750 switches, SNAP satellite hardware, WPPL microwave antenna systems, EIGRP, DMVPN, MPLS, KG-175D TACLANEs, ISAKMP and IPSEC crypto tunnels, BGP, VSS and other protocols.

Network Engineer Contractor

Confidential

Worked on several engineering projects for SAIC's corporate headquarters in McLean, VA. Migrated several Cisco Catalyst 6509-E switches from hybrid-to-native mode, which involved translating CatOS configurations to IOS and installing new images on the switches. Deployed new infrastructure using various Cisco Catalyst switches. Also researched, developed, designed, field-tested and implemented new DMZ network infrastructure using Cisco Nexus 5596 and 5548 switches. Migrated access-switch and core infrastructure, to include servers, firewalls, load-balancers, network security appliances and internet proxies, from Brocade Foundry switches to Cisco Nexus and Catalyst switches. Researched routing protocols, high-availability, black-hole routing and other designs.

Technology Consultant Contractor

Confidential

Mitigated security vulnerabilities, for Defense Information Systems Agency's DISA DISANet, using the DoD Vulnerability Management System VMS . Worked at DISA's headquarters in Falls Church, VA, then at Ft. Meade, MD when a BRAC effort was completed. Planned and implemented network infrastructure replacements and upgrades. Conducted site surveys, built and modified network configurations, redesigned site architectures, drafted network diagrams, and, verified network resiliency, performance and availability. Supported the Engineering Verification and Integration Facility EVIF by providing infrastructure engineering support, resolving outages, remedying design flaws and designing new additions. Designed and deployed new Cisco ASA 5540s, which allowed Common Access Card CAC authentication, using PKI, to the enterprise network over VPN connections. Developed integration of new Cisco ASAs with existing network architecture, redesigning architecture as needed. Integrated new ASAs with existing Active Directory and Certificate Revocation List CRL servers. Implemented NAT, IP helper-addresses and DHCP options in the EVIF to support an Altiris design project. Modified WAN tunnels and DHCP options on production network to support a SunRay deployment that needed to support VoIP and video conferencing as well as Common Access Card CAC authentication.

Network Engineer Contractor

Confidential

Deployed a Radio-Over-IP RoIP network for a government agency. Designed and tested Cisco router configurations and IP address assignments. Tested the digitization, transmission and reception of radio traffic. Hardware included the following: Dell PowerEdge 1950 servers, Motorola Quantar digital radio receivers, Motorola AstroTac-3000 bit-error-rate comparators, Cisco 1841 routers running STUN and AES encryption , Cisco 3825 T1 and STUN routers, Cisco 2811 routers running AES encryption and Cisco 2950 Catalyst Switches.

Network Engineer Employee

Confidential

Provided IT services support for various clients in the DC metropolitan area, including network, server, desktop, engineering and security support. Improved network design and availability, administered Active Directory servers, configured VPNs, updated firewalls, anti-virus and access control lists, and, hardened network infrastructure. Streamlined Active Directory Organizational Unit hierarchies. Developed scripts to automate Active Directory functions. Managed the Symantec and CA eTrust antivirus consoles. Implemented automated data backups using Symantec Backup Exec. Position was cut due to recession from housing crisis.

Systems Security Engineer Contractor

Confidential

Mitigated security vulnerabilities, for the DoD's server systems, using the DISA Gold Disk. Developed, tested, and applied security patches on production servers, including Windows 2003 Server Active Directory , IIS Server, SQL Server and HP-UX servers. Consulted application owners, database administrators and other specialists when systems needed testing during development of security patches.

Systems Administrator Contractor

Confidential

Developed test-bench Active Directory platforms, using VMWare ESX, to test Active Directory object migration scripts. Developed scripts to automate Windows domain controller functions. Developed Visual Basic, JavaScript and batch scripts to automate computer and server functions, including Active Directory common tasks. One project consisted of migrating Active Directory user objects from one forest to another, with the goal of bypassing the Active Directory Trusts function.

Network Engineer Employee

Confidential

Served as a Tier II network control technician in a 24x7 NOC environment. Acted as senior network controller Tier III during night-shift rotations. Generated bit-error-reports to determine network inefficiencies and resolve network issues. Dispatched field technicians to network sites for repair and replacement tasks. Technology included SONET networking using Nortel and NEC multiplexers and digital microwave systems, and, Cisco routers, switches and media gateways.