SUMMARY:

• Extensive background in IT security, networking and services supporting small business customers to large enterprise and military mission critical systems across multiple locations worldwide.
• Trained with most aspects of Cisco products including routers, switches, NX - OS, CUCM, WLC/WAP/TACACS/ACS/AAA, ASA’s, VPN’s.
• Skillful and innovative problem solver, able to conduct systems analyses of many different complex, real-world problems in a highly technical environment.
• Palo Alto Firewalls SME.
• Design and installation of Firewalls, HA, Migrations from other vendors.
• Splunk Power User (Administrator in Training)
• Accomplished leader who has managed and overseen many people and many projects in my professional career as a Pilot/Officer in the US Air Force as well as in the role of an IT Professional.
• Superb communicator; regularly communicated with, and presented IT program activities to senior executives including Chief Information Officers (CIOs), and Flag Officers.

INFORMATION TECHNOLOGY SKILLS:

Palo Alto (PCNSE6/7 ACE) Firewalls, VPNs, IDP/IPS Server 2000/2003/2008/12

GRE and IPSEC Tunnels Cisco CUCM Cisco NX-OS

Taclane/Encryptor Expert Windows 2000, XP, Vista, Windows 7,8 Visio Expert

Netview/Solarwinds/NPM Juniper Routing/Switching/Security Cisco Wireless WLC/WAPs

Citrix Metaframe SPLUNK F5/Big IP

VMWare/Virtualization Network Monitoring and tuning Cisco TACACS/ACS

Routing Expert Switch Expert Video Teleconference (VTC)

Riverbed Wan,SD,NPM Brocade Switching Microsoft Active Directory

PROFESSIONAL EXPERIENCE:

Confidential

Security Engineering Consultant

Responsibilities:

• Consultant Security Engineer contracted to Confidential Entertainment refreshing firewall security infrastructure comprised of Palo Alto Firewalls and Cisco ASAs. Day to Day Break/Fix and on a team.
• Picking up where I left off working there in a previous 14-month contract.
• Was project lead for firewall team and was the technical Architect for a large project involving replacement of Confidential Proxies and older Checkpoint firewalls being replaced with Palo Alto Firewalls.
• Required design and coordination with a team consisting of 10-15 engineers to replace the Confidential Proxies for the entire Confidential Users in North America and worldwide.
• I was transferred to another project deemed more critical prior to completion.
• Currently on a project Migrating their largest Data Center to Confidential and El -Segundo which is a multi-million dollar move involving multiple teams to vacate the Data Center with a deadline of this October.
• This is a huge effort and I came in to assist a single engineer on the Project as the workload was just simply too daunting for one firewall engineer.
• This is still in progress, but we have migrated many applications to date and have more to go. This involved an analysis for each application and then implementation of all the new rules in Confidential and on the various firewalls involved for each application. This project is almost complete now although I was assigned to a somewhat continuation of the project to move some of the apps rushed out to meet our DC deadline which now need to be moved again into a virtual environment.
• .During these projects I’ve also helped with the daily operational work and Service now changes to maintain day to day operations on the 50+ Firewalls world wide.

Confidential

Security Engineering Consultant

Responsibilities:

• SME Security Engineer responsible for installation and configuration of Palo Alto Panorama, Palo Alto Firewalls, Riverbed Steelheads and Riverbed CMC’s to manage them.
• Migrations, project consultation, security evaluations and threat mitigation.
• Helping customers utilize the new generation firewall features in the Confidential environment.
• Goals were Implementing best practices on Palo Alto Firewalls, Panorama, templates and device groups, security profiles, design, planning, installation, and implementation.
• Assisting several clients with design, installation, implementation, optimization, and evaluation of their security infrastructure specializing in Palo Alto firewalls.
• Installation, basic setup, advanced configuration, and many recommendations to security posture
• Set up of many features on the Palo Alto’s such as: Site to Site VPN’s, Global protect, user-id, management via Panorama, Dynamic Access Lists, and many others.
• Worked as a part of a larger team to deal with all the changes per Murphy Oil Management and HP’s scope of work.
• Work was onsite initially and then remote for the majority of the project.
• Usually came onsite for large offices and data center cutovers.
• Project kept extending but eventually left for my current position at Confidential .
• Stayed on until they could find a replacement.

Confidential

Senior Professional Services Engineer

Responsibilities:

• Senior Professional Services Engineer doing lots of different tasks surrounding Palo Alto Firewalls and equipment.
• Migrations from All other firewalls to Palo Alto.
• Threat mitigation, helping customers utilize the new generation firewall features in mostly very large environments.
• Evaluation and recommendations for current security posture using Palo Alto Firewalls.
• Implementing best practices on Palo Alto Firewalls, Panorama, templates and device groups, security profiles, design, planning, installation, and implementation.
• All things Palo Alto.
• Migrated many companies from Cisco, Checkpoint, Fortinet, Juniper, Sidewinders and others over to Palo Alto Firewalls in given change windows.
• This included evaluation of their environment, planning the move, using the migration tool and other tools to bring it over to the Palo Alto.
• Meticulous evaluation of the settings during the entire process.
• Experience setting up all features on the Palo Alto’s such as: Site to Site VPN’s, Global protect, Mind Meld, Aperture, Panorama, Dynamic Access Lists, many others.

Confidential, Culver City, CA

Lead Palo Alto and Cisco ASA Security Engineer

Responsibilities:

• Implementing, troubleshooting, reviewing, providing access and any needed assistance to the great team at Confidential .
• Excellent opportunity to help them create a VERY secure, enterprise environment working on equipment
• Implemented many thousands of rules to re-establish all of Confidential ’s application infrastructure, network infrastructure, server infrastructure and most importantly, their security infrastructure.
• Helped numerous teams with numerous projects to get them up and running all from scratch as Confidential rebuilt everything from the ground up after their infamous hacking.
• For the first several months, we all worked 12+ hour days, 7 days a week even bringing in meals to reach our goals as quickly as possible. Implemented thousands of change requests while simultaneously troubleshooting an incredible number of diverse problems to get the companies IT back on its feet.
• Wrote processes and documented changes as well as providing feedback in weekly security meetings.
• Re-established/upgraded crypto on all site to site VPN’s to Confidential ’s partners and remote sites.

Confidential, Oldsmar, Florida

Senior Technical Consultant/Network Engineer

Responsibilities:

• Technical Services/Field Engineer doing work on Cisco, Palo Alto, Juniper, Riverbed, Brocade, HP, Shoretel, and many other manufacturers' products.
• Work on everything including Firewalls, Routers, Switches, VoIP, Wireless, Wan accelerators, Load Balancers, and many other types of equipment.
• Every day is challenging, exciting, and interesting.
• Love learning new things and this position certainly fit the bill
• Provided Professional network services and managed services to Vology’s customers with deliverables including: Visio Drawings, fiber maps, and other documentation as well as continuous break/fix with incredible variation.
• With so many different types of equipment to learn and become an expert at, I studied at a furious pace achieving 8 certifications in my first year with the company covering multiple vendors including Palo Alto, Brocade, Juniper and Riverbed.
• Was responsible for all facets of networking for numerous projects of varying sizes and scopes including firewalls, VoIP, wireless, routing, switching, Data Center Switches, servers, certificates, security devices and more.
• Designed, Implemented, and installed many different infrastructures incorporating Palo Alto Firewalls, Cisco, wireless infrastructures, VoIP, and many others.
• Worked with Presales Engineers, Sales engineers, and mostly did post sales work supporting their vision for the companies they serviced.

Confidential

Senior Network Engineer

Responsibilities:

• Deliverables included reports and an out brief the project to Confidential after project completion.
• Was responsible for interfacing with all network operation personnel for all related networks.
• Responsibilities were to gather information, coordinate the cutover and documentation for all the fiber being replaced during the project.
• This involved many different networks of several different classifications from unclassified NIPR up to and including Top Secret/SCI networks.
• Documented and provided the CJIOC-A and Confidential Customer with Visio Drawings, Fiber maps, and other documentation of what our team accomplished while there.
• Coordinated with multiple Network operation centers for each network enclave to isolate all the switch ports that would be affected by our work. This included associating each pc affected so we could cut them over, one at a time. This was required as this is one of the most important operations in Afghanistan utilizing 24/7 real time intelligence and a life or death mission.
• Working as the technical head of a 5 man team that is working together to accomplish the install with minimal impact to the very important operations at CJIOC-A.

Confidential, Tampa, Florida

Lead Network and A/V Engineer

Responsibilities:

• Worked as the lead Cisco Network Engineer and A/V engineer representing NAVAIR for a 16-Million-dollar A/V upgrade project.
• Was responsible for A/V engineering, network engineering, installation and implementation, and finally documentation of the 50+ requirements identified by the various J2 customers.
• Parts of this project were too numerous to name but examples were installation, programming, and troubleshooting of issues with numerous types of equipment that support VTC (Video Teleconference), Presentations, PC’s, VOIP, Streaming video all used in private offices up to and including a 300 person auditorium.
• It was a vast and multi-faceted project and I worked on almost every aspect of it for approximately 20 months.
• The first step in the process was to determine through meetings with many different J2 customers what needed to be upgraded, fixed, or replaced based on their current experience with the system that was in place. To assist them with this we made recommendations based on their problem areas, changes in technology, and basically ways to improve and simplify their current design. We also queried them for needs and capabilities they didn’t currently have. This was a several month process which was simply determining requirements, bringing back designs, and then hashing out the details and costs with them.
• I personally was responsible for the design of 3 or 4 specific requirements and I was also consulted and contributed on all other requirements particularly ones that had needs in my areas of expertise.
• I was personally responsible (with one or two folks to help me as the lead) for the installation of all the requirements that were implemented in every single conference room in the J2. (approximately 30+ conference rooms) This included many things. For example: Installing and configuring New Cisco C-60 and C-20 Codec’s for VTC, installing PESA Video Switches, installing new AMX touch screens, uploading new AMX control code, installing new monitors, installing lighting controls that could be controlled from the touch screens, programming Clear-one audio mixers, installing microphones, and many other specific tasks.
• Assisted as needed in all other facets of upgrades and requirements to include classroom requirements, auditorium requirements, common area requirements and private office requirements. I was primarily tasked with the conference rooms but sometimes was needed elsewhere.

Confidential

Lead Network Engineer

Responsibilities:

• Refined SPAWAR’s design and engineered in VISIO the new network infrastructure that would be used for JTFCS’s new building to include NIPR, SIPR, JWICS, VOIP, Firewalls, security, and all other facets working in conjunction with JTFCS’s current O&M engineers.
• Designed and implemented a routing scheme utilizing OSPF to allow them to route during the transition between locations over IPSEC/GRE tunnels.
• Developed a plan for the transition of the people over to the new location through meetings and coordination with outside agencies. We were able to make a smooth transition with the help of DISA and local network operation centers (NOC’s) on each base minimizing the impact to 24/7 operations.
• Our team was responsible for and executed, the installation of a new VOIP system utilizing Cisco Unified Communications Manager (CUCM 8.x), Unity and integrated it with the overall Network design and management.
• Created a specialized spreadsheet that insured compliance to government standards known as Confidential (Security Technical Implementation Guides) for routers, switches, and firewalls. This spreadsheet was taken by SPAWAR to be used as the standard for compliance going forward.
• Installed, Configured, and troubleshoot all switches, routers, firewalls, VoIP components, and many other pieces in the new buildings network.
• This included 2 Catalyst 6513 switches, multiple 3750 switch stacks, 3845 Routers, ASA 5510/20 Firewalls, IPS/IDS, AAA/TACACS+ and many other components.
• Provided as a deliverable, at the end of the project, all Network diagrams via Visio and many other additional drawings and spreadsheets such as IP utilization, STIG compliance, and others.

Confidential

Senior Network Engineer

Responsibilities:

• Responsible for network engineering, operations, troubleshooting, and support for all of Confidential in the entire Middle East Area of Responsibility.
• The responsibilities of a Senior Network Engineer include design and system engineering of the Confidential Enterprise Networks, configuring and maintaining the new and existing Cisco routing and switching devices and general network support and build-outs including existing customer and new project tasks.
• Redesigned SIPR architecture and implemented Dynamic Routing for all remote locations as well as all remote buildings connecting via Taclanes using GRE tunnels and OSPF.
• Implemented a COI (Community of Interest) Router allowing many visiting key personnel to access their home networks via VPN, without having access to Confidential resources and maintaining Confidential system integrity and security.
• Planned designed and documented numerous additions to our LND drawings with regard to the ONE NET NIPR and SIPR architecture. Verified and corrected many changes to the same.
• Investigated, documented and suggested many modifications to improve network security, performance, and ease of management throughout the One Net Enterprise.
• Supported and Assisted many Information Assurance teams to conduct Penetration testing, setting up new equipment at remote sites, and preparing for upcoming inspections with regards to compliance to government standards known as Confidential (Security Technical Implementation Guides).
• Replaced and upgraded our core switches, wide area network (WAN) router, and Taclane infrastructure on SIPR.
• Provide support to the Network on a 24/7 basis when needed to maintain connectivity for the US Navy Fleet during critical times of operations.