Sr. Network And Security Engineer Resume
3.00/5 (Submit Your Rating)
Washington, DC
SUMMARY:
- Experienced Sr. Network Engineer with extensive hands - on and knowledge in enterprise-level design, configuration, and deployment of networking and security systems.
- Reputation as an effective team-player with the ability to manage competing priorities and drive change initiatives through testing and proof of concept of new technologies and processes.
- Ability to effectivelly use networking testing tools and softwares to debug and troubleshoot network layer dysfunction and provide timely corrective actions.
- Ability and desire to learn new technologies in a group and independently.
- Ability to manage time well to meet multiples deadlines in fast paced environment.
- Excellent writing and communication skills. Seeking a network & security engineering position that will provide me the opportunity to use my analytical skills,customer service skills, detail oriented and interpersonal skills to serve organization’s business needs.
- Experience integrating and managing cloud base network and security systems and applications (Vmware, NSX, AWS )
- Implementation of networking hardwares and softwares, including Cisco Catalyst Switches (2900, 3500,3700,4500, 6500 and 6800 series) and routers (1800, 2600, 2800, 2900, 3800,7200, 7600, ASR 1000, ASR 9000), NEXUS 5k, 6k, 7k and 2k; Avaya media gateway (G650, G450 and G430); Avaya communication manager version 5.2; Cisco Wireless controllers (WLC-5500 series) associated to Cisco lightweight access point. Aruba IAP intallation and configuration for remote office wifi. Design and deployement of controller base (Aruba 3600) wireless network.
- Hands-on experience and deployment of Juniper network Products: EX4200, EX8200, SRX3600 firewall, SRX 1500 Firewall, SRX340, SRX 210 firewall, Netscreen NS-5gt and ISG-2000.
- SSL VPN implementation using MAG-4610 and Cisco ASA-5506X with SSO authentication base on SAML 2.0.
- Proficiency with various software products: Window7, Window 2008 and 2012 Servers, MS Office suite, Visio professional, Visual basic, C+ and object oriented programming, basic Linux system scritpting and administration.
- Network management using Ciscoworks, Solarwinds, Netdisco, Netbrain, Stealthwatch-Lanscope, Bluecoat proxy, Forescout and Cisco ACS v5.
- Experience managing, installing and terminating copper cable, fiber cable, coaxial, patch panel, rack mounted equipment and tie cable associated to Amphenol connectors and 66 blocks.
- Experience working with layer 2 and 3 networking protocols and technologies: OSPF, EIGRP, RIP, MPLS - BGP, VTP, VLan, STP, 802.1Q, vPC, OTV, Etherchannels, VRRP, HSRP, Summarization and Redistribution.
- Implementation of traffic filtering using Standard and Extended access-lists, route-map, prefix-list and distributed list.
- Proficient with various networking technologies in large networking environment: Load Balancer(F5 and A10), NAC, DHCP, DNS, FTP, TFTP, RF broadband, wireless, VoIP. Implementation of security features associated with Cisco CLI (password, port security, AAA - TACACS, RADIUS, 802.1x). SNMP and IP SLA for management and COOP.
- Troubleshooting end-to-end network connectivity associated with OSI layers.
- Familiarity with testing and repair tools: OTDR, tone tracers, repeaters, T-BERD, modems, CSU/DSU, and Professional modular plug crimper for circuits repair and termination. Use different measurement device such as spectrum analyzer, multi meter, oscilloscope and signal generator to perform circuit alignment and calibration.
- Design and implementation of various electrical circuits using CAD application (ProEngineer, Visio, Pspice, Matlab simulink and circuit maker).
- Experience using network vulnerability scanning tools ( Nmap, Nessus, Metasploit, AirMagnet).
PROFESSIONAL EXPERIENCE:
Confidential, Washington, DC
Sr. Network and security Engineer
Responsibilities:
- Upgraded the old headquater (15th street NW) data closets switches from end-of-life Foundry equipment to Juniper switches (EX 4200) virtual chassis using OM3 fiber and 10G uplinks.
- Redesigned the DMZ and upgraded the core layer network from Brocade to L3 Juniper switch (EX 8200).
- Upgraded the headquarter internet connection from single homed connection to dual multi-homed connection running BGP and HSRP protocols.
- Upgraded 30 remote sites LAN and WAN link from fractional T1 to Site-to-Site VPN using Juniper SRX-210, Juniper SRX-3600, Cisco 2960 and Aruba wireless controller and Access point (IAP-215).
- Working with severs administrators to provision network connectivity and routing to Vshield, Microsoft NSX, Vmwares, stand-alone window 2008 and 2012 servers and SAN.
- Support for AWS cloud infrastructure integration and configuration to achieve redundancy, security and availability of The Washington Post core business application and services hosted in the cloud.
- Managed edge Firewalls and implemented ACL and IPS following security policy to insure PCI compliance.
- Monitored network traffic utilization, system availability and performance, respond and troubleshoot all network and security systems disruption using network and security tools such as Stealthwatch, Forescout, Solarwinds, PRTG, Nagios and Splunk, Grafana etc… (24x7 rotation).
- Design and implement high speed 10 Gig network backbone to accommodate The Washington Post new headquarter( K St NW ). Provide moving planning of end users and systems to the new headquater (K Street NW, DC) and to remotes offices locations (Reston office, New York Office).
- Interconnected Ashburn data center, AWS and K Street data center via direct connect supporting 8 VPCs (Virtual Private Cloud), Site - Site VPN, and dedicated WAN link running OSPF and BGP protocols.
- Provide technical support to AWS inter-region connectivity using Cisco ASAv to allow the management of application-as-service distributed over severals AWS regions and VPCs.
Confidential, Washington, DC
Integrated Network Engineer
Responsibilities:
- This involved establishing high speed link between network electronic at different train station and yards, assisting the installation of core routers, layer 3 switches --distribution head-end, configured and installed several access layer switches (approximally 1000 nodes).
- Contribution in the implementation of a scalable and highly redundant network backbone using single mode and multimode fiber optic cable. Installing network electronic (Cisco routers and switches) in support to Confidential ’s IP MPLS backbone.
- Supporting TIES-CENI and ELES department on RTU and Escalator Monitoring System project and working in collaboration with IT/Network communication project manager to cover work delivery and completion.
- Responding to network outage authority wide, and providing quick recovery of affected network segment (offices, cubicles, rail stations, branch offices, trailers, bus garages, and trains yards).
- Performing network traffic optimization and tuning by implementing OSPF, BGP, MPLS, HSRP, Vlan, VTP, STP, PagP, LACP, IP SLA protocol and their associated security features.
- Configuring software and hardware base QoS to meet business requirements for voice and video surveillance system. This include: weighted fair queuing (WFQ), priority queuing (PQ), class-base queuing (CBWFQ) and low latency queuing (LLQ).
- Contributor in establishing guidelines and standards for change and procedures base on ITIL, COOP and SDLC.
- Maintaining and updating Visio documentation of network topology for assigned project associated to each Confidential ’s locations.
- Monitoring Confidential ’s IP traffic and topology change in a 24x7x365 environment, responding, resolving and updating troubles tickets using Maximo software.
- Working closely with other groups: Network engineering, help desk support, security team, network operation center and telecommunications providers in order to troubleshoot VoIP, WAN and LAN services. Debug, diagnose and escalate issues related to network and circuits failure.
- Assisted peers Engineers during site survey and implementation of state of art Metro wireless base on 802.11n and associated features (AES, 802.1x….)
- Analyzed and defined network requirement, configurations, optimization and support for end devices provisioning. Upgrade of Cisco Routers and Switches IOS image using TFTP.
- Configuring and rack mounted of AVAYA Media gateway (G450, and G430) for analog and digital voice service and liaison to PSTN.
- Assigned task for the implementation of branch offices WAN links relaying on 100 Mbps TLS (Transparent LAN Service). Enabled MPLS protocol and verified continuity of operation.
- Adding new network devices in network management system by setting up SNMP features to allow monitoring through Solarwinds, CA spectrum and Ciscoworks.
- Performed end-to-end Troubleshooting of Voice and Data issues associated to Layer1, 2 and 3.
- Hands-on experience configuring and administering Window server 2008 and 2102 providing DHCP and DNS services.
Confidential, ROCKVILLE, MD
Telecom Field Engineer
Responsibilities:
- Planning the integration of customers’ access to telecommunications network infrastructure.
- Provisioning end users and controlling the reliability of service using RF testing tools.
- Core contributor for installation and maintenance of LAN, WAN and wireless network in commercial environment.
- Work off hours to Troubleshoot broadband FDMA/RF system base on DOSCIS 3.0.
- Provide technical support for rack mounted of servers and wiring of Data center.
- Experience in IP telephony, data communication and advance ondemand technology.
- Advance skill in Cisco routing and switching (Catalyst 2900, 3500,6500, Cat OS, routers-1800, 2600,2800)
- Providing 24x7operational support optimizing, troubleshooting, diagnosing, repairing and resolving telecommunications network performance, defects and faults.
- Hands-on experience using packet sniffer / analyzers and packet filtering hardware and software.
Confidential, GAITHERSBURG, MD
Jr. System engineer
Responsibilities:
- Configure and program the logic gate array for control interface module.
- Run and terminate network cable to network equipement and ends devices.
- Installed and tested the computer interface (PLC) for digital thermostat and energy management system for vendor: Trend, Halley Bradley, Siemens, and Honeywell.
- Configure ends devices IP address, DNS server, and setup remote access VPN connectivity for system maintenance personnel.
- Implemented remote monitoring base on SNMP protocol.
Confidential
Help Desk and Electronic Support Technician
Responsibilities:
- Maintenance and debugging of electronic system (Digital decoder, demodulator, microprocessor cards and circuit boards for various applications)
- Installation and maintenance of VSAT system for voice, video and data communication via satellite system.
- Maintain electrical system powering remote site wireless base station. This include UPS and backup generator maintenance
- Install, maintain and respond to troubles calls related to computer system and application failure.
- Installation of data network in commercial building and industrial environment.