SUMMARY:

• Over 14 years of Relevant Experience / Cisco/Juniper/Checkpoint Shop
• Over 10 years of SME Experience with Cisco Network systems / Wireless and Unified Wireless
• Expert knowledge of Cisco AP’s and Network Centralized Security concepts and Policy
• Expert knowledge, design and deployment of Cisco Unified Communications Systems, CUCM 8.6, Unity 8.6 and Cisco Telepresence.
• Expert knowledge of enterprise security policies and concepts with Implementation
• Expert knowledge of Crypto VPN over IPSEC tunnel encryption with AES - 256 & PFS group 5 thru 14
• Expert knowledge of VoIP, Video over IP, EoIP
• Advanced hands-on-experience with VRF & VRF-lite routing
• Expert knowledge FWSM’s Cisco ASA 5585X and 5550, 5540, 5520 with AIP-SSM-10,20 and 40 modules
• Expert hands-on-experience with DMVPN TUNNEL networks design, deployment and troubleshooting over MPLS WAN connections
• Expert hands-on-experience with Nagios.
• Expert hands-on-experience with Cisco Works and Cisco Network Compliance Manager
• Expert hands-on-experience with Cisco ACS 5.3
• Expert hands-on-experience with Cisco 5508 and 8510 WLC
• Expert hands-on-experience with G2 SideWinder and Juniper M and J series routers
• Expert hands-on-experience with Cisco MARS configuration, deployment and Management.
• Expert knowledge with Cisco ACE-4710 load-balancers and Cisco ACE modules in Catalyst 6509-E
• Expert hands-on-experience with Cisco Call Manger version 8.6.2 & 8.5, Cisco Unity connection Server version 8.6.2 and UCCX
• Expert hands-on-experience with procurement, design, setup and integration of the following systems CUCM, CUCS and UCCX
• Holds an Active Full DoD Secret Clearance
• Holds a BS Degree in Computer Information Systems & in Computer Science
• Holds Security+, MCSE, CCNA, CCNP, CCVP & CCSP CCO # CSCO 11846731
• Holds Active Juniper certifications JNCIA, JNCIS-ENT, JNCIP-ENT, JNCIP-SEC
• Holds Alcatel certifications NRS-1, NRS-2, MRP
• Excellent Communication Skills
• RENO NV Resident / US Citizen / Avail ASAP
• Developing Best Practices policies to configure and manage Cisco Routers and Switches/ Juniper Routers.
• UNIX/Linux, Windows 2003 Server and Windows 2000 Server, assigning of rights, login scripts, and mapping scripts, also can install, configure and maintain entire network systems for Active Directory including DHCP, DNS, WINS, and protocols like TCP/IP, NWLink, IPX/SPX and CISCO Networking.
• Design and implementation of Standard and Extended Access-lists, Router Configurations for 2900 series and 3900 series routers, 2821, 3800 ISR’s, Cisco 7200 series routers, M10, M20 series juniper routers, IP, IPX, IGRP, EIGRP, OSPF, BGP, EBGP, RIP, PPP and Cisco 6500 E-Series Chassis & 4500 E-Series catalyst switches.
• Frame-relay Switching, IP and IPX/SPX for LAN/WAN networks and Internet.
• Implementing Exchange, IIS, VPN networks, RAS, ARCSERVE backup software and LOTUS notes administration. Virus protection programs McAfee, and Norton, PC Anywhere, and LAN analyzers. Frame-Relay configuration, ISDN, ATM primary lines, Remote Access, Cisco 6500 switches with VLAN configuration and deployment, DDR routing, FDDI and Token Ring Topology.
• Designed and Configured Net screen and Checkpoint Firewall, CISCO ASA’s, PIX and IPSEC tunnels.
• Expert hands on experience with MSFC modules and most Cisco network infrastructure devices.

TECHNICAL SKILLS:

Hardware: ASA-5520, ASA-5525x, ASA-5585X FIREWALLS, IPS MODULES, CSC MODULES EXPERT, CISCO CATALYST 6500 SUPS MODULES 32 AND 720 EXPANSION CARDS, PROTOCOL ANALYZER, LOADRUNNER, SERVERS, SCRIPT TESTING, NORTEL SWITCHES, CISCO AVVID, ALTEON 184, 3804 LOAD-BALANCERS, CISCO 1000BASE SX/LX GBIC'S, JUNIPER M10, M20, T320 ROUTER KNOWLEDGE, DSU/CSU, MSFC, 2900 CISCO SWITCHES, NETSCREEN SSG FIREWALLS, CISCO ASA 5580, 5540, 5520, FIREWALLS SERVICE MODULE EXPERT. WS-X522R 10/100/ PORTS MODULES, CISCO WLC & WSC, HARD DRIVES (SCSI AND IDE) ROUTERS, 7206VXR, ASR1100, ISR routers, 7600 series, 7505, 4000, CISCO CLEAN ACCESS, 3560, 3750X, 2951, CATALYST 4000, 6513, 6513E CHASSIS SWITCH, APACHE WEB SERVER INSTALLS, I/O DEVICES AND FIBER OPTIC DEVICES, DELL SERVERS, PATCH PANELS, CAT 5&6, WS-X6510 9-PORT GIG MODULES, CISCO AIRONET WIRELESS SERVICES. TOP SECRET TYPE-1CRYPTOS, FASTLANE KG-75 KG-75A, TACLANE KG-175. NORTEL 2700, 1700,600, CONTIVITY ENCRYPTORS

Software: CISCO NETWORK COMPLIANCE MANAGER; CISCO SECURITY MANAGER AND AGENT, CISCO MARS, SYNMPOSIUM, OPTIVITY, REMEDY. HP OPENVIEW, CISCOWORKS LAN & WAN MANAGER, NESSUS, RETINA, FIREFLY VECTOR SET, CISCO AVVID, CCVP, SOLARWINDS, VMWARE ESXi 4.x and 5.0, CISCO ISE SOFTWARE MANAGER. PPK. NETPRO, MECCA, SNM, ITS AND MICROSOFT OFFICE 2000, 2007 and 2010 HP OPENVIEW AND TAVVE. WINDOWS 2003, 2007 SERVER AND TERMINAL SERVERS, CISCO IOS AND CISCO WORKS 2000. EXPERT WITH NET IQ DEPLOYMENT AND USE POWERPOINT, MS-EXCHANGE, SMS, SNMP, CHECKPOINT FIREWALL, NETSCREEN, FIREWALL, NORTON UTILITIES AND MCAFEE COMMUNICATION INTERFACES (MODEMS, SCSI BOARDS NICS). 2 YRS EXP. WITH SNIFFER PRO, DISTRIBUTED SNIFFER

PROFESSIONAL EXPERIENCE

Confidential, Carson City

Network/Security Engineer Architect

Responsibilities:

• Expert Knowledge ASA-5520, ASA-5550, ASA-5585X, and Juniper SRX1400 Firewalls
• Expert Knowledge of Network Infrastructure Design & Management
• Implemented and Managed Cisco Nexus 7010, 7700 and Nexus 5596UP Switches configured with FEX 2248 extenders
• Expert knowledge and configuration of IPSEC DMVPN’s and Crypto Tunnels
• Expert knowledge of Microsoft Visio. I used it for detailed documentation of the Network topology
• Expert Design and deployment of Cisco Security Manager for management of ASA-5520, 5550, 5585X with AIP-SSM-40 IPS modules
• Expert knowledge of IP telephony (IPT) and design, deployment and support to Cisco VOIP networking architecture
• Expert knowledge and design experience configuring Call Manager 8.6.2 integration with Cisco unity Connection 8.6.2 to stand up voice mail boxes
• Expert knowledge and configuration of Voice Mail ports, line Groups, hunt-Lists, hunt-lists and hunt-groups for Cisco Unity Connection Server 8.6.2
• Expert hands on experience with upgrading/migration from CUCM & CUCS version 4.2 thru 7.1 and version 8.5.x and 8.6.2.
• Expert hands on experience with COBRAS.
• Expert integration experience of Cisco Unity Connection with Microsoft Exchange
• Expert experience with the installation and implementation of Cisco Telepresence Manager. Expert integration experience with Cisco Call Manager 8.6.2
• Expert hands-on-experience with Cisco Call manager setup of device such as Voice Gateways, Phones, Gatekeepers and Voice Trunk setups
• Scheduling of execution of Backups for Cisco Call Manager and Cisco Unity Connection
• Expert knowledge and experience using Cisco Network Compliance Manager (CNCM) to manage network devices
• Expert hands on experience with performing Upgrades to CUCM, loading TFTP files to device defaults and also performing backups of the CUCM
• Expert hands-on-experience with running reports from the Cisco Unified reporting for Monthly utilization reporting
• Expert knowledge in creating route patterns, hunt groups, route lists and hunt lists
• Expert hands on experience with creating inter-cluster SIP trunks between Cisco Call Manager Clusters
• Collaborated with Program Manager and other stakeholders as the IPT Architect on detailed design documentation packages such as Bills of Materials, planned/as-built drawings and installation check lists
• Headed and Support tested and integration initiatives as well as Data Center Migration
• Key contributor to the entire IPT transformation lifecycle—solid experience in discovery, site survey, design, and implementation phases of transforming customer locations from legacy voice systems to IP telephony solutions
• Developed site survey findings documentation and manage/implement site migrations from legacy voice systems to IP telephony solutions
• Prepared and executed IPT core and site transformation implementation plans
• Provided expert-level troubleshooting and configuration for multiple technologies associated with unified communications product and services focusing on the Cisco family of communication products such as Cisco Unified Communications Manager V8.X
• Supported resolution and root cause analysis of incidents or problems escalated from the Network Operations Center
• Key contributor and owner of critical delivery documentation: technical design documents, detailed drawings, service installation plans, site hardware installation Plans, dial plans, Site Acceptance Test Plan, Site Acceptance Plans, system review and maintenance plans
• Expert design and deployment and day-to-day management of Checkpoint VSX1
• Expert design and deployment of Cisco Access Control Server 4.4 & 5.3.
• Expert design, configuration and deployment of Cisco Network Analysis Module -2
• Expert design, configuration and deployment of Net flow version 5 and version 9 of Management and Monitoring

Confidential

CheckPoint Firewall Engineer Architect

Responsibilities:

• Expert Installation and Configuration of Cisco Security Manager
• Expert Installation and Configuration of Cisco Lan Management Solution
• Expert Installation and Configuration of Cisco Prime Network Analysis Module 3 modules in Cisco 6509E switches.
• Expert Installation and Configuration of Cisco Prime Network Analysis Module 2200 standalone servers.
• Expert Installation and Configuration of Checkpoint Firewalls using Smart Console R75 and R70
• Expert Installation and Configuration of Cisco ASA-5585X firewalls with SSP-IPS40 modules with Virtual Sensors.
• Expert Design and deployment of rules, signature sets and AD anomalies for 3 custom Virtual Sensor sets at the Prime Datacenters
• Expert deployment of AAA authentication on CSM, CWLMS and all the IPS modules. Enabled AAA authentication on the Cisco Prime NCS and Cisco Prime Network Analysis Modules.
• Expert design and deployment of Firewall rules and policies for the Datacenters
• Expert configuration and deployment of Net flow unto Cisco 7000 series Nexus Switches

Confidential

Load-Balancer SME

Responsibilities:

• Expert Knowledge Chaingroups and CSR creation
• Expert Knowledge of configuring SSL-Proxy Server certificates and Load-balancer Probes
• Expert Knowledge of configuring 2048 SSL-Proxy Keys and configuring NAT on Cisco Ace-4710
• Expert knowledge and configuration of Failover and Query Vlans on Cisco Ace-4710 Load-Balancers
• Expert knowledge of configuring Tacacs+ on Cisco Ace-4710 Load-Balancers
• Expert Design and deployment of Serverfarm and Rserver groups
• Expert design and deployment of port-channels on Cisco Ace-4710 Load-Balancers
• Wrote a FULL HOW-TO - DO Workbook for the client on how to configure, manage and troubleshoot the Cisco ACE-4710 load-balancers at the 2 Prime Data-Centers for TowersWatson
• Expert hands-on-experience of configuring and testing of Failover SSL Proxy, Serverfarm, Rserver scripts between the 2 Prime Datacenter Cisco 4710 load-balancers
• Expert hands-on-experience with configuring Policy-Maps and Class-Maps and Stick HTTP-COOKIE with ServerFarm groups
• Expert hands-on-experience configuring nat pools on the Ace interface
• Expert hands-on-experience configuring different security contexts for the Proxy context, Admin and other application contexts
• Expert configuration and application of Service-Policies to the layer 3 interface of the Cisco ACE
• Expert configuration of monitoring policies on the Cisco ACE
• Expert configuration of roles and port-channels on the Cisco ACE
• Expert design and deployment of procuring certificate authority structures for Signed certificates
• SME abilities with Cisco Ace-4710.

Confidential

Network Engineer Level V Architect

Responsibilities:

• Expert Knowledge ASA-5520, ASA-5550, ASA-5585X, and Net screen Firewalls
• Expert Knowledge of Network Infrastructure Design & Management
• Expert knowledge and configuration of IPSEC DMVPN’s and Crypto Tunnels
• Expert knowledge of Microsoft Visio. I used it for detailed documentation of the Network topology
• Expert Design and deployment of Cisco Security Manager for management of ASA-5520, 5550, 5585X
• Expert design and deployment and day-to-day management of Checkpoint VSX1
• Expert design and deployment of Cisco Access Control Server 4.4 & 5.0.
• Expert design, configuration and deployment of Cisco Network Analysis Module -2
• Expert design, configuration and deployment of Net flow version 5 and version 9 of Management and Monitoring
• Cisco MARS design, configuration and deployment into the network for proactive security threat analysis, network topology discovery and dynamic threat mitigation action. Cisco MARS was used for security log collection, it was used to visualize the path of security breaches and threats. I also used Cisco MARS in conjunction with Cisco Security Manager.
• Expert design and deployment of Cisco Works LMS.
• Expert design and deployment of Cisco Security Manager to manage FWSM’s and Cisco ASA’s
• Expert hands-on-experience configuring, deploying and implementation of Cisco Security Manager
• Expert design and configuration of ASA CSC SSM-20 & CSC SSM-40 Modules on ASA-5550 firewalls
• Expert design and configurations of All platforms of Cisco NEXUS switches
• Expert design and configurations of Crypto IPSEC tunnels with varying levels of encryptions from DES to AES256 with perfect forward secrecy group 5 and 7
• Expert hands-on-experience on IP v4 VLSM and IP V6 address Management
• Expert hands-on-experience with Cisco 6500 switches and All Cisco router platforms
• Expert hands-on-experience with Cisco IDS/IPS modules and CSC modules
• Expert hands-on-experience with Nitro Security 2250 IDS systems
• Expert hands-on-experience with Open Source IDS systems tools such as Snort and Squil
• Expert hands-on-experience with Fore Scout NAC appliance
• Expert hands-on-experience with Cisco Wireless Lan Controllers and WSC
• Expert hands-on-experience with Cisco Load-balancing and CSS
• Expert hands-on-experience with Cisco FWSM
• Expert hands-on-experience with Cisco IOS and Cisco Cat OS
• Expert hands-on-experience with Juniper M-series routers and T-series routers, including configuration, trouble-shooting and working with JunOS
• Expert hands-on-experience with DIACAP Security regulations
• Expert hands-on-experience with HIPAA Regulations and Standards
• Expert hands-on-experience with Documentation of LAN/WAN using Visio Diagrams
• Expert hands-on-experience with Design, Planning and Implementation of Enterprise VoIP Networks.
• Expert hands-on-experience with Cisco DWDM & CWDM Optical networks
• Expert hands-on-experience with Cisco Call Manger and Cisco Meeting Place Express
• Expert hands-on-experience with configuring QSIG, MGCP and SIP VoIP protocols
• Expert hands-on-experience with H.323 and SCCP gateways configuration
• Expert hands-on-experience with SIP Trunks
• Expert hands-on-experience with QOS configuration on Cisco ASA’s and Cisco routers
• Expert hands-on-experience with Cisco Unity server configuration and installation.
• Expert hands-on-experience with Cisco Call Center integration with Cisco VOIP.
• Expert hands-on-experience with Cisco voice Vlans
• Expert Knowledge and hands-on-experience with designing, implementing and administration of RSA/ACE Primary Server and Replica Servers

Senior LAN/WAN Security Network Engineer

Confidential

Responsibilities:

• Expert Knowledge ASA-5520, ASA-5510, PIX, and Net screen Firewalls
• Expert Knowledge of Network Infrastructure Design & Management
• Expert knowledge and configuration of IPSEC VPN’s
• Expert Design and deployment of Cisco Security Manager for management of ASA-5520
• Expert design and deployment CISCO MARS Global Controllers and Local Controllers
• Expert design and deployment of Cisco Access Control Server.
• Expert design and Implementation of MPLS Networks.
• Expert knowledge of IP telephony (IPT) and design, deployment and support to Cisco VOIP networking architecture
• Expert knowledge and design experience configuring Call Manager integration with Cisco unity Connection to stand up voice mail boxes
• Expert integration experience of Cisco Unity Connection with Microsoft Exchange
• Expert experience with the installation and implementation of Cisco Telepresence Manager. Expert integration experience with Cisco Call Manager 8.6.2
• Expert hands-on-experience with Cisco Call manager device setups such as Voice Gateways, Phones, Gatekeepers and Voice Trunk setups
• Expert hands on experience with performing Upgrades to CUCM, loading tftp files to device defaults and also performing backups of the CUCM
• Expert hands-on-experience with running reports from the Cisco Unified reporting for Monthly utilization reporting
• Expert knowledge in creating route patterns, hunt groups, route lists and hunt lists
• Expert hands on experience with creating inter-cluster SIP trunks between Cisco Call Manager Clusters
• Expert knowledge of Microsoft Visio. I used it for detailed documentation of the Network topology
• Expert Trouble-Shooting skills with on all types of network topologies.
• Expert hand-on-experience with Cisco FWSM and Cisco 10GIG Supervisor modules
• Expert design and deployment of Cisco Works 2000.
• Expert design and configuration of ASA CSC SSM-20 Modules ASA-5520 Firewalls
• Expert design and configurations of All platforms of Cisco routers and switches
• Expert design and configurations of Crypto IPSEC tunnels with varying levels of encryptions from DES to AES256 with perfect forward secrecy group 5 and 7
• Expert hands-on-experience on IP v4 VLSM and IP V6 IP address Management
• Expert hands-on-experience with Cisco 6500 switches and All Cisco router platforms
• Expert hands-on-experience with Cisco IDS/IPS modules and CSC modules
• Expert hands-on-experience with Nitro Security 2250 IDS systems
• Expert hands-on-experience with Open Source IDS systems tools such as Snort and Squil
• Expert hands-on-experience with Cisco NAC
• Expert hands-on-experience with Cisco IOS and Cisco Cat OS
• Expert hands-on-experience with Juniper M-series routers and T-series routers, including configuration, trouble-shooting and working with JunOS
• Expert hands-on-experience with Juniper/Net screen Firewalls
• Expert hands-on-experience with HIPAA Regulations and Standards
• Expert hands-on-experience with Design, Planning and Implementation of Enterprise VOIP Networks.
• Expert hands-on-experience with Cisco Call Manger and Cisco Meeting Place Express
• Expert hands-on-experience with configuring QSIG, MGCP VOIP protocols
• Expert hands-on-experience with H.323 and SCCP gateways configuration
• Expert hands-on-experience with QOS configuration on Cisco ASA’s and Cisco routers
• Expert hands-on-experience with Cisco Unity server configuration and installation.
• Expert hands-on-experience with Cisco Call Center integration with Cisco VOIP.
• Expert hands-on-experience with Cisco Voice Vlans
• Expert Knowledge and hands-on-experience with designing, implementing and administration of RSA/ACE Primary Server and Replica Servers

Confidential

Strategic Business Systems

Responsibilities:

• Supporting mission critical projects with administration and maintenance of Cisco 7606, 3745, 3725, 2621XM routers and Cisco 6509, 6513, 4506, Level-3 3550, 2950, switches. Configuring Alteon 3408 and 184 Load-balancers, Net screen 5200 Firewalls.
• Configuring Safenet and Nortel Contivity encryptors for WAN links all over the world at Consulates and Embassies. Provisioning of WAN links using commercial provides in the USA and overseas.
• Leading projects from inception to fruition on Top Secret Fast lane and Taclane installation, configuration; and administration. Working with PVC/PVP’s and SVP/SVC.
• Testing of network devices for proper configuration and trouble-shooting problems involving ACL’s and other Network access issues. Expert knowledge; of Cisco routers and Switches, incorporating them with CRYPTO’s for secure WAN connections.
• Certified Fast lane & Taclane Security Administrator experienced with Firefly key and TEKS and PPK filling. Hands on experience working with TacLane KG-194, KG-175’s and Fast Lane KG-75A. Configuring ATM protocols, such as ILMI’s, working with OC3’s, OC12’s and OC192’s.
• Using DTD’s to fill Encryption key sets such as Firefly Vector sets and PPK’s onto FastLane Crypto and Taclane’s. Configuring Safenet and Nortel Contivity encryptors for WAN links all over the world at Consulates and Embassies. Provisioning of WAN links using commercial provides in the USA and overseas. Creation and implementing of VLAN architecture for network segmentation and Security.
• Design and implementation of a WAN VPN IP Converged Security structure in 260 countries using Nortel’s Suite of products including Contivity encryptors encrypting GRE tunnels pushing IP SEC traffic, Cisco 7206 VXR routers with gre tunnels.
• Expert TCP/IP knowledge.
• Routing protocols such as EIGRP, OSPF and BGP expert knowledge
• Installation of Nortel Meridian 1, Succession, Call Pilot, Meridian Mail, ITG, OTM, BCM, and Symposium
• Expert Knowledge in Nortel VOIP installation and integration
• Hands on working knowledge of Symposium TAPI upgrade to Nortel recommended Communication Control Toolkit
• Packetizes and compresses voice and modulates fax for transmission over existing IP WAN.
• With IP Trunk's support of ISDN, MCDN and H.323 signaling features, helping customers be able to take advantage of productivity enhancers such as network-wide Calling Party Name and Number display.
• Cisco MARS design, configuration and deployment into the network for proactive security threat analysis, network topology discovery and dynamic threat mitigation action. Cisco MARS was used for security log collection, it was used to visualize the path of security breaches and threats. I also used Cisco MARS in conjunction with Cisco Security Manager.
• Centralized access to powerful Enterprise IP Telephony applications like Call-Pilot messaging and attendant services used network-wide through support of ISDN and H.323 signaling.
• Enabling networking of services to tie together distributed sites served by Meridian 1, Communication Server 1000, and Business Communications Manager (BCM) systems.
• IP Trunk utilizing ISDN D-channel signaling, H.323 protocol, and standard TCP/IP packets, while allowing seamless networking between Meridian 1 Systems in our enterprise network.
• Supporting standards-based Layer 2 and 3 Quality-of-Service (QoS) to maintain high voice quality over busy IP networks.
• Installation and Configuration of IRISnGEN for management of Teltronics alarms and PBX and network elements systems using SNMP
• Expert NORTEL PBX Installation and Maintenance
• Expert in Evaluation of new technologies from Nortel, Cisco, Juniper
• Expert Cisco Router Knowledge - 10yrs or more
• Expert Cisco Switching knowledge - 10yrs
• Intermediate Juniper OS router knowledge and Deployment of Juniper M-series routers
• Expert Nortel Encryptor knowledge
• Expert design and configuration of AVAYA voice switch
• Expert VOIP Support Expert Required
• Expert PBX- G3XX and 8XXX product line
• Expert Administration IMAC, System Administration
• Expert IMAC, System Administration and Troubleshooting
• Expert CMS, Vector, VDN and Announcements
• Expert Firmware upgrades, Security patches Back up and
• Expert Strong problem solving/change, time management
• Expert AVAYA Hub and Gateway Configuration and support
• Expert Call Center tech/Call Mgmt Systems, AT&T Network
• Knowledge of Juniper routers, -M10, M20 T320.
• Working Knowledge of Cisco AVVID
• Expert knowledge of Microsoft Visio. I used it for detailed documentation of the Network topology

Confidential

Senior Cisco Network Engineer CCNP

Responsibilities:

• Supported mission critical projects with administration and maintenance of Cisco 7606, 3745, 3725, 2621XM routers and Cisco 6509, 6513, 4506, Level-3 3550, 2950, switches
• Configuring Alteon 3408 and 184 Load-balancers, Net screen 5200 Firewalls. Configuring Safenet and Nortel Contivity encryptors for WAN links all over the world at Consulates and Embassies. Provisioning of WAN links using commercial provides in the USA and overseas. Leading projects from inception to fruition on Top Secret Fast lane and Taclane installation, configuration; and administration. Working with PVC/PVP’s and SVP/SVC.
• Testing of network devices for proper configuration and trouble-shooting problems involving ACL’s and other Network access issues.
• Expert knowledge; of Cisco routers, Switches and Cisco PIX Firewalls, incorporating them with CRYPTO’s for secure WAN connections.
• Certified Fast lane & Taclane Security Administrator experienced with Firefly key and TEKS and PPK filling. Hands on experience working with TacLane KG-194, KG-175’s and Fast Lane KG-75A. Juniper M-series routers (M-series) and Netscreen Firewalls. Configuring ATM protocols, such as ILMI’s, working with frame-relay circuits, T1’s, DS3’s, OC3’s, and OC12’s. Using DTD’s to fill Encryption key sets such as Firefly Vector sets and PPK’s onto FastLane Crypto and Taclane’s.
• Working Knowledge of Nexus repository Manager.
• Expert knowledge of Microsoft Visio. I used it for detailed documentation of the Network topology
• Configuring Safenet and Nortel Contivity encryptors for WAN links all over the world at Consulates and Embassies. Provisioning of WAN links using commercial provides in the USA and overseas. Creation and implementing of VLAN architecture for network segmentation and Security. Design and testing and implementation of IBGP routers and EBGP routers to support critical DOD network sustainability for the Department of Army. MPLS re-configuration of multiple Top Secret locations for redundancy and failover.

Confidential

Senior Cisco Network Architect Engineer CCNP

Responsibilities:

• Supported mission critical project with administration and maintenance of Cisco 7606 routers and Cisco 6509 switches.
• Configuring Alteon 3408 and 184 Load-balancers, Net screen 5200 Firewalls. Mission critical high-tech initiatives essential to National Security.
• Configuring and administering Cisco PIX Firewalls 535’s for forwarding traffic. Leading projects from inception to fruition on Top Secret Fast lane and Taclane installation, configuration; and administration. Working with PVC/PVP’s and SVP/SVC. Testing of network devices for proper configuration and trouble-shooting problems involving ACL’s and other Network access issues. Expert knowledge; of Cisco routers and Switches, incorporating them with CRYPTO’s for secure WAN connections.
• Certified Fast lane & Taclane Security Administrator experienced with Firefly key and TEKS and PPK filling. Hands on experience working with TacLane KG-194, KG-175’s and Fast Lane KG-75A.
• Configuring ATM protocols, such as ILMI’s, working with OC3’s, OC12’s. Using DTD’s to fill Encryption key sets such as Firefly Vector sets and PPK’s onto FastLane Crypto and Taclane’s.

Confidential

Senior Security Engineer CISSP

Responsibilities:

• Research, Scanning, Testing and evaluating several network system designs for conformity to NSA and DISA guidelines. DITSCAP, NIACAP, NISPOM and NIST 800 series use to evaluate Treasury agencies for Proper configurations on Net screen Firewalls, Citrix, UNIX and Windows servers.
• Security testing and evaluation, of several platforms during Certification and Accreditation. Scanning the various servers using tools such as Ness us, Retina and Net tool for vulnerabilities and open ports. Writing SSAA’s, Security plans, risk assessments, get-well plans and disaster recovery plans for several Dept. of Treasury agencies in addition to recommendations for improvement. Developing Scanning, testing and evaluation documents for several projects while reporting directly to the DAA and CIO.
• Active US Dept. of Treasury Clearance and Active DOD Secret Clearance.

Confidential

Senior LAN/WAN Cisco Engineer

Responsibilities:

• Monitoring of network with HP Open View Network Node Manager platform while also incorporating Cisco Works 2000 real-time application for configuration and maintenance of a large switched based local area network and of a large international wide area network.
• Worked with multiple carriers to resolve point-to-point and multi-point frame-relay problems, integration, installation, maintenance and analysis of new network devices into existing infrastructure.
• Calculation of TOC with recommendations and troubleshooting of that infrastructure while resolving trouble tickets with Remedy problem management system.
• Running of fiber under the floor in the data center and in cable closets for connections, working in a NOC environment with coax ATM, DS3, T1 and Frame-relay WAN links and fiber optic gig connections to web and lotus email servers.
• Management and troubleshooting of a number of remote sites WAN connections using Sniffer pro and executable scripts with clients ranging from 20 to 12000 and onsite users varying from, 000 users.
• Worked with Server and workstation services teams to resolve problems on the network.
• Provided network connections for host systems in the Data-center.
• Installation of Nortel Meridian 1, Succession, Call Pilot, Meridian Mail, ITG, OTM, BCM, and Symposium,
• Oversight on installation of enterprise wide FRAME to ATM links for load balancing into local campus and remote sites, responding to trouble tickets generated by help desk services in Remedy. Troubleshooting Network issues. Testing of routers and switches, for connectivity.
• Design, configuration and implementation of DNS Servers on Cisco routers, switches and Window NT/2000 servers.
• Hands on experience configuring, Cisco 5500, 5509, 5000, 6500 chassis switches as well as Cisco routers 7000, 7010, 4000, 7505VXR AS5200 and 2600 series. Expert knowledge of Multiple layer switching (MPLS) supporting over switches on the LAN.
• Worked in a large network of about and 5500 Cisco Switches as well as 30 high end Cisco routers.
• Very in depth knowledge designing and configuring Tacacs+ on Cisco Switches and routers, working with ISDN, T1's, T3's and frame-relay circuits.
• Also configured CSU/DSU units for frame relay or X25, for data use or for voice trunks. VTP domain and VLAN configuration using the command line and Cisco Works 2000's VLAN Director, experienced with using Cisco Works User-tracking to monitor and track all devices on the network using the IP address or Mac or host name.
• Managed and oversaw of entire Network with specific reference to Network.
• Infusion of Cisco AVVID technologies into a 14000-node network spanning the entire globe.
• Infrastructure and telecommunications of our ATM backbone to the Internet and other Exxon-Mobil campuses worldwide.
• Implemented EIGRP IGRP, OSPF routing Protocol as the routing protocols running on gigabit IP fiber up-link modules.
• Used Sniffer Pro and distributed sniffer to troubleshoot a network problem and also monitor packets on the network.
• Worked with Check point Firewall. Installation and Support Microsoft Windows 2000 Server and Active Directory.
• Responsible for the upgrade of 15 Firewalls from 4.1 Service Pack 6 to NG 5.0 Feature Pack 2.
• Created new NG management stations migrated policies and user database from 4.1 system without issue.
• Performed remote upgrade of several 4.1 firewalls to NG with no significant downtime or errors.
• Performed migration of single system to Cluster configuration of several sets of firewalls that were previously Cold standby configuration
• Network Operations Center (NOC) management. Administration of Citrix servers for remote delivery of windows applications to the desktop during the Windows XP migration from Windows NT. Using advanced Citrix Independent Computing Architecture (ICA) protocol to transmit the display, keyboard, and mouse data between them.
• Performed in house verification of policy installs prior to shipping Firewalls globally. Via router did SIC and policy push local with site IP addressing.
• Managed 50 Firewalls globally.
• Support of Cisco Routers and Catalyst Switches, Configuring Ports, and Configuring Interfaces. Network Support of many protocols such as EGP, BGP, IGRP, EIGRP, SNMP, X.25, Frame Relay, ISDN, RIP, SAP, TCP/IP, OSPF, VLANS, DHCP, NLSP, IPX/SPX, and NETBIOS.
• Installation and Support of Microsoft Windows NT 4.0 and WIN2K Server and Workstation
• Full Domain Design, Active Directory, Installation and Support.
• Installation and Support of Microsoft WINS Server.
• Installation and Support of Microsoft DHCP Server.
• Installation of Checkpoint Firewall on Sun Solaris server.
• Installation and Support of Microsoft Internet Information Server 4.0.
• Installation and Support of Microsoft Terminal Server. Print Servers and Network Printing.
• Basic Unix Commands, Telnet, FTP
• Dell PowerEdge Servers - Certified Technician
• Hummingbird Maestro NFS Server and Gateway
• Remote Access Server (RAS)
• Reachout Remote node and access software
• PC anywhere Access Software
• Shiva Dial-in Access
• Computer associates Virus Protection and Backup Software
• EMC Storage Drives
• Dell SAN Device Management

Network Admin/Engineer

Confidential

Responsibilities:

• Monitored the Network and its Users and group policies.
• Creation of new users and Managing Users accounts.
• Installation of Print Server and HP print devices.
• Security and managing Security system.
• Help desk issues and troubleshooting user issues and problems.
• Backing up the domain with ARCSERVE backup software.
• Windows 95 rollout for NT operating systems.
• Windows NT Server 4.0 operating systems on Compaq and Dell servers in a 500-user node network. Banyan Vines operating systems and Confidential Email system.
• Proficient in Microsoft Office 2000 use and LOTUS notes Admin. Configuration of routing protocols such as RIP, IGRP, EIGRP, BGP, EBGP, and OSPF, IS-IS, and X.25 configurations.
• Microsoft Exchange Server and IIS and SMS. Implementing and Configuring NT Servers in Enterprise.
• Unix Systems and HP printer Networks and VPN stations.
• DHCP, DNS, WINS, TCP/IP, NetBEUI, and IPX/SPX Protocols. 5500 Switches and Cisco 2500, 7200 series Routing and CSU/DSU devices and 3com Super stack switches.
• Designed and Implemented Fault Tolerance Raid 5 systems.
• Secured files and folders on NTFS partitions with Permissions.
• Set up audits logs on user access to the entire system. Frame-relay, CSU/DSU and ISDN configurations.
• Active Dod-Nisa-P Full Secret Clearance