PROFESSIONAL EXPERIENCE

Sr. Network Security Engineer Modis

Confidential

Responsibilities:

• Performed internal and external penetration testing wif extensive vulnerability assessment scans. Responsible for review of all remediation efforts across several IT teams.
• Designed secure environments dat adhere to PCI, SOX and HIPPA standards
• Responsible for teh following areas: Firewalls, IPS/IDS, VPN concentrators and
• Wireless. Worked closely wif Network Engineering team on future designs and severity
• ne outage troubleshooting assistance.
• Provided mentoring and cross training assistance to junior and mid - level engineers
• Performed an extensive remote network penetration test for two new GXS datacenters.
• Delivered a report including recommended network and systems changes to better secure teh environment.
• Provided Tier 3 Support to ATT clients. Support included routing and switching, load balancing and firewall support.
• Processed changes requested by teh clients or part of routine maintenance
• Responsible for supporting teh following technologies. Cisco Catalyst Switches, Cisco Firewall Service Modules (FWSM), Cisco CSS+SSLM, Cisco ASA and PIX.

Sr. Network Security Engineer

Confidential

Responsibilities:

• Lead engineer responsible for all areas of network security including IPS systems, Firewalls, VPNs,
• Designed secure environments dat adhere to PCI, SOX and HIPPA standards
• Responsible for teh following areas: Firewalls, IPS/IDS, VPN concentrators and Wireless. Worked closely wif Network Engineering team on future designs and severity one outage troubleshooting assistance.
• Supported and maintained a Cisco VoIP (UCM) system. Move, Adds and Changes as well as any troubleshooting.
• Performed internal and external penetration testing wif extensive vulnerability assessment scans. Responsible for review of all remediation efforts across several IT teams.
• Designed secure environments dat adhere to PCI, SOX and HIPPA standards
• Responsible for teh following areas: Firewalls, IPS/IDS, VPN concentrators and Wireless. Worked closely wif Network Engineering team on future designs and severity one outage troubleshooting assistance.
• Provided mentoring and cross training assistance to junior and mid-level engineers
• Supported and maintained a Cisco VoIP (UCM) system. Move, Adds and Changes as well as any troubleshooting.

Network Architect

Confidential Suwanee, GA

Responsibilities:

• Architected a small to medium business (SMB) hosted web and application infrastructure. Design requirements were to design a fully redundant, secure, virtualized and supportable infrastructure.
• SMB Design utilized teh following technologies and hardware. MPLS VRF to virutalize teh environments. Routing and Switches was provided by Cisco 7609's and Cisco Catalyst 6509’s. IGP routing was handled wif OSPF while also BGP was heavily utilized. Cisco ASA, FWSM and other security devices including IPS/IDS were utilized.
• Performed a network discovery in each data center in which using this data an internal Security Audit was performed. Results of this work were presented to client management along wif recommendations.
• Engaged clients security operation department to assist in performance tuning thirty plus firewall security devices. Configuration changes and rule base optimization was performed.
• Reviewed and scrutinized all proposed changes to firewall rules, IDS/IPS platforms as well as various other security devices. Authority was given to approve or deny changes dat were in teh best interest of teh business.

Confidential

Network and Security Design and Support

Responsibilities:

• Designed new IP backbone using OSPF wif Cisco and Extreme network switches for Atlanta Gas Light (AGL Resources)
• Performed security Assessment and penetration testing for CyberTrust valued customers. This included auditing over fifty pix firewalls, thirty Check Point NG clusters and numerous IDS platforms. Teh auditing of teh PIX and Check Point firewalls included but not limited to underlying OS security, standardizing teh configuration and auditing teh rule base for security holes.
• Performed an architectural review of teh Bellsouth Layer for Server and Global Load Balancing network design. Recommended configuration, hardware and design philosophy changes.
• Designed and Implemented a Cisco Optical network topology utilizing DWDM wif Cisco ONS 1554s. This was a mission critical design as Ceridian’s bandwidth usage, business continuity plans and disaster recovery depended upon this successful implementation.
• Performed an extensive network audit of existing design and provide a detailed improvement plan.
• Architected a new firewall solution based on Crossbeam and Check Point technologies. Project detailed moving from a single point of failure non-supported Raptor Firewall configuration to a fully redundant Crossbeam and Check Point NG Cluster.

SITA Network Architect

Confidential Atlanta, GA

Responsibilities:

• Provided technological expertise in network design, LAN/WAN deployment, upgrades and integration.
• Performed an extensive network audit of teh SITA network dat mainly used older network technologies and hardware platforms.
• Architected a new network design using industry recognized best practices and updated hardware platforms.
• Provided technological expertise in network design, LAN/WAN deployment, upgrades and integration.
• Evaluated network security standards utilizing several technologies: 3DES, AES, Digital Certificates, PKI, Intrusion Detection and Firewalls.
• Analyzed teh business impact of networks designs, including costs analysis and implementation time.