PROFESSIONAL EXPERIENCE

Confidential

Responsibilities:

• Principle security architect for the Wireless business unit, providing technical support and strategy to the engineering and operations teams, which includes but is not limited to firewalls, IDS/IDP, forensics, ACLs/filters and endpoint security mechanisms.
• Provided security reference design for 5G network deployments, leveraging software - based NFV solutions tied to overall business SDN strategy.
• Provided security design for Inter-AS (Option C) VPN solution to merge Confidential Wireless with other Confidential business unit(s).
• Provided security design based on CLOS leaf-spine architecture built around Nexus 7600, 7700 and 9K platforms.
• Provided initial design for firewall and router ACL management using automation tools built on Tail-F and Itential Pronghorn to improve business unit agility and responsiveness.
• Provided detailed design on telemetry (network monitoring) solution to provide out of band data to downstream tools which included but were not limited to NIKSUN, Sourcefire, Tektronix, NetScout and SevOne.
• Provided reference security design for Confidential Cloud Platform (VCP) to allow other VZ business units the ability to maintain their security and performance tools while leveraging a common SIEM/SYSLOG platform based upon SPLUNK. This was strategic to align the business units while reduce CAPEX/OPEX by migrating away from the incumbent HP Arcsight solution.
• Major contributor (co-author) of VCP design guide, providing direction on private/public security standards with respect to multi-tenancy, NFV and security controls (i.e. security groups).
• Performed testing and certification of virtual firewalls from Cisco, Juniper, F5 and VERSA on KVM/OpenStack for deployment in Wireless.
• Reviewed network capacity in conjunction with observed traffic and trends in growth to develop a model for forecasts of traffic year over year.
• Provide 4th tier support to internal and regional networking teams for any Sev 1 transport and/or security-related issues.
• Worked with planning teams on all RFPs and RFQs for security and transport-related platforms.
• Certified and approved lab testing of all vendor platforms before acceptance/deployment on VZW network(s).
• Managed all projects from POC, to design, engineering, implementation and budget.
• Developed and delivered the business Plan of Record (PoR/budget) which currently exceeds 75M.
• Vendor management

Confidential

Network Security Engineer

Responsibilities:

• Network Security Engineer responsible for regional MSC firewalls, intrusion detection, forensics and data aggregation platforms.
• Provided design for SYSLOG solution built around Loglogic to support event processors (EP) seeing over 50,000 events per second.
• Provided design for Sourcefire (now Cisco) IDS/IDP solution deployed nationwide as Wireless standard.
• Provided design for NIKSUN Enterprise security forensics solution, deployed as Wireless standard for NSIRT team(s).
• Integrated NIKSUN and Arcsight to allow NSIRT team to pull packet capture/forensics info from Arcsight console. Customized NIKSUN solution to deliver CEF data to Arcsight.
• Provided design for TAP network(s), built around h/w from Net Optics and Brocade.
• Authored MoPs for routine changes implemented by Operations personnel.
• Provide design/engineering expertise for security tools and platforms used by security analysts (Sourcefire, Dragon, TippingPoint)
• Drove vendor RFP/RFI for MDM solution from Cisco, Bluecoat and Palo Alto. Tested solution(s) based upon requirements delivered by HQ Planning.
• Provide 3rd tier support to internal and regional networking teams for any nationwide transport and/or security-related issues.
• Worked with planning teams on all RFPs and RFQs for security and transport-related platforms.
• Performed lab testing of all vendor platforms before acceptance/deployment on VZW network(s).
• Provided management with monthly reports on firewall KPIs as well as ToP N reporting.
• Managed (3) resident engineers from NIKSUN, Brocade and Juniper respectively.

Confidential

Technician

Responsibilities:

• Responsible for network implementation in the Baltimore/Washington/Virginia market(s). This would include circuit turn-ups for VZW stores, DMZs as well as Moves, Adds or Changes (MACs).
• Department lead and SME for VZW nationwide MPLS deployment project. Conducted implementation for build out of MPLS core based upon L2VPN and pseudowires. The deployment finally evolved to L3VPN with MPLS-TE.
• Implemented migration from Enterasys IDS to Juniper IDS platform.
• Implemented daily, weekly and monthly changes across ATM and MPLS network(s) as part of normal augmentation effort(s).
• Provided support to internal and regional networking teams for any nationwide transport issues.
• Supporting nationwide telecom network comprised of OC-3, OC-12 and OC-48 circuits which were L1/2 connectivity for VZW stores.
• Worked 2nd shift (3:00 - 11:00) providing phone support for break-fix troubleshooting.

Confidential

Technician

Responsibilities:

• Supported 3G 1X and EVDO networks (PDSN FA/HA)
• Supported Enterprise, public safety and Federal customers and their various entry points into VZW network. This consisted of frame relay, dedicated circuit(s) and or VPN solutions.
• Utilize network tools such as E-Health, CiscoWorks and Agilent NetXpert for monitoring overall network performance.

Confidential

Desktop Technician

Responsibilities:

• Conducted Windows XP Migration for major financial institution.
• Conducted desktop information analysis to identify baseline requirements.
• Provided desktop support to staff after the system migration.

Confidential

Network Manager

Responsibilities:

• Provided desktop support to over 50 users comprising a 13-parish area.
• Maintained corporate VPN utilizing Cisco equipment. (1700 series/Cat 4K)
• Oversaw wireless/wireline communications systems.
• Analyzed and maintained departmental budget.