SUMMARY:

• Cyber Security Manager, Architect, and Leader with Senior Level hands on experience. Cloud and on - prem security, penetration tester, information security compliance gap audits. DevSecOp Security Engineer and DevOp compliance advisor.
• Implementation Lead Engineer Cisco ISE/ACS/Sourcefire/Firesight/FireAMP/WLC, Network Implementation, RF Wireless Implementation / Remediation / Optimization (Wired/Wireless/SAT), Cryptography, Leader, Smart Grid, CTO, CIO, VP, CISO, Info-Sec, NIST & NERC v3-v5, FedRamp, HIPPA, ISO 27001, PCI, SOX, SOC2, NIST 800-53, FISMA Compliance, and penetration testing. Insight into future networking and security products.
• I have over 20 years experience with all Linux variants (Redhat, Ubuntu, Debian, Deepin, KALI, CentOS, SlackHat, BSD, and Unix SVR4).
• I have been using the different Linux variants to run a plethora of software, including (but not limited) to the following services, DNS services, Radius Authentication, LDAP Authentication, Apache/PHP Web Servers, FTP Servers, POP3/SMTP servers,X Servers, RDP servers and general workstations.
• I also virtualize workstations in ESXi, Oracle Virtual Box, and All cloud providers, AWS, Azure and Google.
• Executive Leader, Business Analyst, Hands on Engineer with more than 25 years of experience in business and system analysis, wired and wireless network engineering, Smart Grid development and implementation, project management, Cyber/Network security and compliance engineer, Red Team testing, Fraud Protection, and international relations. I rapidly identify business and technical problems, formulates tactical plans, initiates change, and implements effective solutions that deliver customer satisfaction, security, profit, revenue, and cost reductions. Excellent proven experience leading, participating, and hands on engineering with cross functional teams delivering products and solutions while focusing on quality, time to market, compatibility, and innovation.

TECHNICAL SKILLS:

RF 3D, Wire shark, Aero Scout, Cognio, Radio LAN, SCADA, DNP3, RTU, IPv6, IPv4, Air Magnet Spectrum Analyzer, AutoCAD, Adobe Acrobat Pro, Unix, Linux, Ubuntu, Debian, BSD, Centos, Routing, Switching, Municipal Wireless Networks, RF Design, OSPF, BGP, International rollouts, Cisco WLSE, Cisco ACS, Cisco WCS, Cisco WDS, Cisco WLSM, Cisco ISE, Cisco Prime, Cisco ISE, Cisco Firesight, Amazon Web Services, Azure, Virtual Machines, ESX, Ware, Azure, ( Confidential )FTP, DNS, WWW, UDP/TCP, Proxy (Squid), ATM, KU Band Satellite, UHF, VHF, Ham (Amateur) Radio, 3G, 4G, LTE, CDMA, GSM, WiMax, PMP, IPS Stanford Project Management Professional, Product Manager, Director, Manager, SME, CEO, CTO, CISO, Utilities, Municipalities, Oil-Gas, Healthcare, Telecommunications, MPLS, Data Center, Security, HTML5, Mobile Development, Android Development, Quick Base, JSON, SQL, Phone Gap, Sencha, Eclipse, Android Studio, Geolocation, XBMC, Plex, Media Transcoding/Streaming, Penetration testing, Compliance, Crypto-Currency, BTC, HP SIEM Software suite, ARC Sight, KALI, Business Development, cybersecurity, Technology Integration, Merger, Acquisition Due Diligence, DevSecOps

CAREER HIGHLIGHTS:

Confidential

Sr. Information Security Engineer

Responsibilities:

• Coordinate and perform the implementation of Cisco’s Integrated Security Engine (ISE) across the Sutter Health System.
• Configuration, implementation, and integration of Cisco ISE for Guests, and staff Confidential over 300 hospitals.
• SME to provide guidance to the organization and team in selecting strategic options, and draft professional reports and present technical findings to a business audience
• SME to provide security technology Confidential an architectural level, as well as Project Management

Confidential

Network and Security Architect

Responsibilities:

• Execute training / Bootcamps to partners
• Onsite Partner Lab setup
• Mentoring a partner through and installation Confidential Customer site.
• Design Review Service for a migration or green field environment.
• Support the Partner Proof of Concept / Proof of Value (POC/POV) initiative by providing design support and on - site support of installation and configuration.
• Provide remote support for partners on installation and configuration problems and issues related to SDA, DNAC, NDP, NaaS (Network as a Service) and NaaE (Network as an Enforcer).
• Prepare best practice documentation

Confidential

Sr. Network and Cloud Security Consultant

Responsibilities:

• Worked with multiple clients as a go to consultant by leading, and managing cyber security teams on a global basis of which Identify network and cloud cyber security threats that may invalidate compliance.
• To contain such threats and protection of future security issues have implemented or updated processes, policies, and controls by implementing procedures, in Development, and Network monitoring.
• Technologies such as Cisco ISE, ASA, Sourcefire/FireSIGHT/FireAMP, Next Generation Firewalls, Cisco DNA, Cisco Prime, Checkpoint, McAfee Web and mail Gateways.
• Performed Security Compliance Assessment audits such as FedRamp, HIPPA, ISO 27001, PCI, SOX, SOC2, NIST 800-53, FISMA, and the Cyber Security Initiative, on both cloud (AWS/AZURE) and On-Premise networks.
• A lot of my work was in DevSecOps, working with developers on best practices and cloud and on-prem security.
• Managed several projects with geographically dispersed teams to create a POC for a shipside working VOIP phone system, upgraded wireless controllers, installed ISE, upgraded Cisco Prime appliances. I worked with ship-based network engineers on transitions, installation, and testing of low-orbit based satellites from EMC, which introduced a very large increase in bandwidth, also introduced Wi-Fi Hybrid solutions while Confidential port. I participated in mock incident response, both Shore Based and Ship based.
• Managed a team with serval team members in multiple countries to Upgrade ASA’s from 8.x to 9.x, Install Firepower and FireAMP for Endpoints (Sourcefire) In accordance with the “Motion Picture of America Association (MPAA) Content Security Model “
• Managed security compliance with the Dept. of Energy by Implementing Cisco ISE with Trustsec and Cisco ASA/Sourcefire/FireSIGHT/FireAMP for endpoints and Networks. Also developed and led a 2-week dive course on security best practices.
• Worked with Monster’s internal and external teams on integration and implementation of Cisco ISE, replaced Checkpoint Firewall with Cisco ASA, Mcafee mail Gateway installation.
• Worked on managing several projects managing internal teams as well as offshore teams on Integration and Implementation of Cisco ISE, Cisco Trustsec, Cisco AnyConnect and 802.1X authentication with Microsoft Active Directory, Guest Internet access, Cisco ASA, and Sourcefire/FireSIGHT/FireAMP.
• Managed the security improvement project with a large team contained of engineers in Canada, and the USA, as well as internal colleagues, and company employee’s. Transitioned company networks from one company into two while performing all upgrades. 
• Provide Network Security, Penetration Testing, and network defense strategies to clients throughout the world.
• Consult with major utilities on Smart-Grid Cybersecurity and physical security, and provide recommendations and technology implementation (NERC CIP v3 - v5).
• Provide Crypto-Currency Consulting and Security recommendations.
• Create Solutions based upon Microsoft Azure, AWS and Vmware vCloud Cloud Platforms, VM’s, Databases, Servers, AD, FIM, DNS, IPS, and other cloud base products.
• Migration of Windows XP to Windows 7, Windows 8.1, and Windows 10 operating systems.
• Cisco Prime, ISE, ACS, and 5508 Controller migrations.
• Leader for driving Security Breach issues to closure, while also advising customers on compliance with state and federal laws (NERC / NIST v3-v5)
• Served as VP for National Smart grid solution telecommunications provider.
• Extensive research on Current security issues. (TLS/SSL,Secp256r1(k1), ECDSA, AES, ECDHE etc.) Attacks and recent vulnerabilities (side-channel attacks, timing attacks etc.)
• Extensive use of ASDM and Cisco Security Manager.
• DevSecOps; Worked with AWS/Azure to move client assets from the Data Center to the cloud. Implemented Controls and trained client engineers on procedures.

Confidential

SR. Wireless RF Field Engineering Mgr.

Responsibilities:

• Responsible for supporting customers on an IPv6 global mesh network of Millions of subscribers/nodes within the service area of FPL, BGE, PGE, Duke and ConEd.
• Responsible for SCADA integration and troubleshooting with hundreds of thousand RTUs with DNP3 port mapping.
• Evaluated potential security issues with third party IEDs, RTUs, PLC’s, Sensors and Relays.
• In depth communication with customer on all external and internal project status.
• Responsible for performing Site Surveys for mesh deployment, and troubleshooting complex problems in the field.
• Responsible for management of third party companies/contractors to perform complex tasks.
• Self-Managed workflow.
• Created Linux Shell scripts that made tedious tasks run more efficiently.
• Worked with customers to identify additional security concerns, specifically compatibility and consultation of using the HP SIEM Software suite of applications for security and compliance
• Advised on AWS Cloud and Microsoft Azure AD, VPN, and FIM security solutions
• Trained other Engineers on the specific engineering tasks of Distributed Automation of Energy utilizing Silver Spring Technology.

Confidential

Principle Wireless Security and Implementation Consultant

Responsibilities:

• Responsible for on-site design of Wireless 802.11a/b/g networks utilizing Cisco Location based services (Cisco LBS), data, and voice while utilizing a complete Cisco infrastructure of Access Points (AP), Wireless LAN Controllers (WLC), Cisco Identity Service Engines (ISE), the Cisco Wireless LAN Solution Engine (WLSE), Trustsec, and the Cisco Wireless Domain Services (WDS) in Nationwide Veterans Administration medical facilities. Insured 100% availability of 54Gbs for support of voice, implemented QoS for voice priority.
• Analysis of building design and construction and its impact on environmental and mobile applications while designing enterprise class 100% fault tolerant wireless networks for use in mission critical applications.

Confidential

Wireless Network Engineer

Responsibilities:

• Responsible for performing Wireless 802.11 Site Surveys with AirMagnet survey software and installations Confidential .
• Responsible for documenting and engineering 802.11 Wireless and Wired High Speed Internet access infrastructure in assigned Confidential properties.
• Responsible for installing and configuring 802.11 Cisco Access points, Switches, Routers and Billing gateways.
• Management of crew (Wiring contractors, Technicians)
• Daily communication of project status with Hotel Management and Confidential Management.
• Management of Handoff Meetings to Handoff sites to Confidential NOC.

Wireless Security Consultant

Confidential

Responsibilities:

• Performed 802.11 Wireless site surveys using AirMagnet, and predictive analysis using RF3D and the Aruba RF Planner.
• Responsible for Securing networks with Cisco ASA 5500 series firewalls and transitioning networks from Cisco PIX series firewalls.
• Responsible for designing and implementing PCI DSS compliant wireless and wired networks.
• Responsible for GSM site surveys and deploying GSM 3G Picocells.
• Responsible for Implementing 802.11 Wireless Network security using Air Defense.
• Responsible for overall 802.11 wireless and wired network security assessments, recommendations, and implementation.
• Responsible for lowering clients’ bandwidth cost’s by implementing Squid proxy systems, and tight ACS security policies.
• Responsible for designing cable plants and managing outsourced Cable Crews and third party Technicians.
• Responsible for delivering proposals to clients (results of Wireless 802.11 site surveys, Wireless 802.11 AP Placement, Recommended Equipment lists)
• Worked for Continental Wireless on an emergency response unit for Continental Airlines for rollout in emergency locations utilizing KU based satellite, VPN, UHF/VHF radios, and WiMax.

Confidential

Wireless Network Engineer

Responsibilities:

• Responsible for performing Cisco Wireless 802.11 Site Surveys with AirMagnet survey software and installations Confidential branded Hotels worldwide.
• Responsible for documenting and engineering Wireless and Wired High Speed Internet access infrastructure in assigned Confidential properties.
• Responsible for installing and configuring 802.11 Cisco Access points (AP), Switches, Routers using QoS, VLANs and MPLS, and Billing gateways (Nomadix).
• Management of crew (Wiring contractors, Technicians)
• Daily communication of project status with Hotel Management and Confidential & Confidential Management.
• Management of Handoff Meetings to Handoff sites to Confidential NOC.
• Using Fluke Test Tools certified all completed network installs.

Confidential

Consultant

Responsibilities:

• Responsible for creating and managing a JAVA, C#, C++, AS/400 development team and launching a Financial Kiosk.
• Also managed an international team developing a patent-pending message set that defines the way paper currency is electronically transferred to different ATM cards.
• Responsible for managing the ISO 8583 message set development, and PCI compliance for the Switch Certification process with Pulse and MasterCard.
• Responsible for Setup, Installation, and troubleshooting, of the LAN/WAN including a Squid Proxy, Asterisk/VOIP Network, and Firewall rules.
• Worked with financial institutions and analysts to implement PCI certification.

Confidential

CEO / CTO

Responsibilities:

• Responsible for day to day operations, strategy, network design, and engineering.
• Chief Network engineer responsible for all Routers, Switches, DSL Circuits, ATM topology, 802.11 / WiMax Wireless topology, Circuit Management, and installation for preferred customer accounts.
• Managed over 30 employees and contractors, growing sales to over 3M a year.
• Negotiated, managed, and identified several acquisitions, mergers, and bankruptcy operational transitions.
• Managed external relationships with CLEC/TELCO and backbone partners.
• Responsible for over 10,000 end users. Managed TCP/IP network, including FTP, WWW, DNS, SMTP, IMAP, POP3 and database servers
• Responsible for Program Management, Managing thousands of Infrastructure related projects for customers IT outsourcing needs.
• Successfully managed startup, acquisition, and day to day operations of in house data centers as well as client data centers throughout the United States and the Rep. of Panama.
• Implemented Squid proxy server’s allowing the company to save over 35% in bandwidth costs.
• Managed System wide security, utilizing TACACS+, RADIUS and Cisco Access Lists.
• Managed VOIP program and offerings. Responsible for evaluating and developing VOIP solutions including Call Center, Branch/Home office integration, Least Call Routing, billing, and reporting.
• Responsible for Setup/Installation/Negotiation of 802.11 / WiMAX Microwave Wireless Towers and Base Facilities.
• Spearheaded 802.11 Wireless development, implementation and Management of several large WLAN networks in El Paso, Mexico, Panama, and Austin Texas with a user base of over 5,000 Wi-Fi end users.
• Performed RF 802.11 and WiMAX site surveys to identify RF interference in heavily congested Wireless Network communication towers.
• Responsible for rollout of several Cisco Wireless 802.11 Sites utilizing WLSE and ACS, Radius, and TACACS Authentication.
• Responsible for configuring Cisco router deployments using Cisco IOS, ACS, QoS, VLANs, OSPF, BGP and VPN’s.
• Responsible for managing Cisco Firewalls utilizing Cisco ACS Access lists.
• Implementation of Wireless 802.11 HOTSPOTS utilizing RADIUS, TACACS+ and ACS Authentication.
• Managed Tech support/Engineering team.
• Responsible for Certification, Testing, and development of CPEs.

Confidential

Project Manager

Responsibilities:

• Utilized SDLC and PMI Project Management methodologies to develop and launch hardware (Desktop PC’s, Notebooks, Servers and peripherals) and software (i.e., BIOS, Customer Applications, OEM Applications, and Firmware) to be released worldwide.
• Responsible for all Manufacturing Operations of New Products.
• Engaged core team of over 20 individuals from Marketing, Sales, Development, and Manufacturing, Engineering, QA, Technical support, procurement and logistics.
• Managed product introduction schedule worldwide across all manufacturing facilities.
• Focused on Time to Market, Quality and Manufacturing time.
• Defined New Product Introduction Project Template/Timeline from Business Contract acceptance to Ready to Ship.
• Responsible for the selection of International outsourcing of Rework, Manufacturing, and Technical support facilities.
• Oversaw the selection of OEM Manufacturing facilities worldwide.
• Representing extended team in core team meetings addressing all issues, and communicating schedule changes and or conflicts.