PROFILE:

• Highly experienced Senior Security Architect, with 15 year’s industry experience in Information Technology, providing advisory services, security and technology solutions for Confidential 100 organizations. Industry experience covers Telecommunication, Airline Industry, Banking, Managed Security Service Provider (MSSP), Carrier/Cable Service Providers and Enterprise Networks.
• Confidential ’s industry experience affords him opportunity to design, implement and manage technological solutions worth millions of dollars across 3 continents - North America, Caribbean/Pacific and Africa.
• Confidential is currently a Senior Security Architect at IBM for North America markets, and was formerly Network Architect for Confidential across 32 islands in the Caribbean and pacific, with 14 million subscribers.
• His experience covered leading global Network operations deliverables involving engagement, strategy and operations for Confidential .

CORE EXPERIENCE:

Security: Security/Cyber infrastructure - IPS/IDS/Firewall, MDR, Cloud Security, and SIEM Infrastructure Design and implementation. Akamai /WAF, Firewalls, Security Operations (SOIC), Incident Response (IR), Threat and Vulnerability Management, Cyber Tactical OPS Center (C-TOC), GuardDuty, CloudTrail, CloudWatch, Lambda, Shield, ArcSight, Qradar, Kibana, Qualys, Nessus.

Cloud Transformation and Security: CASB, IBM Security Enforcer, Ansible, AWS CloudFormation, Kubernetes, Microsoft Azure Automation, IBM Cloud factory.

Programming Languages: Java, C#, JavaScript, HTML, Python, C++, PHP. Node.js, UML, XML

Network Architecture: Telecommunication Networks Design, Architecture and Solutions.

Data Monetization: Big Data Infrastructure /Architecture; Data-driven decisions with insight into key subscriber, device, and application behaviors on the network; Network and Business analytics.

Project management: Managed and Driven project Implementation with Capex worth $20 Million Dollar with focus on Analytics, Data, Networks and Security.

Infrastructure: Cloud AWS, Azure, IBM, Dell, HP, - Enterprise grade Design and Architecture; Enterprise Server Infrastructures; blade servers, SAN disk & SAN Fiber switching.

Industry Standards: Experience working with industry-recognized security frameworks or standards such as PCI DSS, ITSG-33/22, NIST 800-63, CSC, TOGAF, ISO 27001 / 2, DO-326A, DO-355, ARINC-811, ARINC-821

Leadership: MBA with the following core modules Global Leadership, Business Leadership, Innovation & Change

PROFESSIONAL EXPERIENCE:

Senior Cyber Security Architect /Solution Architect

Confidential

Responsibilities:

• Manage company - wide information security governance processes.
• Establish recurring and long-range security and compliance goals and KPIs.
• Cyber Tactical Operations Center (C-TOC) and Vulnerability management.
• Cloud security and migration of American Airline ticketing platform to IBM Bluemix cloud, and Security intelligent and operation center monitoring
• SIEM - ArcSight, Qradar, Kibana Solution Design, Statement of Work, use case, Built, and other SOC operations.
• Cloud Security Solution Design and Architecture - IaaS, PaaS, SaaS, Public, Private and hybrid Cloud infrastructure.
• Define metrics, reporting mechanisms and program services; and create maturity models and a roadmap for continual program improvements.
• Develop and maintain security architecture artifacts (e.g., models, templates, standards) that can be used to integrate Client security requirements in projects & operations;
• Participate and contribute to internal and external audits relevant to information security and compliance. This includes the responsibility of managing the compliance that currently includes SOX and PCI.
• Create education and awareness programs and advise teams at all levels on security issues, best practices, and vulnerabilities.
• Further enhance an incident response program and protocol. Convene a Security Response Counsel (SRC) as needed in addressing and investigating security incidences that arise as well as review changes that have the opportunity to introduce greater risk to the organization.
• Perform special projects and other duties as assigned.
• Provide guidance on security architecture, practices & solutions to help business units to build & deliver solutions that meet Client security requirements;
• Recommend security strategies, plans, and investments needed for improvements to Client security controls;
• Support business units to respond to client questions, assessments, and audits regarding Client s security posture and controls;
• Support the development and maintenance of Client s security architecture framework and processes;
• Review, evaluate the design and operational effectiveness of security controls and countermeasures used to protect Client applications, services and solutions;
• Liaise with other security architects and practitioners to communicate Client security practices and processes

Principal Consultant / Solution Architect

Confidential

Responsibilities:

• Develop, Architect, and Manage Best Cyber/Network Security practices
• SIEM Services - Radar, Logarithm, Kibana, Splunk
• Aviation cyber security frameworks and resilient using F-Secure, McAfee, Logarithm for Security assessments of United Airline servers, platforms, avionic systems, ground systems and data links - United Airline Security Operation Center (SOC)
• Provide advisory services, security, hosting and technology solutions for Confidential 100 organizations.
• Cloud Security Solution Design
• Conduct Security Assessments for planned and unplanned initiatives across the organization.
• Provide strategic leadership for our external clients in relation to their Security requirements.
• Provides strategic leadership and management of SIEM / Threat monitoring for Confidential 1000 clients
• Responsible for Managed Firewall security services for Clients.
• Firewall Architecture - Design and Implementation
• Develop and Manage Security Operations/Defense Centre (SOC/SDC) Services
• Responsible for Design and Operation of Cyber security technologies
• Responsible for Design and Operation of Intrusion Detection / Prevention systems (IPS/IDS)
• Responsible for the overall quality of client support services and technical resolution processes
• Create and monitor key risk indicators, and implement corrective action plans to mitigate risks
• Client Engagement and Service delivery
• Focused teams on business objectives and tracked progress to ensure project milestones were completed
• Facilitate cross-team collaboration for globally distributed organizations - supporting Confidential Technology initiatives, Operations, and Consulting Partners, while evangelizing strategy, enforcing best practices and incorporating feedback from internal resources, partners and clients alike.

Network and Security Consultant

Confidential

Responsibilities:

• Lead teams across broad technical, financial and business disciplines. Focused teams on business objectives and tracked progress to ensure project milestones were completed on time, on budget and with the desired results.
• Facilitate cross-team collaboration for globally distributed organizations - supporting Confidential Global Technology infrastructure (GTI), Operations, and Consulting Partners, while evangelizing strategy, enforcing best practices and incorporating feedback from internal resources, partners and clients alike.
• Technical expertise in multivendor technologies: Ericsson, Bluecoat, Cisco, Juniper, Palo Alto, CheckpointDesign, Architect and Dimensioning of IP Network; MPLS, BGP, OSPF, IP VPN, DNS, Firewall, DNS, Tacass, F5 BIG-IP GTM and LTM devices, Aruba, Cisco WLC, Prime infrastructure.
• Design and Implement all Network solutions for the organization, including Network Security, Application Security and Information Security
• Dimensioning Network Architecture, security, engineering, and consulting
• Architect/design/support network architectures and provide platform leadership in areas of LAN/WAN routing, WIFI, DMZ.
• Technologies used: Virtualization (Solaris Containers, VmWare), Clustering (Sun Cluster, MS Cluster)
• Enterprise Server Infrastructures; blade servers, SAN disk & SAN Fiber switching.
• Experience with analyzing physical and logical network design documentation
• Configure / Install Firewalls (Cisco ASA, FortiGate, Palo Alto, Checkpoint, Juniper Netscreen, Algosec, Tufin)
• Expert level knowledge of Transmission Control Protocol/Internet Protocol (TCP/IP), DNS, and security protocols
• Assessed, research, and analyze business and system needs, exploring alternative options to recommend technology solutions and designs that meet sponsor needs.

Network Architect/System Architect

Confidential

Responsibilities:

• Managed and Driven project Implementation with Capex worth 20 Million Dollar with focus on Business analytics, Smart data billing systems, and Network analytics.
• Data Infrastructure /Architecture; Data-driven decisions with insight into key subscriber, device, and application behaviors on the network; Network and Business analytics.
• Cloud Security Solution Design and Architecture
• Lead strategy for network architecture and services to support data, voice, video and other network dependent traffic.
• Work with senior leadership and IT partners to formulate the tactical plan to meet the strategic direction of the network infrastructure team
• Provide advice and consulting support to the project teams directly or through team members
• Drive continuous improvement in service delivery processes to accelerate provisioning of new systems
• Collaborate with other enterprise architects to ensure data center designs are aligned with business requirements
• Identify the required network architecture components and frameworks
• Prioritize the architecture deliverables and establish short term, mid-term and long term plans
• Manage the design and planning of Resilience MPLS, IP and Core services networks
• Design, Architect and Dimensioning of IP Network; MPLS, BGP, OSPF, IP VPN, DNS, Firewall, DNS, TacassManage Cisco Meraki Wireless Solutions for the organization
• Translate customer business needs into solution.
• MPLS Traffic Engineering, BGP, OSPF, ISIS, EIGRP, RIPv2, VPN, GRE TunnelPlanning, designing and operating IP backbones
• Performs analysis of highly complex network designs.
• End-to-End (E2E) IP Backbone Network Design / planning, and Implementation
• Implementation of QOS for Enterprise and Telecom industry
• Design and Implement all security solutions for the organization. Such as Network Security, Application Security and Information Security
• Configure and Install Firewalls (Cisco ASA, FortiGate, Palo Alto, Checkpoint, Juniper Netscreen)
• Configure and install Cisco ISE, ASA, PIX, IPS, for Visibility, Control Access, and Contain Threats.
• Configure and Install Intrusion Prevention/Detection Systems (Cisco IPS, McAfee IPS, FortiGate IPS)
• Manage Web Application Firewall for the organization, McAfee SIEM, Symantec.
• Builds simulated networks in test labs to resolve highly complex problems and compatibility issues.
• Perform schedule audit for routers, switches, and firewalls to pinpoint configuration errors.
• Audit and analyze network devices, topology, and routing information against industry best practices.
• Generates standard project documentation including detailed test plan for highly complex networks.
• Ensure consistent capacity planning & reporting across the team
• Provide oversight of implementation to ensure plan is executed
• Create and enforce guidelines and standards
• Solution Architect: Design complete solution from RFP
• Manages Core Data and Internet networks and systems

Network Consultant/ System Architect

Confidential

Responsibilities:

• Responsible for all routing and switching issues for clients (Cisco Solutions Routing/Switching, Security, Wireless)
• Design and Implement all security solutions for the organization. Such as Network Security, Application Security and Information Security
• Configure and Install Firewalls (Cisco ASA, FortiGate, Palo Alto, Checkpoint)
• Troubleshoot Firewall and Checkpoint issues as related to clients
• Managed Next Generation Firewall Solutions
• Responsible for Security Analytics as it relates to client VPN (IPSec, SSL, Site to Site)
• Responsible for Network Design and Analysis for (PAT, NAT, TCP/IP, VLAN, L2/L3)
• Configured and managed Network Firewall solutions
• Responsible for troubleshooting Network issues relating to (BGP, EIGRP, OSPF, MPLS, SMTP, SNMP)
• Provide expert services with respect to IP NGN, and MPLS for Telecommunication, ISP, enterprise service provider, Local Internet Registries (LRI) in the areas of IP/MPLS Transport, MPBN, MPLS and transmission equipment, IP converged services and other enhanced customer services, network design and implementation for the IP Core network and Backbone with full documentation. High and Low level document design. Assess, manage and influence decision-making for Business priorities.
• Negotiating Vendors, Outsourcers and Contractor to secure infrastructure-specific products and services
• Guiding to preparing RFPs, Bid proposals, contracts, Scope of work reports and other documentation for project and associated efforts

Network and Security Engineer/ System Architect

Confidential

Responsibilities:

• High Level & Low Level Design documentations
• IP/MPLS Traffic EngineeringConfigure and Install Firewalls (Cisco ASA, FortiGate, Palo Alto, Checkpoint)
• BGP MPLS IP VPN design and implementation for Telecom
• IP Backbone Network and IP/MPLS Bearer Network configurations
• Project execution and delivery acceptance to agreed KPI.
• Performs analysis of highly complex network designs.
• Audit and analyze network devices, topology, and routing information against industry best practices.
• Generates standard project documentation including detailed test plan for highly complex networks.
• Develops proactive initiatives geared towards exceeding network KPIs
• IT consulting to the customers on Network Infrastructure, IP Security, Routing/Switching
• Analyze IP network traffic engineering and capacity related issues.
• Provide support to implements & maintains hardware and software standards of backbone network elements with regard to planning, expansion and growth of network
• Projects rollout coordination and supervision
• Ensure continued smooth operation of the global network infrastructure.
• Collaborate with other team members and groups to identify and develop scalable network designs, solutions and policy recommendations.
• FCAPS for next generation network (NGN).
• IP Transport Network
• Cisco, Juniper, Huawei, routers, switches, firewalls, and most data communication equipment configuration and support.

Network and Security Engineer/ System Architect

Confidential

Responsibilities:

• Configure and Install Firewalls (Cisco ASA, FortiGate, Palo Alto, Checkpoint)
• Cisco Routers & Switches configuration
• Juniper Routers & Switches configuration
• IP / MPLS Traffic Engineering, BGP, OSPF, ISIS, EIGRP, RIPv2, VPN, GRE TunnelPlanning, designing and operating IP backbones
• Design and Implement all security solutions for the organization. Such as Network Security, Application Security and Information Security
• Troubleshoot Firewall and Checkpoint issues as related to clients
• Performance fault management, configuration management, security management, accounting management (FCAPS) for next generation network (NGN).
• Conduct and participate in Product demonstrations in the field and Proof of Concept (POC)
• Enterprise and Data Center Architecture Design and Implementation.
• Develop & implement sales/marketing strategy, achieve sales against goals, collection of payments, Business Development, Relationship building etc
• Planning and prioritization of daily activities (team visits, checks, meetings, calls etc.)
• Owning, executing and delivering work requirements against agreed customer metrics
• Provision of cost estimations for planned work
• Provide feedback to the CTO and Network Director on progress, issues and observed behaviors
• Liaising as required with the customer and subcontractors on issues in the field
• Surveying new fiber routes
• Provision of design and route drawings for planned work
• Enterprise Network / Data Center Architecture Design and Implementation
• Network Management: Ethereal Protocol analyzer, Orion Solarwinds, PTRG
• IP Backhauling Project
• Manages technical network infrastructure operations in data centers and/or collocation sites
• IP solutions, Enterprise solutions, Interconnectivity and Virtual Network Operator (VNO).
• IP Transport Network
• Conversion of optical signals to BNC electrical for transmission over an SDH network.Cisco Nexus 2000, 7000 configuration for STP, GLBP and VPC