SUMMARY:

Senior Network and Security Engineer and proven problem solver proficient in designing and implementing reliable, secure, scalable, and redundant large - scale network solutions.

PROFESSIONAL EXPERIENCE:

Confidential, Bothell, WA

Senior Network and Security Engineer

Responsibilities:

• Tasked with investigating, documenting and troubleshooting primary facility, network, and security issues and recommending replacement for stability and performance.
• Assisted with product code reviews for security, stability and performance for optimal deployment.
• Analyzed and documented infrastructure support and costs to reduce waste and eliminate unneeded spending.
• Investigated and audited customer networks for issues preventing optimal performance.
• Designed and implemented a layer - 3 secure network for branch offices to be replicated across multiple sites to streamline and improve performance as well as reduce outages and latency

Hardware: Cisco Firepower Threat Defense, Cisco Cat9k, Dell ME4024 iSCSI

Software: VMWare vSphere, Cisco ASA, FTD and Firepower Management Center, SolarWinds Orion

Confidential, Bellevue, WA

Enterprise Information Security Analyst

Responsibilities:

• Tasked with investigating, documenting and troubleshooting primary datacenters for security and IDS/IPS implementations to pinpoint shortcomings for remedial action.
• Assisted with evaluation of Palo Alto IPS systems for business and customer networks.
• Analyzed and documented datacenter networks for BGP, OSPF and VRF routing to document and evaluate for vulnerability exposure.
• Reviewed and assisted with deployment of Checkpoint IPS software blade signatures for business network firewalls.

Software: NetBrain, Palo Alto IPS, Checkpoint IPS, McAfee Network Security Manager, Gigamon Fabric Manager, Cisco IOS & NX-OS, BGP, VRF, Cisco ASA

Confidential, Seattle, WA

Senior Systems Engineer

Responsibilities:

• Responsible for evaluating and deploying DIG infrastructure in Amazon Web Services Cloud environment in a secure and redundant configuration leveraging Palo Alto and Netscaler virtual hardware to protect systems from compromise.
• Co - ordinated with corporate security and networking teams for BGP handoff and redundancy planning.
• Designed and developed secure and stable AWS network for new project involving PHI data protections and redundancy to minimize outages and provide rapid remediation on notification of attacks or zero-day exploits involving developer s applications within our zone of control.

Software: Amazon AWS, Palo Alto VM, NetScaler VPX, Tenable.io, Jira, Confluence

Confidential, Everett, WA

Network and Systems Engineer

Responsibilities:

• Oversaw and completed project to migrate multiple outdated large enterprise physical Cisco ACS servers to new Virtual Cisco ACS cluster consolidating over 30,000+ devices administrated to provide secure, stable, and reliable authentication, and accountability for 15,000+ Administrators for the 4th largest multistate ISP network.
• Responsible for Cisco ACS integration during acquisition of 13 states from Verizon during handover while maintaining zero downtime on night of cutover with addition of 10,000+ devices to ACS system.
• Deploying VMWare cluster for backup and testing of Cisco ACS changes and updates, as well as migration of platform from Cisco ACS version 4.2 to 5.8.
• Responsible for evaluating and deploying Solarwinds Orion as well as Nagios monitoring solutions for multisite datacenter environment
• Capacity planning to address load issues as well as security issues for existing network and systems.
• Network troubleshooting for performance and capacity issues as well as outage resolution and BGP/OSPF routing issues.
• Administration, configuration and support of multiple Linux systems for backup, monitoring and application delivery in VMWare clustered environment.

Hardware: HP, IBM, and Dell servers, Cisco Catalyst 6500, Cisco routers, Cisco ACS, Cisco VSS, LogLogic

Software: Solarwinds Orion, Nagios, Solaris, AiX, Linux, VMware, Freenas, TACACS+, RADIUS, OSPF/BGP

Confidential, Dallas, TX

Network Engineer

Responsibilities:

• Responsible for evaluating and deploying Solarwinds monitoring solutions for multisite datacenter environment including netflow analysis.

Hardware: HP servers, NetQoS server, Cisco Catalyst 6500, Cisco VSS

Software: Solarwinds Orion, NetQoS Reporter Analyzer, RedHat ES

Confidential, Plano, TX

Network Engineer

Responsibilities:

• Network Engineer supporting medium sized company needing high availability for infrastructure.
• Maintain network and server backups for disaster recovery.

Hardware: HP and IBM servers, Dell Equallogic NAS, Cisco Catalyst 6500

Software: Windows server, VMWare, VRanger

Confidential, Dallas, TX

System Support Admin

Responsibilities:

• Linux Support Administrator for medical imaging development company.
• Install and administer medical imaging viewer system based off Redhat ES Linux and VMWare ESXi including upgrading for better I/O performance.
• Support, troubleshoot and configure iSCSI, SAN storage for AiX, and Linux Servers for multiple customer locations.

Hardware: IBM RS600 servers and Intel servers, EMC Storage, IBM DS4000 storage, Dell switching.

Software: VMWare ESXi.

Confidential, Plano, TX

Senior System Engineer

Responsibilities:

• Evaluate and design improvements for company that had previously outsourced IT management for more than two years, including ground up design of Windows 2003/2008 Active Directory infrastructure and integration of acquired companies.
• Configure and maintain multiple Cisco ASA firewall/VPN appliances for company security and inter - site LAN/WAN communications.
• Created and installed optimized multiple subnet network for main office and remote sites for global WAN network including IPSec links for security and Active Directory global topologies.
• Responsible for administering multiple VMWare server installations and provisioning VM s for developer testing and use.
• Responsible for design, implementation and integration of multinational WAN topology as well as integration of new sites due to company acquisitions.

Software - Active Directory/LDAP, Windows Server 2003/2008, Microsoft Exchange Server, Sharepoint, VMWare ESXi, Redhat Enterprise Linux Server, SMS Server, Identity Management

Hardware - Cisco 2800 and 3800 Routers, Cisco ASA 5500, Cisco Catalyst 3560G, Cisco VPN

Confidential, Irving, TX

Network Engineer

Responsibilities:

• Network Engineer part of ISP migration for national stores.
• Plan and implement configuration changes to remote Cisco routers coordinating with on site engineers to efficiently convert sites to new ISP and minimize down time.
• Configure and ship Adtran CSU/DSU’s to remote sites for conversion process.

Software - Windows XP, TCP/IP, MPLS

Hardware - Cisco switches, Adtran

Confidential, Dallas, TX

Systems Engineer

Responsibilities:

• Administration, Configuration, and Upgrade of all systems, hardware, and laptops for the America s, as well as support of all customers in the America s.
• Co - Designed and Implemented new network design for Dallas and Atlanta office for redundant connections for site-to-site VoIP bridge as well as data transfer.
• Optimized global AD/LDAP infrastructure to address latency issues.
• Replace failed UPS s with dual APC UPS s to ensure server and network uptime in the event of a power failure.
• Hardware and software procurement for North and South American resources.

Software - Windows Server, RedHat Linux, Active Directory/LDAP, DNS, TCP/IP, Microsoft Operations Manager

Hardware - HP Servers, Cisco 2500 switches, Cisco 2600 routers, Cisco PIX Firewalls

Confidential, Richardson, TX

Systems and Servers Contractor

Responsibilities:

• Deployed and configured test network for the QA testing environment as well as assisting in daily support and administrative roles.
• Assisted Network Administrator with planning and deployment of network migration to large enterprise scale configuration.
• Installed and configured RedHat Linux and Windows 2003 server test and Collocation environment.
• Installed and assisted configuration of Cisco 3600 router for T-3 link to SBC Datacenter for migration and data communications.
• Installed and evaluated VMWare solutions for possible implementation in Co-Lo facility.

Software - Windows Server RedHat ES, RedHat Cluster Suite, Linux-HA, Windows Cluster Server, Nagios, MRTG, Active Directory, DNS, TCP/IP, VMWare Workstation, VMWare GSX Server

Hardware - HP Servers, Cisco 2500 and 3500 switches and 2600 and 3600 routers, HP switches, 3Par InServ SAN