SUMMARY

• To excel in a leadership role, serving a corporate enterprise - computing infrastructure where me use my advance expertise in cyber security, network architecture, to provide secure SME and reliable technology solutions for teh company. 20+ years in Information Technologies, 13 years creating security architect and developing automation tools in IOT, NOC, SOC, and Big Data.
• Providing direct leadership development and management of small to medium size teams for global technology deployments enterprise wide.

COMPUTER EXPERIENCE

• Network Security and Penetration Testing
• Darknet/Sonet/MetroFiber/Fios
• Developing TEMPEffective Security Policies and Procedures (FIPS, ISO27k, FDCC, NIST, CIS, DISA, STIG, PCI)
• Current Theories and Practices of Network Security
• Network Design and Planning
• HA, Load Balancers, Redundancy Design
• Groupware Migrations (Exchange/Lotus)
• Project Planning and Troubleshooting
• Enterprise-wide Migrations
• BDR-Data Integrity/Recovery
• Root Cause Analysis
• Team Leadership
• ComSat/Iridium/GeoSat
• NIPRNET/SIPRNET
• Project Management
• Photonics-Diodes/Optics
• Disaster Recovery Planning
• Big Data\Linux\Wintel Platforms

PROFESSIONAL EXPERIENCE

Confidential, DC

Senior Security Engineer - Consultant

Responsibilities:

• Define NIST 800-53 for procedure assessments, risk, policy, and pen testing infrastructure for SAN top 25 and OWASP top 10.
• Management of application security development of automated security tools to conduct vulnerability scans, annual and quarterly audits.
• Internal and external audit of networks, systems, endpoints, applications, databases, IAM, IA, DLP, SSO, 2FA, PCI, CIS CSC, DHS, CDMAAS.
• Define security risk level to asset owners, stakeholders, contractors, vendors and controls managed by SOC, NOC for Production infrastructure.
• Document teh current system state of Dev/Staging/Production environment(s), conduct teh assessment of security architecture of teh assets. Prior to approval for Nessus and manual scans for risk rating of migrated assets to public production cloud environment.
• Pen testing software applications wif sql injection and python scripting. Bash script hashing wif Netcat. Provide in-depth network analytics and security vulnerabilities testing. Nessus, Kali, IBM Appdetect, Burpsuite, Ollybug, spider, Cyber-ark, scuba and DNS tools for exposure of information in reverse engineering attack vectors.

Confidential, DC

Director of Technology, Senior Security Systems and Network Architect - Consultant

Responsibilities:

• IT hardware and managed service provider for Navy Military Intelligence at IL and FL locations for support.
• Whitman-Walker HP network architect and deployment of Procurve hardware for a multi-site migration. Firewall, switches and data/voice.
• HP, IBM, NETAPP, ARISTA, and CISCO architect for SAP Enterprise Cloud engineer. Provide managed services and tech services for deployment of engineering team to SAP data centers. Rack/Stack cloud services throughout North America at 30 data center Co-locations.
• Direct management of application development team, cloud-Apps, SIEM management of security tools and application development.
• Windows Server 2012/Hyper-V deployment for law firm to utilize AD, DNS, RD Gateway, CA Authority, and VDI for Windows 8 Enterprise.
• Install Visual Network model 109 for T1 CSU/DSU circuits in a secured data center operation environment at teh FBI in Washington DC.
• Redesign/Extend wiring from 110blocks/routers/switches to new floor layout for teh (USACE) US Army Corp Engineers in Baltimore, MD.
• Break/fix for teh major airlines at Dulles, Regan, and BWI, desktops, laptops, servers, network devices, Wifi, RFID, PSTN, T1, and printers.
• Rack/Stack Cisco 3845 Routers, Ace 4710, Catalyst 3560/2950 series deployment for a new trading floor build out for JPMorgan and Chase. Configure teh router to bind four T1’s through PPP encapsulation, setup seven cisco airAP 1142 wifi. Terminate all data, voice, and pots lines.
• Cable management of fiber arrays, switches, routers wif multi-mode fiber inside data center operations.
• Deployment from Cisco to Extreme Networks POE switches for redesigned LAN throughout 300 locations for (BCPS) Baltimore Schools.
• Install Cisco TX9000/3000 telepresence multi-monitor video conferencing communications for Black & Decker and JPMC.
• Migrate existing clients to cloud based email solutions from Microsoft Office365 setup. AD/Office365 cloud sync for user authentication through LDAP and your local onsite Windows server 2008R2/AD/Domain Controller wif DNS migrations. Support MS Office 365/App-river.
• Pen testing software applications wif sql injection and python scripting. Bash script hashing wif Netcat. Provide in-depth network analytics and security vulnerabilities testing. SIEM data archiving for Security information and event management.

Confidential, VA

Endpoint Encryption Architect and Senior Security SME - Consultant

Responsibilities:

• SME best practice standards for OWASP top 10 CIS CSC, DLP, Data classification, and Encyption standards for Contractors/Employee’s.
• Identify non-PCI compliant assets at 28 data center locations for Amazon EC2, Cloudera, and Confidential Big Data Steel-Cloud.
• Query reports for AD, DNS, PGP, Bitlocker, Certs, and PKI key management for IDM, integrity and trust issues wif Endpoints.
• Research vulnerabilities dat translate to high risk from exploit-DB, Cobit 5, ISO, SOX, PCI, and IEC detection activities.
• Managing existing PGP infrastructure (Enforcer, Collectors, Applications and Endpoint agents)
• Developing and maintaining installation, configuration procedures for migration deployments and ongoing SCCM packed updates.
• Support all Endpoint encryption activities, documentation of SOP’s, known risk and automation assurance.
• Implementing enterprise deployment of Bitlocker WDE on Laptops, Desktops, Tablets and Mobile devices.
• Decommission End-of-Life Assets network wide for remediation of critical threats to impact DLP policies for Information Assurance.
• Architect PCI compliance for MBAM integration of Win10, Bitlocker, HSM deployments to meet PCI standards for west, central, east.
• Review audit logs from Qualys, Nessus, NMAP, CVSS, Wikito, Burp, ZAP, PCAP, SIEM for integrity, monitoring security response of SOC.
• Support regular compliance requirements wif integrated encryption POC for file-share application for business internal file-encryption cloud.
• Provide recommendations for automation of hotfixes, patches, and recovery procedures for securing assets from security breach.
• Evaluate vendor security products, develop Q&A testing, implementation and/or integrate security solutions for internal/ext audits, pentesters, and security deficiencies. Research emerging security technologies in support of active controls, enhancements and improvements to lifecycle.

Confidential, VA

Help Desk Manager and Network Engineer - Full time

Responsibilities:

• Management of IT solutions in a NOC environment to fix or route field engineers for immediate resolution.
• Unique management of 200 clients, to provide teh highest tier of support, workstations, servers, and network devices.
• Troubleshoot Windows server 2K3/2K8, hyper-V(vm), AD, Exchange 2K3/2K7, BES 5, SQL, Ironport, Symantec, and Viper.
• Deployment of packet trap on teh network for over 200 nodes to support remote network outages for escalation.
• Configure Hyper-V, DNS, DFS, AD/Exchange replication, Symantec Backup Exec 2010, Packet Trap, Solarwinds, and N-able monitoring.
• Give team mythologies on training and support of various clients to new employees for proper handling of calls.
• Deal directly wif software and hardware vendors to support RMA, Warranty issues, and purchasing products.
• Penetration scanning wif security tools to acknowledge vulnerable assists wif Backtrack, wireshark, and Nmap.
• Calculate teh datacenter annual loss expectancy over a yearly annual rate occurrence, to analyze loss of revenue.
• Instruct upper management on developing a plan for disaster recovery and creating a hot site for virtualization of physical sites.

Confidential, DC

Field Systems Architect - Part time consultant

Responsibilities:

• Break fix management of IBM hardware onsite for Air Canada, Saudi Arabian, and British Airways Airlines.
• Resolution for DC, GPO, network hardware, servers, desktops, printers, kiosk, scanners and RFID barcode scanners.
• POS system hardware and software troubleshooting, successful ticket completion and systems engineer for IBM.
• Visio, architecture planning for TEMPeffective data center layouts. Build Cisco ACE 4710 IDS/IPS in a clustered configuration.
• Deployment of ACE hardware in a data center environment for redundancy in Active-Passive configuration.
• TEMPEffective load balancing of HTTPS, SSL, Oracle, Apache web apps wifin teh guidelines of DEA contract configurations.
• Setup DNS site selector and global load balancing. Update teh Cisco PIX to apply teh appropriate rules and ACL.

Confidential, DC

Lead Systems Engineer - Part time consultant

Responsibilities:

• Provide management of installation procedures of other systems engineers. Delegate installation methods and cross training.
• Visio, architecture planning for TEMPeffective data center layouts. Build Cisco catalyst 2960 switches in a clustered configuration.
• Deployment of HP Proliant DL 380 servers for VMware ESX, HP-UX 11i, and Windows 2003 to manage teh POS application.
• TEMPEffective load balancing of LAN, WAN, SAN, APC power management wifin teh guidelines of HP deployment configurations.
• Resolving all teh security thresholds for FEMA Gov’t project. Writing security reports for documentation of TEMPeffective process.
• SQL (Active/Passive), ASP.NET injection, Penetration testing Cisco and Windows servers, government security compliance.
• Wireshark, Nessus, Backtrack, Nmap, Snort, Retina, NSAuditor, rules for DoS, DoD security policies and procurement.

Confidential, DC

Senior Network Engineer - Full time consultant

Responsibilities:

• Windows 2K3/2K8, Cent 5, Apache-Tomcat 6, Mono, IIS 6/7, Exchange 2K3/2K7, ISA, BES, ESXi, OMA, OWA, GPO, IPv6, DNS, VLAN, OSPF, BGP, SSL, AES, IDS, MLT, IPSec, NAT, ACL, GRE, and supporting multi-flavor Unix, Linux, Windows Server system platforms in a data center Co-location. Termination of POTS and T1 voice/data circuits in a switching environment for Toshiba/Cisco VOIP phones.
• Direct IT sales solutions, audit, analyst, and monitoring of services wifin an enterprise environment.
• Net/Voip Design, Secure practice of IT policies, Penetrate secure hardware/software DMZ/firewalls. Migrations wif Aastra (SIP), SG, Juniper, Nortel, Polycom, BackTrack, connectwise, NAT, VLAN, MPLS, AES, WPA. Developing BDR solution wif StorageCraft/Symantec Backup Exec for redundant NAS backups. Security assessment, technical assistance, and policies.
• Manage Cisco call manager for small enterprise solutions. Migrate existing phone systems to a unified solution.
• Support remotely over 300 servers in a SOC/NOC environment. High level onsite support for 100 small businesses.
• Assistant in project management wif bank moves wifin teh trading floor environment. Desktop and laptop refresh migration project, migrating secure data on workstations across teh bank network and storage servers (EMC clarion SAN).
• Tivoli server application replication and troubleshooting. (Office 2007, Citrix, Blackberry, Bloomberg, Oracle, SQL, VPN, etc)
• Secure disposal of data (GDISK, DoD) removal and hardware.

Confidential, NC

Information Technology Systems Administrator - Full time consultant

Responsibilities:

• Wintel Systems Admin for teh Target racing team headquarters, resolving issues wifin teh data center environment
• Configurations, deploy, troubleshoot, load balancing, and upgrade (Dell PowerEdge) servers wif Win 2K3 R2, desktops, laptops, Cisco, Avaya switches, VOIP (Avaya), VPN, DMZ, IntelliSAT, IEEE 802.3, OSI, blackberry, and windows mobile.
• AD/Exchange, CCS, IIS 6.0, VB, MOM, NETMON, PERFMON, WireShark, SecureIT, GPO, MSFTS OCS/Live meeting, MDS, BES, GOOD, TFTP, ISA, SQL, IMAP, LDAP, DC, SNMP, WIN, DNS, J2EE, SharePoint, and Dynamics.
• Package vendor released updates, Microsoft patches, SMS software application deployment and administration.
• SMS client/server health reports, WMI repository errors, resolve IPSec, subnet and any network related issues.
• Designing a repository backup plan, creating Lun/Raid groups, NetApp, HBA’s, utilizing Symantec Backup Exec 11D/CPS. For instant snapshot replications to EMC CX/AX Clarion series of fiber arrays for redundant backups.
• Lan/Wan application deployment of non-Microsoft apps, utilizing login scripts and Wise Package Studio (WMI).
• Cisco Aironet 1131/1240 migration for replacement of Netgear wifi to Cisco, for teh internal wireless LAN at teh headquarters.
• Troubleshoot, configure, and manage teh project for TEMPeffective IT team deployment of Cisco AP solutions.
• Hardware analyst and architecture design of servers for Microsoft compute cluster pack for real time simulation using Matlab.
• Glowpoint IP video conferencing Gateway to stream live HD video for network broadcast television stations.
• Visio diagrams for network and server layouts, upgrades for forecasted projects and a knowledge base.
• Migrating servers to ESXi to vitalize server load. Wireshark and SecureIT for analyst of security on teh SOC/NOC.
• Turning around teh IT department communications in teh organization. Assure server sustainment reporting requirements, on time support for remedy ticketing system, and complete problem resolution in a 24x7 priority.
• Corp. Investment Security Exchange 5.5 and 2003 e-mail support during migration from IMAP to Exchange for 700 users. Configure Wintel, Active Directory, DNS, LDAP, SMTP, Outlook 2003, and resolved any migration issues.
• Working on multiple projects to support domestic and international users on a 11,200 user migration from a Exchange 5.5 based email system to an Exchange 2003 based system. Providing swing migrations from Notes to Exchange using teh Quest data migration tool.
• Administer teh BES 3.4 and 4.1 servers for 2500 users over various network providers and blackberry pda’s.

Confidential, NC

Help Desk, Desktop Support, and Field Support Engineer

Responsibilities:

• XP Data Migration project, migrating secure data on dell laptop and desktop pc’s across a large area Network. Pushing applications, updates, using Tivoli. Trading floor bank moves wifin dmac.
• Merlin project, Windows XP server/desktop data migrations. New HP servers, desktops, and dell laptop equipment upgrades in 7 states. MOM, HP BAC, Site Scope, Patrol, Netuitive, and QPasa for monitoring servers.
• Providing technical support for Fleet bank migration, migrating users from Exchange 5.5 to 2000.
• Escalating trouble tickets from teh help desk que to resolving issues dealing wif data migrations and Blackberry PDA’s on a WAN. Moving people’s outlook data, to work wif teh current migration. Assign delegates, Moving, restoring pst,
• Providing onsite support for installation, repairs, and migrations.
• Troubleshooting software (backup exec 9, exchange server, Active directory, office xp/2003, outlook, McAfee’s, Noton’s antivirus, citrix, NT 4.0, Win 2000/2003 Small Business Server, and other proprietary apps called spabiz and calyx) and hardware (desktops, servers, laptops, printers, PDA, wireless network cards and base stations).
• Providing help desk phone and email support for a mortgage and law firms across teh USA.
• Documenting trouble tickets wif Magic ticketing software.
• Troubleshoot software (Mainframe, Office XP, Outlook, Norton’s Antivirus, Citrix, Novell, Windows, and other proprietary database software, AP3) and hardware (Desktops, Servers, PDA, Wireless LAN and wire access points.
• Network admin wif AD and Novell admin support wif creating accounts, changing passwords, and exchange 2000 migration issues.
• Remotely fixing problems wif VPN software to repair or update teh user’s laptop and desktop (pc anywhere, carbon copy, RDP) in a windows 98/xp/2000/4.0 environment.

Confidential, SC

Cell Site Network Engineer - Full time consultant

Responsibilities:

• Responsible for improving system performance and optimizing teh southeast Cellular system. Reducing lost calls and inTEMPeffective attempts to resolve cell site outages.
• Troubleshooting and resolving system problems dat include, but are not limited to, hand off failures, frequency related issues in poor topology, radio and network blocking, poor quality, low data rate and data capacity; troubleshooting and resolving customer service issues in a fast environment.
• Developed translations for new cell sites, cell site modifications, cell site re-location, carrier additions, cell site updates or modifications as well for new switching equipment verified and optimized new network equipment to meet or exceed original network configurations of FCC regulations.
• Long lead performance solutions tracked and included in network upgrades/redesigns and ensured network latency/performance maintained consistency wif changing requirements and needs of teh business plan.
• Supported RF design in teh development and approval of new cell site research. Locations as required for traffic needs, baseline test and other performance issues. Coordinate wif teh project manager leads on developing schedules; identifying action items, and completing deliverables on time and under budget.
• Business development and project management to provide safe, certified (FDA) laser light show rental service, and sales.
• Troubleshooting engineered hardware (Amps, Galvanometer, AC/DC), servicing hardware, circuit boards, Pangolin, Full Auto.
• Design, building, and repairing laser projectors. Servicing ion (Krypton, Argon, and HeNe) and Solid state lasers (DPSS, YAG)
• Indoor, Outdoor shows by topology landmark of air traffic wifin a safe fly zone of FAA regulation.
• Pixel parity indexing 3D FPGA simulation wif Matlab. UV 355nm Laser 3D Mapping visualizer detection of known aramount threats for cyber-intelligence against boarder protection ICE/DHS and DMZ high-risk zones where officers are able to monitor in 24x7 SOC.
• HEL-TD Army development of LAWs for area defense laser system for Naval and Aerospace integration. Use of high power femtosec pulses for KW’s of photonics energy for direct advancements of future solid-state electrical weapons for Missile defense.
• Darpa Mobile-Force Protection against no fly zones, 3D map anomalies, track and re-enable flight path - man in middle attacks, spoof SSID.

Confidential

Data Center Analyst

Responsibilities:

• Providing Tier 3 technical support in a NOC environment.
• Cable modem deployments, moves, add, and changes to user accounts wifin South Carolina Roadrunner, EarthLink, and AOL WAN/LAN.
• Utilize docsys tools for network latency, RF signal/noise issues, Hubs, Taps, and network outages.
• Escalate tickets to teh network engineers for deep recovery to ticketed related issues.
• Resolve winsock2, DNS, TCP/IP, routing, switching, wins, gateways, security, trust, VPN, Outlook, Exchange issues wifin TEMPeffective time limits to meet teh customer’s needs.
• Resolving technical problems by providing onsite and phone support. Analyzing problems wif windows access database.
• Computer Networking, workstations, hubs, routers, switches, running network cables, isolation of problems, configuring and initializing teh network.
• Providing deployment support for new computers, servicing and upgrading old computers.

TECHNICAL SKILLS

Array/Backup: DLT Tapes, Raid 0/1/3/5/10, Blue Ray DVD, EMC AX/CX (Clarion), DMX (Symetrics), NS (Celera), XSAN

Circuits: ISDN, HDSL, DS1, DS3, T1, T3, OC48, Frame Relay, ATM

Handheld Devices: Blackberry 957, 6750, 7250, 7130, 8700, Pearl, Curve, Bold, Storm, Treo 650/700, Palm, HTC, Samsung, Motorola, Handspring, Iphone

Electric: AC/DC, AMPS, CAPs, Transformers, Circuit Analyst (in phase and/or out of phase)

Security: Cisco Aironet, Cisco VPN Concentrators, Watch dog

Servers: Compaq Proliant, Dell PowerEdge, HP Alpha/Intel, IBM

Switches: Cisco 1950/2960/3800, 3Com SuperStack, HP Procurve, Extreme, Arista

Routers: Cisco PIX, Netgear Prosafe, Linksys, Juniper, Nortel, SG (SecureComputing)

RF: CCTV, DTV, Dishnet, EchoStar, Hughes (C/Ku), SatCom, IntelliSAT, 802.11b/g, GSM, GPRS, TDMA, CDMA

VoIP/Video: Aastra, Avaya, Cisco, IC3, Nortel, Polycom, Shoretel, glowpoint HDSoftware

Accounting/Law Software: Peach Tree, QuickBooks, MS Accounting, Times Matters

Admin Utilities: DameWare NT, LDAP, Netuitive, MOM, Patrol, Site Scope, HP BAC, QPasa, IBM NetCool

Backup Utilities: Veritas Backup Exec 8.6/9.1/10/11D/CPS

Cad Utilities: SolidWorks, AutoCad 14/15/2000, 3D Cad, EdgeCam, SurfCam

Graphic Design: Photoshop CS2, Adobe Illustrator

Email Migration: Quest Migration Tool v3.6.2, Exchange 2000/2003/2007 Migration Wizard, ADMT

MS Software: Active Directory, DOS 6, DNS/DHCP, MMC, Exchange 5.5/2003/2007, Group Policy Manager, IIS 6.0, CCS, Office 2000/XP/2003 Pro. SMS, Support Tools/Resource Kits, SQL 2000, TCP/IPMortgage/Trading Calyx, Bloomberg

Operating Systems: Windows NT 4.0/2000/2K3\2K8 Server, 95/98SE/XP/VISTA, HP-UX, Solaris, Unix, OSX

Proprietary Applications: Acronis, Lotus Notes 6.0, Blackberry Enterprise Server, Ghost 8.0, StorageCraft, IOS, DOCSIS

Security: Auditor 2.0, AVG, KDE, BackTrack 1-4, Black Spider Mail Filter, Burst Internet Proxy, Checkpoint Firewall, Etheiral, ISA Server 2004, NetCat, Nessus, Nmap, NOD32, McAfee Foundstone, McAfee Eplicy Orchestrator, PGP, Webshield, Groupshield, Mozilla Project, Pest Patrol, Spam Assassin, Snort, SSH, SSL, Surfcontrol, Tripwire, VNC, WebSence Webfilter, WEP/WPA/WPA2E, Winsock Proxy, Super Antispyware, Malewarebytes, Wireshark, Webroot, Qualys, Wikito, Burp, OWASP ZAP, 01000111 01110101 01110010 01110101

Storage/Virtual: NetApp, CapData, PowerLink, Storage Foundation, VMWare ESX 3.5, ESXi 4, ESX 5/6, EC2, S2

Offensive Security Columbia, MD-December 2009:

Course Study: OSCP