SUMMARY

• Years: Over 25 years of experience in the technical and financial industry.
• Years: 7 years of VOIP Support and Migration experience
• Years: Over 20 years of Network Design and Security design (Firewalls, IDS, Load Balancer and Proxy)
• General List of Hardware/Software supported,: Below Experience
• “NON - Hands-on”experience: Managed deployments of Login certifications for Trading on Exchanges, Deployment and move of Systems ( Linux,Microsoft,SAN), Deployment of and move of Corporate services for Exchange, File sharing.
• ROUTING: Designed and supported multiple designs using BGP at edge with redistribution into OSPF and EIGRP for IGP. Use of EIGRP or OSPF depending on design or company.
• CISCO VOIP: Migrated three different companies. Amounts of 100.200 and 700 phones from Nortel 11, 81C to Cisco UCM, Unity, Cisco Gateway using SIP, PRI’s (with Redirect)
• AVAYA VOIP: Supported and added users in branch increments from Avaya PBX to Avaya Media Gateway Session manager and Comms Manager for 300 Branches.
• VOIP: SIP, H.323, PRI’s
• VRF routes: Have created multiple VRF’s for MPLS, VOICE Routing using BGP for routing.
• VPN IPSEC Site to Site - Configured Multiple designs w/ Cisco ASA and Routers using VPN IPSEC, GRE.
• VPN Client to Site - Configured and supported Client to site VPN on Cisco ASA. Managed a network of 20 branches all using VPN S2
• Network Routers and Switching Hardware Platforms: Cisco IOS, Cisco Nexus platforms, Arista, Blade Networks, Juniper (light), Cabletron, Bay Networks, Extreme, 3COM, HP switches, Brocade
• Firewall and Load Balancer Hardware: F5 BIG IP - LTM, Foundry 850, Cisco CSS, Brocade ADX,
• Designed: S.E.F. Venue Networks for AIEN LLC and TD Securities
• Migrations - Led TD Securities Migration from Quantity = 15 Cisco ASA and PIX to Quantity = 8 each Palo Alto 4020 and 5050’s
• Migration: Led and Designed Direct Edge move and launch of their “Stock Exchange” from 545 Washington NJ to Equinix NY4. Designed server and cable layout, Network design and Firewall and/or ACL placement.
• Design: Have Led, designed, deployed and ultimately setup management of 5 Major Network build-outs and over 20 small to mid-size Network build-outs.
• Designed: Branch networks with MPLS, GRE, IPSEC w/BGP and OSPF using Riverbed WAN Optimizing for WAN
• Load Balancer Experience: Foundry 850, F5-BIG IP (LTM) Brocade ADX, CISCO CSS
• Firewall Experience: Cisco ASA, PIX, Palo Alto, Checkpoint (7 years ago)
• Design and Audit: Designs included managing the integration of 350 clients with 1gig to 10 gigabit circuits or cross connects. Used BGP at Edge, EIGRP for IGP for Multicast Market data feeds to clients and OSPF for FIX Trading networks. Segmented Production trading from Corporate services by a throttle network. This network was audited and approved by the S.E.C as it was the New Stock Exchange for the United States at the time. The Audit was called an “A.R.P. Review”
• Migrations: Designed and Led TD securities Migration of trder and server “logins” from legacy network in NYC to Equinix and Savvis S.E.F Trading network and managed various S.E.F.s or ECN (BrokerTek, Tradition, Velocity,Garban (Brokertek), Prebon, ICAP…and more)
• Migrations: Amaranth, Led Migration 350 Employees from Building to building which included all new servers, Phones, Turrets, Feeds etc.
• Design: PIM w/Multicast Sparse-Dense Mode for Clients registering for EDGA EDGX Multicast market feeds.
• Network Management: Orion NPM, NCM, ISITUP for TCP port or WMI service monitoring. Orion Syslog, Splunk Syslog or Syslog watcher (my favorite as it is free) for alerting on parsed errors.
• 1 year of Source Fire IDS/IPS implementation and management. (7 years ago)
• GRE: GRE Tunnel w/IPSEC S2S using BGP and HSRP w/route tracking failover,
• VOIP migrations from Nortel 81 to Cisco VOIP system 2x and once to an Avaya Media Gateway, communication manager and session manager.
• Have been Lead Level 2-3 Analyst where I either assisted in or led the implementation of monitoring methodology and troubleshooting procedures.
• Designed full network design with MSFT platform Servers, SAN, Network, SAN switch, RAM SAN, Firewalls, Load Balancers

TECHNICAL SKILLS

• Exegy Ticket Plant solutions
• Blue Coat - support only
• Riverbed WAN Optimizing
• Arista 7508, 7150,7124
• Cisco ASA 5505,5510,5540,5580
• Palo Alto 5050,,4050, 4020
• F5 BIG IP - LMT ----light use of APM, ASM, GTM” …
• Foundry 850’s
• Brocade switches and Load balancer
• Cisco VOIP: Call Manager, Call Center and Unity
• Cisco 4500,4900M, 3750, 6500
• Nexus series (3000,5000,7000) including 2200 FEX’s
• Cisco Multicast Manager software
• BrocadeMLX32
• Source-fire IDS
• Nortel 81c, 11 PBX
• NICE Logging for IPC Turrets
• IPC Turrets
• HP 5800,5400,7500 series Switchs.
• HP DL 360,380,580,785 servers
• HP XP24000
• Brocade SAN switches
• Wireshark, Tshark
• ORION NCM,NPM
• Manage Engine
• ISITUP
• Whats Up Gold
• Honey-D Honey-pot
• Splunk and Syslog Watcher syslog tools.
• Surf Control content filter

PROFESSIONAL EXPERIENCE

Network and Security Engineer

Confidential

Responsibilities:

• Managed Cisco ASA’s,, Palo Alto, Sonic Firewalls.
• Provided Network Management of Firewalls with Event logging and correlation.
• Managed andImplemented day to day Firewall requests both CISCO AS and Palo Alto
• Managed day to day Load Balancer (F5-BIG-LTM ) issues and possible requests.
• Decreased WAN spend by 50% while upgrading bandwidth on average by 5x.
• Decreased WAN latency by 50% and overall network latency end to end by 40%.
• Worked with software developers to create customized network for trading application.
• Designed a Global co-location network that decreased spend on average by 60% when connecting to each ECN or SEF while decreasing the time to market from 4 months to 7 days. (connectivity wise)
• Created EEI Scripting failover for hot/hot load balancer network
• Created and documented Failover design using BGP along with EIGRP and OSPF to separate traffic zones.
• Created Cisco Config reporting via IOS commands and Syslog parsing lerts.. Email would report changes per login.
• Created Syslog parsing for VOIP Network via Orion.
• Led Migration of 700 phones from Nortel 81C PBX to Cisco Cm,Unity, Router Gateway and Call Center Design.
• Created Sniffer Analysis tool w/ T-Shark and various TCP errors, save to hourly file system.
• Created change management process
• Created Operations procedures (ticket system and escalation flow)
• Standardized Network configuration
• Standardized tools and scripts
• Created daily Start of Day and End of day operation meetings
• Created RFO and Post Mortem process

Confidential

Head of I.T. Infrastructure and Security

Responsibilities:

• Migration from Stock ECN to Stock Exchange of 400 clients, 700 circuits and/or connections
• Design and built new Stock Exchange network using Cisco 6509’s based on modular design
• Supported CheckPoint firewall on KNIGHT TRADING network for our TCP Market data Feed
• New Stock Exchange network consisted of BGP on edge for client integration, redistribute into OSPF for FIX trading application, redistribute into EIGRP for Multicast market data feed network
• Migrated from Cisco PIX to Cisco ASA and Checkpoint. Designed Corporate and Trading networks using Firewall to control access.
• Reported to S.E.C. and passed Audit ARP review of S.E.C. for Exchange
• Deploy Alcatel 7450 ESS for Purpose of GRE and MPLS implemented change Trading based on full breathe security approach from Work Stations to ticketing approach This for DR and Production
• Created and designed “Connect Edge”. This was an initiative to provide clients with method to deliver market data using D.E. Market data plant. This was/is a service being used by D.E. Network which I turned and developed into a profit center. This produced a net-net zero spend for our market data network. 1.3 Million spend was turned into net-net zero spend. This service is still advertised in Trade Magazines. I created, designed and implemented the service.
• Designed and led VOIP migration from Nortel PBX network to Cisco CM,CC and Unity network.
• Led pro-active monitoring team and supported Cisco Call Manager and Call Center using windows events log converting to syslog.
• Created Market data delivery network using PIM SPARSE-DENSE and was the first exchange to use this method instead of the inefficient “DENSE MODE”.
• Created “Port cost” charge program for clients that in return turned a $500,000 profit over network switch spend.
• Wrote document and was lead rep. to the S.E.C. “ARP” committee for D.E. the stock exchange audit.
• Responsible for all technology network systems, facilities, real estate build out, BCP, vendor management.
• Manage Infrastructure organization consisting of 25 analysts, application support, system & network engineers and VOIP professionals.
• Responsible for engineering and designing the building out of the primary and secondary Direct Edge “Next Generation” LOW LATENCY platform and implementing the build out at Equinix and Telx Data Centers
• Designed Market Data ticket plant using Exegy and integration of Market data feeds.
• Designed low latency network for Client connectivity
• Designed D.E. Stock exchange network that segmented Trading traffic from Market Data Network.
• Designed and built D.E. Corporate network with S.E.C. approved path to D.E. Trading network.
• Created and managed multimillion dollar revenue generating through client network port charges and NTP offerings for clients to mitigate trade order time sync discrepancies.
• Created network design, applications and test plan of Direct Edge Next Generation Primary and Secondary ECN Platform
• Engineered RFP specifications for cabling and network projects for Equinix and TELX
• Managed and negotiated contracts for SFTI, Radianz, TNS, SAVVIS, NASDAQ, DTCC, Verizon Business, Level3 and Abovenet
• Lead of Global Network Operations Engineering Team
• Lead for 30 Network analysts monitoring global Network
• Client and Business unit interface for all network issues
• Network hygiene Lead using network report analysis and infrastructure audits
• Network Sustaining Engineering Support for purpose of network upkeep
• Hands-on application support of proprietary trading and vendor applications using protocol analysis

Confidential

Sr. VP, Communications and Lead Architect

Responsibilities:

• Project management, design, implementation, and resolution of issues for FIX connectivity solutions to various entities (Btrade, INET, Redi, Credit Lyonnais and JP Morgan).
• Management Team for “Trader Help Desk “for all critical network and trader infrastructure.
• Managed group responsible for hardware asset management and allocations
• Member of security policy committee
• Managed remote access services allocations for VPN and Citrix user accounts
• Hands-on support and integration of Bloomberg, FactSet, Bridge, BONY, Bear Stearns, Thomson DataWorx, Thomson One, Instinet and RediPlus
• Managed all aspects of Market Data network integration and day to day performance.
• Designed and implemented legacy network for Amaranth-Paloma separation.
• Managed an implementation team and contributed to the design of disaster recovery site for the network, telecom and market data groups
• Design contributor to WIFI Solution using Airespace Access points.
• Designed L4-7 load balancing solution using Foundry Server Irons
• Provided supplemental security solutions using SourceFire IDS, Honeypot and 3rd party 7/24/365 monitoring solution to reinforce security strategy.
• Managed an implementation team and contributed to the design of Amaranth’s global offices for the Network, Telecom and Market Data groups
• Implemented SONET ring technology for purpose of WAN redundancy and cost savings initiative for over $2,000,000
• Market Data, hardware, telecom and DR site contract negotiations
• Managed telecom team that supported 130 IPC trader turrets and 300 Nortel desk tops
• Hands-on application support of proprietary trading and vendor applications using distributed Sniffer for protocol analysis

Confidential

Lead Architect

Responsibilities:

• Managed all aspects of Market Data integration and FIX connectivity
• Managed System, Network engineering and operations teams
• Designed client delivery network (22 branches)
• Designed Client data center footprint
• Designed disaster recovery site routing
• Provided protocol analysis of trading application to improve performance
• Reduced CPU average on core network from 65% to 25% using protocol analysis
• WAN: audit of invoices and reduction circuit costs that produced 2.2 million dollars in savings
• Technical support shift lead for internal and external clients worldwide
• Protocol analysis of proprietary and vender applications
• Developed process for network implementations
• Technical lead on WAN/MAN connectivity issues
• Elected to “ESN” (IP delivery) team for nationwide deployment
• Supervised support of Instinet’s global trading network
• Contributor to network review committee Organized cross-training for Level 1 and 2 peer support groups
• Corrected ISDN configuration issue which resulted in $500,000 in savings
• Field Engineer responsible for Market Data project management and implementation of Telerate Financial Services for over 300 clients in the financial community.
• Responsible for the installation of all hardware and the delivery of network services for the implementation of Telerate Financial Services.