Network Architect/Senior IT Engineer

• Results-oriented IT Strategist with 10 years of experience design, integration of multi-platform as well as virtual platform VMware and/or blade-servers data networks.
• Financial-Industry background 11 years in the Investments and banking arenas. Formerly licensed Series 7, 8, 4, 6, 67, 56, and more and very familiar with most/all aspects of this industry.
• Strong technical qualifications with strengths in project planning, technical overviews and documentation, design and project management.
• Enough project hours to earn a PMP cert midway to earning necessary credits/passing test.
• Formulate strategies for technology acquisition, migration, integration and implementation.
• Ability to lead the architectural redesign and reengineering of large-scale enterprise infrastructures to improve performance, increase security and minimize downtime.
• Proficient in the use of enterprise-level tools for problem trouble-shooting, determination and remediation as well as change-management processing Remedy, Peregrine .
• Organized, take-charge professional with exceptional follow-through abilities and detail-orientation able to plan and oversee multiple projects from conception to successful conclusions, while in fast paced environments.
• Hands-on experience with Cisco 3750, 3800, 6500, 7200, 7600 and Nexus 1000, 22XX, 55XX 7000 platforms, F5's and VIPRION's 5100, 6900, 10200.
• Outstanding communication skills proven by effective communication with management, vendors, staff, peers and customers. Genuine commitment to quality and customer satisfaction.
• Familiarity with Sarbanes-Oxley Act regulations in context of their impact on IT considerations and have had to design environments to ensure compliance with HIPAA, FISMA, MITA and financial regulations.

Technical Proficiency:

Professional Experience:

Confidential

Key Achievements:

• Worked with the Project Office PO to review ALL projects to ensure cohesion and consistency across the globe of the many projects being initiated weekly 10-30 projects per week, on average .
• Standardized Wireless deliverable to all sites/all accounts hundreds of such sites/accounts world-wide to a common framework of wireless design thereby achieving significant improvements and efficiencies.
• Contributed to design and effort that now uses reduced manpower/time to review and oversee that environment.

Confidential

Key Achievements:

• By gaining trust, improved communications across companies.
• Project-managed AT T's side of the transition to the hand off of a normal DNS solution to a multi-tiered more secure DNS solution across four companies IBM, Macys, AT T and Akamai.
• Ttransitioned seamlessly, over the course of 15-20 staged changes, 2BB in annual web-portal's sales from a legacy DNS solution to a shadow DNS hiding, and securing content while enhancing long-term scalability and even deeper, extensible security Site Shield .
• Member of the design committee to more closely integrate and mimic Dev and Prod environments more closely matching their baseline designs to one another's, so as to achieve better matching test/development results.
• Led architectural discussion/meetings to plan and implement move from an LTM-only approach to load-balancing, to the global GTM approach to such cloud traffic Preferred vendor: F5 and VIPRION .
• With the advent of BYOD, Bring Your Own Device , and the many extra-net partners, we planned the incorporation and the use of MDM Mobile Device Management and ISE Identity Service Engine to secure the customer's network while increasing work-site efficiencies all-the-while maintaining their security posture and enforcing security policy.

Confidential

Network Architect/Engineer Customer-side

Key Achievements:

• Using the new appliance ACS 5.2, integrated it with LDAP, and, using RADIUS for the extensive wireless environment , authenticated ALL corporate and guest users.
• Accommodated the scheduling of activities of another major upgrade the migration of the customer from Frame Relay to MPLS.
• Worked closely with the developer/manufacturer of a new security-service product before its introduction into the market so as to homologate and standardize its packaging and insure predictability, and ease of support of the product, upon its sale and rollout.

Confidential

Network Engineer

Key Achievements

Sizeable project took much attention to detail and follow-up, with over 100 change-windows used to perform the overall transformation/upgrade of the network.

Confidential

Key Achievements:

• Got customer buy-in to an approach to dedicate resource-intensive servers to a single application resulting in significant time-savings of re-start-times as well as that of personnel continuously troubleshooting and isolating disassociated processes from the incumbent, or running application and eliminating the need to hire on a FTE-head-count to support the constantly changing environment.
• Documented and drove through a consistent base-line approach to file-hierarchy across the multiple applications. The impact will be felt in reduced support time, more consistent documentation, and faster resolution of trouble-shooting efforts.
• Through ongoing pd problem-determination efforts, tested the assorted labs' and production-environment's servers. Uncovered inconsistent implementations, documented them, fixed them and retested them so as to prepare for a 40-to-50,000 device roll-out.
• Got the myriad of Oracle servers Solaris OS all patched and consistent throughout the three labs thus ensuring greater efficiency through more predictable behavior to controlled test-steps.

Confidential

Key Achievements

• Upgraded the network from outdated unsupportable equipment to equipment that has maintenance contracts and that supports more robust alternate-path routing protocol GLBP .
• Created a BoM Bill of Materials and procured all hardware necessary to create a fully-redundant core infrastructure.
• Successfully championed the implementation of a formal change management process.
• Designed an environment that with NO modification to the budget, and within 4 months, will roll out more robust core sites.
• Was the SME for the composing and submittal of a successful federal grant application for Smart Grid Technology using SCADA an ICS from the U.S. Department of Energy with an award of 2.5MM for a 5.1MM project from funds from the American Recovery and Investment Act. This infrastructure build-out is part of Critical Infrastructure CI that is part of the nation's transition to a smarter, stronger, more secure and more efficient electric distribution system.
• Designed, documented implemented and managed secure wireless networks at multiple sites.
• Managed 10 Microwave RF wireless nodes by which we inter-connected of the State of Wyoming.
• Microwave RF wireless backbone equivalent to 3 DS3's provided redundancy with only 60 ms.'s latency
• Migrated several portals to a more secure framework, moving them into the virtualized environment.
• Participated in co-operative's bi-annual DR test representing IT's contributions and concerns.
• Created team's 2010 network budget.

Confidential

Network Architect

Key Achievements:

• Isolated cause of crit-sit outages in record-time, alleviating PE's concern of failure to deliver on SLA's.
• Utilized ACS server to create periodic audit reports to satisfy customer's CIP and own firm's GIS security policy requirements.
• Worked closely with vendor Citrix NetScaler Load-balancer/Content Switch so as to better integrate solution with multiple departments needing portal-access optimization.

Confidential

Network Architect

Key Achievements:

• Analyzed the proposed design uncovering excess purchases resulting in 15 savings or about 375,000.
• Introduced alternative data-transport technologies within the extremely hostile mining environment, while having to integrate DoL M-SHA regulations e.g., 6-mile line-of-site runs and 53-miles of rugged, undeveloped terrain

Confidential

Network Security Architect

Key Achievements:

• Participated in the Evaluation Committee as well as the Steering Committee for the selection, and then logistical preparation of the State's first THOROUGH Converged Voice implementation.
• Participated in the committee that developed and reviewed the State's new DHS - Department of Homeland Security driven - compliance policy documentation.
• Created an authoritative State Asset Management Database AMDB , inventorying, and categorizing assets.
• Coordinated efforts to implement changes, pre-staging configs and opening change-tickets using State-approved change management processes and procedures
• Worked with the State SOC Security Operations Center providing incident management and incident response.
• Worked with ALL 28 State Agencies/Departments Each agency with its own CIO thus its own autonomy to document the infrastructure, centrally.
• Worked within SOC, scanning IPS hits , reviewing logs, and squelching/spurning attacks.
• Thoroughly integrated IR security monitoring systems and security reporting through-out the State increasing visibility five-fold.
• Designed a defense in depth approach migrated from an Active/Standby design to an active/active design.

Confidential

Key Achievements:

• Lead Engineer for new deployment of more scalable security authentication, authorization and accounting approach. Determined requirements, assigned tasks, allocated resources, scheduled changes. Coordinated with PM's.
• Lead RADIUS engineer. Worked with both Funk Juniper Steel-Belted RADIUS SBR on the legacy side, and Cisco's CNR ICE, RADIUS solution is used. EAP-Fast with its extensibility and interaction with 802.1x was chosen for the new replacement environment.