BACKGROUND

Professional and experienced Project, Infrastructure Network Architect with extensive, proven skill set applicable to all areas of Information Technology Departments. Honed leadership and interpersonal communication skills accompanied by expert-level consulting experience provides a level of professionalism and transparency to both customers and non-technical resources alike.

CHRONOLOGICAL EMPLOYMENT HISTORY

Confidential

Network Security Consultant

• Performed post-sales, on-site implementations of Network Access Control NAC CounterAct solutions for multiple 100,000-1,000,000 endpoint deployments.
• Worked in a remote and on-site capacity with partners and customers in a plethora of different industries, including, but not limited to: Healthcare, Finance, Insurance, Federal DoD/DoE , Charity, Avionics, IT and other sectors driving their NAC solutions to completion.
• Worked with several industry leaders and Fortune 500 organizations including the IMF, US Military CENTCOM, Unum Group, United Health, Department of Education, Dell Federal Services, McAfee, NIPR/SIPR-based networks, Ranbaxy Labs, Lenovo, Citi Group, etc.
• Gained experience working with DoD STIGs and deploying STIG-compliant NAC solutions within NIPR/SIPR environments.
• Worked with State and Federal US entities as well as foreign government and military entities to deploy NAC.
• Served as last line of support prior to R D escalation for all product issues.
• Leveraged consultant skills to perform on-site damage control for problem customers. Maintained a 100 customer satisfaction rate when deployed on-site.
• Deployed integrated 802.1X/NAC CounterAct solutions and converged existing solutions with comply-to-connect environments in both wired and wireless capacities.
• Leveraged previous networking and infrastructure background to design NAC CounterAct deployments on a large scale.
• Provided manageability and visibility of entire environments, while maintaining business continuity, by leveraging current design and architect experience.
• Gained an in-depth understanding of CounterAct and the philosophy behind its NAC methodology.
• Hosted multiple training classes for a plethora of different regions including: EMEA, APAC, AMER, etc.
• Traveled internationally to deploy on-site solutions for customers headquartered overseas i.e. Lenovo, Ranbaxy Labs, etc.
• Worked directly with R D, QA, Support, TAMs, PMs and other teammates to coordinate and develop best practice documentation, training materials, Knowledge-base information and other pertinent documentation as was necessary.
• Achieved FSCE certification Forescout Certified Engineer , the highest of any current ForeScout certifications.
• Actively contributed towards IPO efforts with submission and creation of necessary and relevant documentation as required for the team.

Confidential

Network Architect Infrastructure Lead

• Served as the lead Infrastructure and Network Architect for a 70 Million contract for the State of Texas Department of State Health Services' Women, Infants and Children WIC .
• Infrastructure Design leverages MS Dynamics CRM, Scribe Insight, Inrule, Microsoft Hyper-V, SQL Server, MS Server 2k8R2/2k12, Juniper SRX, Cisco Catalyst/ISR, Dell Powerconnect/Equallogics, Dell R620s, R710s, T110s, E6430s, MultiView, KnowledgeLake and other software/hardware components.
• Designed all proof of concept and lab architecture policies including: QoS/Bandwidth specifications, Firewall/Security access-lists and security zones, multi-tiered DMZ setup, etc.
• Provided expert-level network analysis and troubleshooting throughout all phases of proof of concept and alpha testing on both Hyper-V VMs and physical nodes.
• Provided the majority of customer-facing technical documentation and worked hand-in-hand with subcontractors Inrule, Scribe, Infostrat, Microsoft Consulting Services/MCS in order to furnish technical deliverables Test Plan, Functional Requirements, Findings Recommendations, etc.
• Represent the company in all facets of network and technical application.
• Designed technical infrastructure and architecture in accordance with project functional requirements.
• Provided baseline reports to the customer which either validated or educated in order to shape client expectations and assist business analysts with the Requirement Validation phase.
• Made all network architecture decisions throughout all phases of the Software Development Life Cycle SDLC .
• Provided input on all technical decisions made by the infrastructure team and had final say on any change requests or high-level technical decisions.
• Constructed and formatted all internal documentation and standardized processes for corporate IT staff.
• Performed packet and application-level security analysis on the entire environment.
• Serving as the highest-level technical resource throughout Design JAD , Requirements and UAT testing phases of the project.
• Participate in all customer/executive meetings in order to transcend the business to technical staff communication issues.

Confidential

Systems Architect Contract Consultant

• Serve as highest level of escalation for any technical issues within the company.
• Designed, configured, physically deployed and managed corporate-level networking systems and software solutions.
• Developed Cost Workplan scenarios and provided Infrastructure Proposals for potential new clients.
• Managed all vendor and retail relationships.
• Provided authorization for any change management and purchase requests.
• Provided technical expertise throughout all pre-sales negotiations.
• Responsible for managing all backup software and hardware storage including their associated networks.
• Designed systems infrastructure and managed current infrastructure for nation-wide clients within numerous industries Food Bev, Healthcare, Finance, Advertisement, etc.
• Troubleshoot IPSec VPNs by interpreting or evaluating debug-level logging.
• Deploy multi-site LDAP-replicated branch offices with associated IPSEC-tunnel configuration.
• Implement network infrastructure and policy in accordance with debug log output and multiple packet capture analysis.
• Setup unified management of internal and managed client-sided infrastructure.
• Handled all VoIP Asterisk endpoint configuration and management.
• Designed and managed all VoIP deployments for 50 clients.
• Integrated new client-side firewall policies and WLAN infrastructure within existing infrastructure ASA/SRX/Aironet .

Confidential

Network Engineer

• Responsible for all corporate and data-center network infrastructure.
• Configured and managed all network devices to include Cisco and Juniper platforms.
• Ensured that the infrastructure I managed was GLBA and PCI-compliant.
• Served as a network engineer for over 200 client DMZ deployments.
• Conducted project planning, cost analysis, technology comparisons, and vendor evaluations as was necessary for company expansion.
• Configured all corporate VPN policies via CLI for secure application connectivity, branch office communications and remote access users.
• Designed network infrastructure and managed high-level network protocols relating to: VPNs, VLANs, VoIP, QoS, HSRP, EIGRP, BGP, SANs, etc.
• Troubleshot IPSEC/ISAKMP debug output and designed ACL's as was necessary to build Site to Site tunnels between corporate VPN ASA and client sites which maintained compliance standards.
• Designed and configured security policies for multi-tiered web application DMZ's with sensitive PII/Finance data.
• Configured branch offices for full AD replication via IPSEC tunnel.
• Deployed all branch office configurations with HSRP redundancy.
• Configured WLAN for corporate infrastructure.
• Configured hardware platforms including, but not limited to: Cisco ASA's, Cisco ISR's and Catalyst Switches.
• Performed LAN hardware installation for all on-site networking devices switch closets/onsite DC .
• Designed Microsoft Visio graphs used within project plans and other customer-facing documentation.
• Appointed engineer and point of escalation for all troubleshooting of application connectivity.
• Configured Reverse Proxy services on DMZ Load Balancers.
• Participated in a team that maintained 99.9999 uptime for 2012 calendar year.
• Mitigated and negated DDOS attacks and maintained a minimal outage window throughout duration of attacks prior to attack termination.
• Utilized rate limits, ACL's banning ARIN lists, and other security mechanisms to mitigate external attacks.

Confidential

Senior VoIP Network Engineer

• Led a team that deployed and managed approximately 7,500 CISCO TelePresence/Tandberg devices and their associated LAN/WAN route/switch infrastructure.
• Collaborated hand-in-hand with ISP NOC teams in troubleshooting incidents to resolution.
• Provided RCA/RFO reports and conducted all associated troubleshooting and documentation for chronic issues or large scale outages.
• Within 3 months was appointed as top level point of escalation for all P1/severe network complications.
• Configured over 2,000 2800 series routers and Catalyst 2900 series switches.
• Appointed as team lead for all Cisco ASA deployments and was responsible for drafting configuration template for rest of team.
• Technologies managed: Cisco ASA Cisco IOS CUCM TelePresence Manager CISCO Foundation series routers, Catalyst switches, IP phones and the recently procured Tandberg Corporation endpoints, servers and software suites i.e. TMS Server, MCUs, MXEs etc.
• Architected all proposed client Voice/Video over IP networks
• In charge of monitoring and resolving all QoS issues encountered. Also designed and configured QoS policies.
• Laid claim to discovering 3 0-day bugs within IOS that prohibited optimal usage of VoIP/Telepresence devices.
• Monitored devices utilizing a myriad of different system management software. Nagios, Solar-Winds, Plixer, Qlikview, Remedy, EM7, Desktop Central etc.
• Responsible for all back-end network testing, troubleshooting and configurations for new deployments and pushed all Change Requests associated with the devices to resolution.
• In charge of LAN transformations by conducting network connectivity tests, packet analysis and re-configuration of switch QoS policies on devices as necessary.

Confidential

Escalation/Project Manager

• Appointed as Team Lead for all Point of Care Hospice devices.
• Acted as last point of escalation for engineers within Problem Management and Service Bureau departments.
• Designed VPN policies/connectivity for both Remote Access and Site to Site setups.
• Ensured that all network equipment was HIPAA and PCI compliant.
• Established and implemented global procedures and increased company internal documentation in conformance with ITIL standards.
• Within 6 months became Sr. Escalation Manager for all IT support staff.
• Blackberry device configurations including management of devices via BES Server v5.
• Developed an efficient method for deploying thousands of HIPAA-compliant field units for Hospice personnel.
• Developed base image, security templates and documentation/deployment processes for all field-deployable units 30,000 units .
• Supported 22 healthcare software programs ranging from mobile device applications to web-based and locally installed suites.
• Gained experience with McKesson Horizon software Configurations Transfer Filters Reference File DBs etc. .
• Provided fast-paced ticket updates and resolutions while utilizing several web-based CRMs and ticketing software solutions.
• Provided end user support via telephone and remote services.
• Migrated over 4,000 doctors, nurses and other medical staff from traditional pen/paper documentation to mobile device utilization within my initial 3 months.
• Utilized and configured VMware to recreate issues and test software, patches and policies prior to implementation and migration.
• Published all initial documentation for company-wide procedures regarding IT processes.

Confidential

Network Engineer

• Role started as an IT Consultant/Jr. Network Engineer and within 6 months developed into a Network Engineer.
• Designed and deployed Cisco and Juniper networks for clients from scratch.
• Designed client's LAN topology and lead the installation of on-site networking equipment. Equipment consisted of several hardware platforms within the Juniper/Cisco series routers/switches.
• Migrated company firewall policies and platforms from PIX to ASA.
• Gained a high-level experience interpreting debug outputs of ASA and IOS devices.
• Designed client security policies to abide by HIPAA and PCI guidelines SRX/ASA .
• Maintained network and domain security through AD/GPO provisioning and router/switch configurations.
• Responsible for administering network devices and providing preventative maintenance on client domains.
• Responsible for troubleshooting workstations remotely and serving as a hands-on resource.
• Provided support to clients with Windows and Linux-based operating systems.
• Responsible for all internal company networking infrastructure.

Skills:

Expert level

Route/Switch

Network Administration

Field Service support

Network Design

VoIP

Python

HTML

OS Platforms:

Windows NT to 8

CentOS

Ubuntu

Apple OSX

BB Server Enterprise

Red Hat Linux Ent. WinServ 2k3,2k8,2k12

Hyper-V 2k8,2k12

VMware ESX ESXi

Applications:

Aircrack-NG Suite

CatTools

Citrix Zen Application

Desktop Central

EM7

Ettercap

LanDesk

Log Me In

McKesson Horizon

MS Active Directory

MS Exchange

MS Office 2000 2010

MS Server 2k3-2k8 R2

Nagios

nMap Orion Solar Winds

Plixer

Putty

What'sUpGold

WireShark

VMware vSphere

Network Related:

Cisco ASA 6.3-8.4

Cisco IOS 12

Cisco PIX 6.3

JunOS 11.x

Load Balancing

TCL

Telepresence 1.5

CUCM 7.x