TECHNICAL SKILLS:

Routers/Switches: 3COM/HP3C, Brocade, Checkpoint, Cisco, Extreme Networks, Force 10, Foundry, HP, Juniper.Broadband sONETLucent, Nortel, Fujitsu, Cisco

L2/3/4/7 SWitches: 3COM, Confidential, Extreme Networks, F5, Foundry

ATM Switches\Multiplexers: Adtran, CiscoNETWORK TOPOLOGIES: ATM, 1/10/100/Gigabit Ethernet, MPLS, xDSL, SONET, 802.11 Wireless

SECURITY APPLIANCES/DLP//IDS/IPS: Cisco Pix, Cisco IDS/PIX, Cisco ASA5500, ISS, F5, McAfee Intruvert, Loglogic, RSA Envision, Juniper, Netscreen, Nokia, Snort, Sourcefire, Palo Alto, Tipping Point, Symantec DLP, BlueCoat, McAfee Web Gateway

SECURITY ASSESMENT TOOLS: MVM Foundstone, CoreImpact Nessus, Netrecon Retina, Rapid 7,Stillsecure, Appscan, Qualys, Webinspect & others

FIREWALL/VPN PRODUCTS: Cisco PIX\VPN, Cisco FWSM, Juniper, Netscreen, Checkpoint, Palo Alto

NETWORK MANAGEMENT: Concord, HP Openview, MRTG, Castlerock SNMPc, Solarwinds, ManageEngine, Whats UP Gold & others

OPERATING SYSTEMS: Windows Server 2003, 2008, 2012, Linux, UNIXPROTOCOLSLAN: TCP/IP, Wireless 802.11

WAN: ATM, BGP, EIGRP, Frame Relay, MPLS, OSPF, PPP, SDLCSecurity Software:Cisco Mars, ISS, Nmap, Nessus, Snort, tcpdump, Tripwire, ArcSight, etc.

PROFESSIONAL EXPERIENCE:

Confidential

Network Architect

Responsibilities:

• Complete Gigabit Network Redesign supporting several Internet Collocation/Hosting Data Centers supporting 4 Data Centers, 10,000 servers, 17 Gigabit Internet Links. Utilizing, Cisco and Foundry, Cisco Cat. 6500 Switches/Routers and Cisco/Juniper Netscreen Firewalls. This included complex OSPF and BGP routing through several peers.
• Assisted Large Cloud services design and implement a network security infrastructure into their existing Data Centers. Security implementations included (IPS) Tipping Point Intrusion Prevention Systems, Access Lists, Juniper and Imperva Network and Application Firewalls, (SIMS) Security Information Mgmt. Systems and Arbor Networks (DOS) Denial of Services solutions.
• Designed and built a wireless information mesh infrastructure for a mid - size Aerospace organization across 10 metro LAN/Campus locations. This network was built utilizing Cisco Wireless LAN Controllers and Bridgewave Gigabit RF point to point Links.
• Prepared extensive information security remediation recommendations, security program, and information security policies, standards and procedures for several organizations.
• Architected and implemented wireless consisting of 300 access points for a 400 bed hospital utilizing Cisco WLC controllers. The network utilizes 802.11ac, 802.11n, WPA2 Enterprise WPA2 personal standards with WPA2 Authentications against Microsoft Radius/Network Policy Server.
• Extensive Forensic Investigation working with the DOD investigating an extensive malware/espionage incident on an aerospace IT infrastructure with 4,000 devices.
• Data Center Migration including new network build out for an Internet Advertising Company consisting of 1000 Servers and 50 network devices, utilizing Brocade/F6 Load Balancers, Cisco Catalyst 6500/Nexus 3K, 5K & 7 network equipment, Juniper Junos & ScreenOS Firewalls.
• New Data Center Network Build out for Internet Database Company consisting of 40 Servers, Cisco & Foundry network equipment & Cisco ASA Firewalls.
• Determine infrastructure security requirements for several organizations. Install and configure recommend solutions including Intrusion Preventions Systems, Firewalls, SSL VPN Devices, Vulnerability Management Systems, Multifactor authentication system and SIM Solutions.
• Installed and configured several Data Center migrations from Catalyst 6500 to Nexus 2K, 5K and 7K. Involving several thousand-network devices. Designed & configured OSFP & BGP routing to several peering fabrics and backbone providers.

Confidential

DIRECTOR, INFORMATION SECURITY

Responsibilities:

• Managed Network Engineering, Information Security and Telecommunications teams. Facilitated security architecture reviews with application and infrastructure groups. Designed and deployed a network security infrastructure to support Corporate Security, ISO 27000 & SOX requirements. This included AAA Servers, Juniper firewalls, IPSEC & SSL VPN, Site - to-Site VPN, SIM Database, 802.1-x wireless, Int. & Ext.
• Vulnerability Mgmt., network redesign, standards, policies & procedures and other key components. Managed and negotiated telecommunications/data communications service and network contracts. Design and managed the implementations of the voice/data infrastructure for the new corporate headquaters. Investigated security breaches and reported findings and recommendations to management, provided process improvement for security access, raised organization awareness to information security issues

Confidential

Network Security Architect

Responsibilities:

• Responsible for the enterprise wide deployment and management of Extranet and Network Security Devices. This includes Firewalls, Intrusion Detection Systems, SSL VPN Appliances, wireless devices, network infrastructure and router - based security. Define the strategic direction for Network Security associated technologies including: intrusion detection, intrusion prevention, firewall platforms, security information monitoring, and wireless LAN 802.x security technologies. Provided all regulatory and internal audit responses for all of Infrastructure Division. Managed team that supported all extranet services including network security devices and Business Partner infrastructure.

Confidential

TECHNICAL MANAGER

Responsibilities:

• Provide advanced solutions support for next generation DSL Applications; such as Subscriber Management Gateways, Video on Demand and Voice over DSL applications. Trade show and demo equipment staging for customer applications. Managed Business Development support teams. Wrote technical white papers in support of Lucent DSL Solutions and advanced technologies. Provide technical business development support to Lucent account teams and customers in support of SONET/DVDM, DSL/ATM implementations and next generation applications such as: video over DSL, voice over ATM/DSL, MTD/MTU and Hospitality.

Confidential

NETWORK ARCHITECT

Responsibilities:

• Provide high - level network engineering and design expertise for Confidential Clients. This included design and support for Internet WWW Companies, large multi-nationals and many large Sprint broadband customers. Managed networking/security engagements and associated team members in a matrix capacity. Provided technical project management and third level support for complex network engineering and security audits/assessments/implementations to Confidential consultants and Clients. Developed Security policy and procedure templates used by Paranet clients. These policies and procedures were for Business Continuity planning and Network/Physical security. Pre-Sales activities included scopes of work, requirements discovery and consultative sales.

Confidential

SYSTEMS ENGINEER/SECURITY SPECIALIST

Responsibilities:

• Engineered detailed network designs of LAN/WAN solutions involving multi - protocol (ATM/Frame Relay/ SMDS)/ (TCP/IP, IPX/SPX, Appletalk, etc) on all Cisco platforms, Presented at Cisco seminars regarding Cisco Security products and Networking technologies. These Platforms included all Cisco Router Product Lines, Catalyst Product Family of Switches, ATM Switches and Internet
• Security Appliances. These networks included very large campus backbones and wide area networks. Regional network security specialist for Cisco security product lines including Pix, IDS, and IOS security implementations. Conducted Computer and network Security for Cisco customers. Provided pre/post-technical support for all Cisco provided equipment.