Professional Experience

Profile

• Over 14 years of experienced in systems engineering, security, system testing, systems integration, networks, storage, db, telecom, and multiple architectures. Work in security architectures, wireless network, Access Points, WCS, mobile technologies operations, integration, implementations, deployments and support in complex LAN/WLAN networks.
• Proficient in UNIX, LINUX, Windows 2008 R2, and VMWARE V4, V5 including engineering, security tools, secure encryption access controls, IPSec, installing architecting, and implementing Active Directory, administration of domain controllers and replication. Apply security IA policies standards, PKI procedures to domain services and LDAP. Configured storage devices using RAID technology, ISCSI, Fiber Channel including SAN, NAS storage solutions and apply high availability software solutions using VERITAS and Brocade switches.
• Highly skilled using routing protocols MPLS, EIGRP, BGP, OSPF, IGMP, CGMP, PIM , VPN, IPSEC and WLAN protocols and standards in telecom including hands on 802.11b-g-n, LWAPP, CAPWAPP protocols, mobile technologies and Aironet 1140-1250 Access Points connecting to Unified Cisco Wireless Enterprise server. Work with hybrid devices, Cisco, hands on experience in IPS, Cisco ASA 5500 Firewall, Checkpoint and penetration test including scanning tools and apps. Apply Information Assurance best practices to develop security policies, and data management plans, using Firewall Checkpoint, Brocade 6450 and Juniper.

Worked with Tivoli Applications Performance TPA , TAM Access Control Manager, TFIM Federated Identity Manager, Work Scheduler TWS, TSM , Netcool-OMNbus. Proficiency using Rational software suite, C4ISR methodology using security applications, modeling Tools, Web Applications, Web services, IIS, dot Net framework, experienced in implementing Department of Defense Architecture Framework DoDAF standard. Worked with San Management storage solutions, data backup, CMMI certification process, UML and data base DOORS including System Architect artifacts. Apply FISMA, Information Assurance best practices to develop security, strategic, and data management plans. Facilitated and participated in security certification and accreditation, performing gap analyses, for enterprise architectures including use of DoD standards, directives, police DITSCAP, FIPS, DIACAP, STIG, NIST, HIPAA, and PCI . Apply multi level security techniques for data classification in transit secure access to LAN-WAN and wireless networks. Developed test plan, test strategies including regression tests, QA, and QC to ensure integrity of systems, and applications. Apply penetration tools for vulnerabilities and use of NESSUS, Wireshark, Solarwinds, Airmagnet, in WIFI and wireless technologies.

Confidential

IT Systems Engineer

• Performed IT system implementations, systems deployments and network solutions. Hands on Windows 2008, LINUX, UNIX, VMware server V5.0, deploy templates of hosts environments, configure and apply security requirements. Worked with Web servers, IIS, .NET Framework, SAP portal and active directory environments. Install, Domain services, configure Active Directory forest and catalog domains, performed systems administration, use Organizational Unit structure, within objects, trees, domains and apply security policies including certificates access and single sign on capabilities within content management.
• Worked with ASA Access firewall, Checkpoint and VPN secure access to Web servers, Web services, Internet and applications, including remote client connections. Configure security requirements to systems deployed and support the Web services in an intranet, worked with connecting internal servers to network and route across wide area OSPF, BGP and Vlans connectivity.
• Installed, configured access points using Cisco WCS and AIRONET 12500, 11400, use VLANS and RADIUS. Conduct surveys to determine the best radio signal for 802.11b-g-n. Experience using AIRMAGNET 2.4 and 5 GHZ.
• Worked in multiple architectures including master global catalogs domain controllers and sites. Troubleshoot performance issues using engineering tools, security policies, procedures and control access to information and management services. Access and identity are the main pillars in security and maintenance of db schema that contains the top of structure the forest, a collection of trees that share a common global catalog, directory, logical structure, and directory of organizational Unit and group policy object, apply STIG and DIACAP requirements.
• Experience configuring EMC CLARION, Brocade switches and DELL SAN and NAS storage networking solutions using CIFS, NFS, file using access security sharing improve performance layout of Raid using SSD drives and Cash memory for reads and writes in a pool for LUN or Volume. Tuned block size parameters to improve performance in cash and Ram memory to data pools for a VMWARE ESXI V.5 and 150 VM's.
• Install configure Cisco layer2, layer 3 switches ProCurve and routers address MPLS, IPMP multi path and secure VLANS including multitask protocols, IPSEC and VPN s with Firewalls, ASA Cisco Appliances and Voice Manager. Configure VLANS for wireless, and mobile technologies including multitask protocols and VPN s with Firewalls, Pix, ASA Cisco Appliances, access points and Voice Manager, SDM. Hands on using scanners, penetration test, IPS and IDS and policy security parameters for security Zones including access to storage devices. Use Solarwinds, Wireshark tools and Nessus.

IT Systems Engineer, Network and Security Architect

• Enterprise architect who designs solutions for multiple projects in the government , private sector specializing in business applications, Rational Tools, Netcool, WebSphere, IA security policies, network solutions, Cisco LB, Checkpoint firewall appliance system security, data management, project management, strategic planning, engineering designs, and development of e-Business/e-Commerce using various Web applications in an SOA framework. Apply security checks, vulnerability scans, and remediation plan.
• Performed Accreditation, certifications for systems and apply enterprise architectures including use of DoD standards, directives, police DITSCAP, FIPS, DIACAP, STIG, NIST, HIPAA, and PCI . Apply multi level security techniques for data classification in transit secure access to LAN-WAN and wireless networks. Developed test plan, test strategies including regression tests, QA, and QC to ensure integrity of systems, and applications. Apply penetration tools for vulnerabilities and use of NESSUS, Wireshark, Solarwinds, Airmagnet, in WIFI and wireless technologies.
• Performed Technical documentation, risk analysis and assessments analysis and recommendations, including performance engineering for storage, networks and security systems. Experience in systems engineering, testing environments using LINUX, UNIX, Windows 2003, 2008 and QA, QC and development. Implement configure a VMWARE solution Applies best practices in implementing VMWARE V4 environment. UML process design and improvement for Enterprise solutions. Apply requirements definition, systems integration, risk assessments including security auditing, and testing in distributed computing environments and DOORS db requirements for DoD.
• TIM, TAM best practices for single sign on and access control, Verifies and enforces compliance policies, systems engineering methodologies and process for multiple projects according to DoD directives and standards, including CONAPS and COOP. Applies security controls standards, PKI management adhering to LDAP services' compliance, FISMA, and Presidential Directives, DoD X.500, COBIT, HIPPA, and participated in internal engineering reviews.
• Apply security Wireless connections and management of smart antennas, VLANS, and AP including Aironet plus WIFI devices. Configure Netmon for monitoring capabilities for large enterprise solutions, performed LAN surveys for coverage, integration, and implementation of wireless solutions.
• Worked and implement configuration to Cisco Routers, 2800 1700 series, including Cisco switches 2900-3500-4500-6500 series. Apply EIGRP, OSPF, BGP and vlans.

Confidential

IT Systems Engineer, Network and Security Architect

• Enterprise architect who designs solutions for multiple projects in the government , private sector specializing in business applications, Rational Tools, Netcool, WebSphere, IA security policies, network solutions, Cisco LB, Checkpoint firewall appliance system security, data management, project management, strategic planning, engineering designs, and development of e-Business/e-Commerce using various Web applications in an SOA framework.
• Performed Technical documentation, risk analysis and assessments analysis and recommendations, including performance engineering for storage, networks and security systems. Experience in systems engineering, testing environments using LINUX, UNIX, Windows 2003, 2008 and QA, QC and development.
• Applies best practices in implementing VMWARE V4 environment. UML process design and improvement for Enterprise solutions. Apply requirements definition, systems integration, risk assessments including security auditing, and testing in distributed computing environments and DOORS db requirements for DoD.
• TFIM, TAM best practices for single sign on and access control, Verifies and enforces compliance policies, systems engineering methodologies and process for multiple projects according to DoD directives and standards, including CONAPS and COOP. Applies security controls standards, PKI management adhering to LDAP services' compliance, FISMA, and Presidential Directives, DoD X.500, COBIT, HIPPA, and participated in internal engineering reviews.

IT Architect/ Pre-Sales Software Engineer

• Oversaw technical support for sales Tivoli department developed technical solutions, tactical strategic plans, system definition and design architectures for complex IT infrastructure.
• Performed major systems integration utilizing Tivoli products, TSM, TAM, TEC WebSphere and security. Identified, tested, evaluated and gave presentations, recommendations to clients.
• Automated disaster recovery solutions for Key Bank and Financial institutions in their IT departments. Including data management and archive solutions.

Senior Software Engineer

• System integrator, who reviewed, tested and configured all Tivoli environments ensuring establishment of security standards by customizing Tivoli policies, installation scripts and creating hierarchy of software profiles within the TMR.
• Coordinated changes with developers on application design.
• Created shell scripting, TCP/IP programming parameters to optimize monitoring management tools.
• Addressed security risks on network and presented tactical plans related to disaster recovery. San , NAS management for storage solutions.
• Tuned UNIX, and database parameters for optimal performance.
• Developed a relational database for software tracking, and software distribution using Oracle 8, DB2 including SQL, and SMS Microsoft.

Senior Systems Engineer Systems Engineer

• Accountable for technical support for sales department by providing client network solutions, systems engineering and systems integration using RAID technology, WebLogic, UNIX and INTEL platforms over LAN/WAN.
• Performed systems analyses of network systems and monitoring management.
• Delivered presentations, proof of concepts solutions to clients. Performed, strategic, and data management plans. Facilitated and participated in training.
• Configured storage, Raid Technology database applications, and SAN technologies over multiple enterprise solutions. Including client server environments.
• Set data management plans, including disaster recovery, replications and job scheduling in a centralized and distributed environments.
• Implemented customized configurations of UNIX operating systems SunOS, Solaris, HP/UX , DOS, Novell/NetWare and Windows NT platforms, interconnected with storage devices, SAN solutions including ATL libraries and DLT tape arrays.
• Used network management HP Openview, Lan Vision, Rmon, NetCool software.

Senior Systems Engineer

• Identified, tested, evaluated, created, and presented research on network products.
• Analyzed, designed, implemented systems integration over LAN/WAN using FDDI, 902.3 - 8.2.2 Ethernet Token Ring, ATM, Routers, and Switches.
• Provided presales support in Open Systems Products. Configured and customized UNIX Operating System, including other platforms. Supported interconnectivity with other UNIX environments and other operating systems including Routers, Bridges, Smart hubs, ATM, Switches, and remote computing.
• Performed network analysis, testing, and training using management tools Sniffer, HP OpenView, SunNet Manager, LAN Vision, Rmon . Presented and delivered Fail over solutions for Financial Institutions in.

Senior Systems Engineer Consultant

• Supervised technical support analyzing, designing, implementing systems integrations over LAN/WAN using FDDI, 902.3-802.2, 802.3 Ethernet Token Ring, and ATM
• Provided presales and .post sales support in Open Systems Products. Delivered presentations, proof of concepts solutions to clients. Configured UNIX, Linux kernel servers and performed interconnectivity with other operating systems, Data Bases Informix, Oracle, db2 .
• Set advanced tuning parameters for the database, UNIX and other applications to improve performance, throughput and optimization.
• Configured Clariion storage and devices using RAID technology, including SAN, NAS storage solutions.
• Tested, verified configuration parameters of the database and applications including memory parameters, table space set. Managed client server data repositories accessed from PeopleSoft applications.

Key Skills

NETWORKING:

Cisco Catalyst Switches, Cisco Routers, Cisco Firewalls Pix, Foundry switches, Brocade 6450, Checkpoint Firewall, Cisco ASA, Sniffer Wireshark, NESSUS, ISS Internet Scanner, F5 Balancer

SECURITY:

Cisco Secure Pix, Cisco ASA, Cisco VPN, Cisco Secure IDS, Cisco Secure Policy Manager, Cisco Secure ACS, Cisco Security Agent, Checkpoint NG, Snort, IPCOP. DoD standards, directives, police DITSCAP, FIPS, DIACAP, STIG, NIST, HIPAA, and PCI

WIRELESS:

Cisco Aironet AP , CiscoWorks, Cisco Controllers, Netgear AP, AIRMAGNET 2.4 and 5 GHZ

VoIP:

Cisco CallManager, SIP protocol

PROTOCOLS:

TCP/IP, OSPF, BGP, RIP, V1-V2, EIGRP, IPSEC, DNS, NFS, SMTP, SNMP, LDAP and ,NET

LANGUAGES:

Visual Basic C , Perl, scripting shell

SERVERS:

SUN Enterprise, Compact Reliant, Dell Proliant, VMWARE, ESX, ESXI

SERVER APPLICATIONS:

Veritas Volume Manager, Veritas Backup, Tivoli Storage, Manager, Apache, IIS, BEA Weblogic, SAP Portal, Tivoli Access Manager, Tivoli Identity Manager, Tivoli Monitoring, WebSphere, Nexanta software for NIFS and NFS files

STORAGE:

SAN/NAS

Dell Power, HP Arrays, EMC arrays, CLARiiON, NEXSAN

OPERATING SYSTEMS:

• Expertise using systems engineering tools, Telelogic, Rational modeling, IA-DOORS db in the development of architectural work products and designs.
• Solaris, LINUX 9.0, RED HOT, UNIX ALL System 5, Windows 2008 R2, Active Directory
• Uses Unified Modeling Language extensively in enterprise architecture work products and SDLC process, including SE deliverables.
• Skilled using opens systems and operating systems UNIX, LINUX, Windows .NET in enterprise solutions and SOA architectures.
• Deploys storage solutions using SAN / NAS and Cisco products routers, switches, ATM, gateways, firewalls in secure environments. Experience using TSM, TAM, TIM and Monitoring Tivoli applications.
• Extensive expertise in Information Assurance security, auditing, and the Certification and Accreditation process using / complying with DITSCAP, FIPS, NIST dictates.
• Competent performer of risk analysis, testing SAP solutions, improving performance, and measuring health checks, including DoD standards.
• Highly skilled troubleshooting network and broadband connectivity using network management, monitoring capabilities, and solving performance problems including OS and applications HP OpenView, NetCool, Rational tools, Tivoli Performance, and TEC applications tools .
• Performed fail over and disaster recovery solutions for IT departments, developed and implemented security policies, data retention plans, CONAPS. Applies security directives driving compliance from government in Banks, and Financial institutions Fidelity investments, Key Bank, and others .

Key Courses and Training

• Candidate to CCNA, CCNP Cisco training and CCNA VOICE 2013
• CCNP training, security plus training 2012
• IT Project Development and Software Development AU-2005-2006
• C4ISR Telelogic Modeling Tools
• International Information Security CISSP, ISC
• IT Architect core courses completed IBM
• Tivoli Products, TWS, TSM, NETVIEW, TFIM, TAM, ITNM Tivoli Systems
• Proficient using DB2, Oracle, LINUX, Windows 2003-2008, Cluster environment
• Web Services Manager, WebSphere, Web Services Analyzer, SAP Portal
• Certified Client/Server Database, George Washington University
• MCSE Specialist NT v.3x, v.4.x, SMS, IIS, Exchange Microsoft
• Cisco CCNA Certification, American Research
• ATM/Switches Certification, American Research
• HP OpenView Certification, Hewlett Packard,
• Smart Hubs Certification, Optical Data Systems
• Certified UNIX Administrator, George Washington University
• CNE Training, Novell v.3x, v.4.x, Computer Learning Center
• NOVELL CNA, Novell Provo
• Certified CLARiiON Raid Technology on open systems, Data General
• Certified UNIX Administrator, Data General
• Computer Programming Diploma, IMS Computer Learning Center