SUMMARY:

• Experienced in provide detail consultancy on provisioning, installing, configuring and maintaining large government and corporate environments public & private networks infrastructure. Extensive research, analysis and creation various workflow process, which were primarily focused on mitigating and migrate specific traditional model network and system capabilities into a more agnostic solution to assist the client or customer in reducing TCO (Total Cost of Ownership). With my many year of experience provide consultation in Data Center Support, VOIP, Cloud and Enterprise Architecture. Also designing and implementing various solution with new innovated technology from a hardware and software infrastructure with various multivendor solutions, which include (Cisco, Microsoft Azure, AWS) to name a few. In addition to ensuring the CND (Computer Network Defense), Cloud Service Integration, Active Directory, Exchange Server and Enterprise Vault remain secure and operational to meet DISA STIG compliance. Schedule weekly conference meeting with various project leads to discuss system and network capability initiative and progress.
• Security accreditation on Risk Management, Change Management, Privilege Management, Computer Forensics, Legal Issues and Ethics.
• Developing TTP (Technical Tactical Procedures) to provide directive for each Project requirement to be submitted to the Senior Management for review and concurrence.
• Devise proper methods to cryptographically isolate networks with CND package designs.
• Developing business case documents which provide futuristic solutions on how to transition existing networking infrastructure into a more interoperable rapid deployment solution.
• Create numerous Python and Pearl scripts for various networking solutions.
• Create Security implementation guideline for securing the networking environments to meet NSA or DISA compliance
• CND (Computer Network Defense) installation, configuration and monitor (Network Traffic Monitoring) with the use of network logger, scrutinizer and forensics analysis appliances for e.g. Arcsight Logger, Arcsight Manager, NetScout Analyzer, Splunk, Plixer on various networking section (Core, Distributed and Access Layer).
• Train employees on how to follow the ERB (Engineer Review Board) process base on the ITIL Phase process.
• Implementing and Designing for Enterprise Campus, WAN Edge, Remote Site using multi - vendor devices (Cisco, Juniper & Palo Alto) for networking solution for (GETVPN, DMVPN & IPSEC).

TECHNICAL SKILLS:

Technology and Tools: ROUTING solution around (EIGRP, OSPF, BGP and IS - IS), and Distributing Core functionalities with Routing & Switching using (MPLS, ACL, LACP, VSSM, VTP, PSVT, RSPVT and more). MOBILE Support for VOIP, Wireless Broadband, Wireless Printing, DESKTOP OS Windows 95/98, Windows Me, Windows 2000, CABLING Ethernet, Coaxial cabling, Fiber, Cat 5E, Cat 6 Termination and Troubleshooting Windows XP, Windows Vista Ultimate, Windows 7 Enterprise Edition & Window 8. MICROSOFT Active Directory, File & Print Server, Cluster Management, SERVER OS Windows 2000, Windows 2003, Windows 2008 R2 Standard Enterprise Edition and Window Server 2012 R2 Experience with Installation, Configuration and Deployment of Cisco ISE (Identity Service Engine), used to control network wired, wireless access from one place. Ability to view users and device with a flexible interface. Cisco ISE 2.1 implementation to reduce risk and contain threats by using the dynamic control network access. The proven ability to automatically assess the vulnerabilities and apply threat intelligence and remediate any suspicious networking device. UNIX ESX 5.12 for Virtualize infrastructure with VMWARE, RDP in using VSphere to setup cluster farm, and client desktop terminal access. ENTERPRISE SOLUTIONS ISA Server 2000, ISA Server 2004, Sequential & Random Backups, McAfee EPO Server, SMTP Server, Microsoft Exchange, Symantec Enterprise Vault, Blackberry Enterprise Server, Citrix Server Publishing, Symantec Imaging. Mobile Support Citrix, LTS, ATS, ACRS+, Router, Switch, Imaging Desktop, TCP/IP setup, Installation, Build, Networking Printers & Repair, Backup Servers, Troubleshooting Large Networks, Remote Desktop Assistance, Configuration of Office 2003,2007 and 2010, Track IT Software, Remedy and Help Star. Deployed Cloud Scalability with AWS EC2, ELB, EBS, VPC and RDS using Route 53. Networking designing and implementation of Juniper SRX Firewall, Palo Alto, Fortinet, Fortigate, Juniper SRX 550, Cisco Sourefire Firewalls, Cisco Switches, Cisco Router, Cisco ASA Firewalls, Cisco ISR, Cisco UCS Virtual Server Environment & Cloud Service Integration.

PROFESSIONAL EXPERIENCE:

Confidential

LEAD NETWORK SYSTEM ENGINEER

Responsibilities:

• Provide Management the correct recommendation to effectively transition specific underutilized resources to a more agile management process.
• Evaluate all customer equipment and troubleshoot all networking router, switch and firewall devices and networking infrastructure with specialty software Solar-winds, Cisco ACS or ISE, ForeScout, Palo Alto and Fortinet.
• CND (Computer Network Defense) installation, configuration and monitor (Network Traffic Monitoring) with the use of network logger, scrutinizer and forensics analysis appliances for e.g. Arcsight Logger, Arcsight Manager, NetScout Analyzer, Splunk, Plixer on various networking section (Core, Distributed and Access Layer).
• Install, configure and troubleshoot various V-Cloud Firewalls, Cisco ASA Firewall, Various Cisco Routers & Switches.
• Ensure the facilities daily operations hosting area PDU’s, Emergency Power, Air-condition Units and other equipment are operational via Alert Notification.
• Monitoring and troubleshooting all ongoing security violation for customer equipment connective issue with basic and complex command like PING, Trace-route, Nslookup, Wire-shark and etc.
• Assisted US- MINT Chief of Security branch on effectively configuring and securing the all network related device become DISA Compliant. Task other networking engineers at various site to ensure the all maintenance operation replacements and upgrades function without zero impact to the System environment.
• Submit various improvement requirements through ITSM for ERB (Engineering Review Board) approval to be implemented into the production. The improvements are base on the security report analysis generate weekly by Solar-winds.
• CCB (Change Configuration Board), review the final documentation submitted verifies the operation task, updates the directs for final approval after production testing to validation the solution meet the overall requirement.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to Confidential organization information system or environments of operation.
• Discuss matter with during CND meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the Enterprise Architectural.
• Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems.
• Reviewed and Adhered to security practices that integrated into the requirements and daily routines of the Confidential Enterprise Campus and Remote Sites organizational personnel with security responsibilities.
• Continuous monitor of both Confidential Enterprise Campus (HQ) and Remote Sites around the US with regards to information system to ensure the effectiveness of deployed security controls, changes and the operation environment are with compliance with the mandated legislations, directives and policies.
• Develop all security NBAR, Flexflow & IPFIX configuration on all network devices for DHS security analytics using ForeScout & Gigamon equipment connected to the US MINT Distributed Layer Switches by SPAN port configuration.
• Remove all SNMPv1 & SNMPv2 communities, traps from all networking routers, switches, firewalls and Cisco Wireless controller due to high risk of malicious, vulnerabilities and breaches to the Confidential environment.
• Developed and create numerous Python script to execute configuration onto multiple multi-vendor solution in order to obtain rapid deployment to bring and entire remote or branch site full operation within matter of hours.
• Create the approve groups, authentication credentials and user account access for the DISA approved SNMPv3 configurations on all Confidential networking devices.
• Utilized Riverbed WAN Optimization management to gather true daily analysis of the all Network Traffic which transverse between Core/ WAN Edge Routers and Distribute Switch for both Inbound and Outbound data resource and utilization.
• Install and Configured Solarwinds SLA reporting features to provide a monthly report on current states of all US MINT Enterprise Campus and Remote Site are functioning.
• Verify all Confidential networking equipment meet NSA or DOD compliance for EOL & EOS.
• Provide detail assistance with the installation, configuring and troubleshooting of Enterprise Campus, Remote Site and WAN Edge network systems to deliver networking proficient services.
• Verify all customer IT Infrastructure, enterprise computer and networking systems architecture with the effective solutions to implement of new networking logical topologies and physical diagrams, ensure all service security standard within the Virtual Area meets the network cloud requirements.
• Trained in configuring, racking and installation of Juniper Firewalls, Cisco Fire-source and other devices.
• Monitor the physical with networking infrastructural changes with Solar-winds & connector, distribution system and intelligent port management system.
• Create a complete logical networking diagrams and other communication layout within White Paper.
• Discuss and forester improvement on update production and operational policies, on a high level, document step by step procedures.
• Create SOP, SOW, TTP for all new initiatives to rapidly changes to quickly eradicate the legacy OSS architecture to a more programmable network so we can automate all manual provisioning, activation, order management, inventory, configuration management, performance management and faulty or trouble management devices.
• Build Physical and Logical Diagrams based on the legacy network solutions to directly mitigate the requirements for any Enterprise Campus, WAN, Data Center infrastructure to a more Fast IT model.
• Deliver a Network Engineering Monthly SLA reports on the progress of the Confidential networking environment.
• Configure the Nexus 1000v switches with UCS manager for the port-type for the Virtual Environment access to VMWare port interface for VLAN access.
• Utilize the proper troubleshooting methods with the TCP/IP model and OSI model to resolve ongoing or tentative issue.
• Design and implement F5 for web server and application website host to load balance between various pools server in either a Static functionality (Round Robin or Ratio) or Dynamic (Slow Ramp Up or Less Connection), depending the server’s hardware and software components features.
• Present and other network engineers on how to effectively configure AWS for both separate of functionality with regards to NMS & Compute Environment.
• Properly design the complete network diagrams on the implementation for how CND, will monitor the entire Production environment which support both replication site.
• Created the default gateway configures which routes the traffic using ROUTE 53 (iBGP) to the NMS and Compute environment with the use of Juniper SRX Firewall Devices.
• Implemented Cisco ISE 2.1 (Identity Service Engine) used to control and simplify access across the entire Enterprise Campus, WAN Edge, Data Center, Remote Sites (VPN Connection) which use deploy policies across all end points or access points that are enforce using Cisco TrustSec (SDN) Segmentation.
• Implemented the design of how to mitigate the design for two factor authentication from the management of the Production environment which traverse all access to US Mint.
• Devise concurrent network engineering plans, designs, test and implementations for access control policies, COOP/DRP (disaster recovery plans), system backup procedures for all Cisco, Juniper and third party approved vendor solution through the ERB office.
• Evaluate all potential risk, by encompassing all actions taken to reduce complexity, increase objectivity, and identify important decision factors.
• Also developed TTPs which address information technology operations risk, business continuity management, information system testing, reliability and performance management and change management.

Confidential

NETWORK SYSTEM ENGINEER

Responsibilities:

• Provide Management the correct recommendation to effectively transition specific underutilized resources to a more agile management process.
• Review all broken ITIL waterfall processes based on document scope, intended audience and purpose, so we can define strategies and delivering results with an Agile workflow process where needed base on Scope, Schedule and Resources to provide quality.
• Attend numerous schedule Engineer Review Board meetings to discuss new initiatives, refreshes and transitioning capabilities to reiterate all the requirements needed in order for approval process to work effectively after Phase 1 is completed.
• Change Advisor Board, discuss the cost associated to the implementation requirements and is it worth the funding if there will be additional cost base on operational impact.
• Provide program office leads the best network engineer solutions on how risk management, change management solution can help isolate, mitigate specific security issues in a timely manner.
• Create SOP, SOW, TTP for all new initiatives to rapidly changes to quickly eradicate the legacy OSS architecture to a more programmable network so we can automate all manual provisioning, activation, order management, inventory, configuration management, performance management and faulty or trouble management devices.
• Ensure all Weekly Analysis Reports (WAR) are submitted to program managers so the matter can be immediately discussing with senior management as hot topic.
• Build Physical and Logical Diagrams based on the legacy network solutions to directly mitigate the requirements for any Enterprise Campus, WAN, Data Center infrastructure to a more Fast IT model to meet the Combat & Command requires base on a JS-6 6285 requirement.
• Deliver a Network Engineering Monthly reports on the progress of all program office requirement under the MNIS Portfolio.
• Verify all MNIS networking equipment meet NSA or DOD compliance for EOL & EOS during immediate refreshes
• Manage specific site capabilities meetings on the behalf of the Program Managers with regards to System Engineer, Networking Engineer, Auditing and Security as required.
• Revised the entire Legacy OSS Network infrastructure at numerous site locations to a more programmable/ interoperable network infrastructure, which removes all disconnect between compute and networking environment.
• Provide MPE-IS the acquisition of Elasticbox capabilities for the out years for automating and integrated solutions to support Private Cloud & Virtual Private Cloud.
• Design a true WAN solution to eliminate the complexity of traditional model solution for CMNT and transition the environment into a more DevOps operation environment.
• Write proposals to show the TCO, Status Quo on the existing infrastructure and how other solutions can reduce cost and drive up efficiency for the long term vision.
• Implemented Cisco ISE 2.1 (Identity Service Engine) used to control and simplify access across the entire Enterprise Campus, WAN Edge, Data Center, Remote Sites (VPN Connection) which use deploy policies across all end points or access points that are enforce using Cisco TrustSec ( SDN) Segmentation.
• Cisco ISE was used more to attain a deeper understanding of Unified View, Fast Discoveries and in depth visibility to forensic analysis after a endpoint is remove any combat or command infrastructural network.
• Notify Information System Security Management (ISSM) about any security violation within any MNIS (multinational network information system) that may compromise or pose potential impacts to the network operations or system operational environment, either for Operation DECCs or Cloud Integrated Services.
• Research new technologies and assess their use in enhancing network efficiency, security, total cost of owner and availability.
• Discuss the reasons and requirements to install a full automated script to eliminate the confusion and issue related to the deploying various configurations all Cisco, Juniper and other third party vendors networking appliances using Python.
• Direct Senior network engineers on how to effective submit the necessary request for active directory t
• Provide detail consultation on DECCs sites on specific networking devices, system devices and other integrated solution devices which require immediate maintenance or refreshes.
• Devise concurrent network engineering plans, designs, test and implementations for access control policies, COOP/DRP (disaster recovery plans), system backup procedures for all Cisco, Juniper and third party approved vendor solution through the ERB office.
• Evaluate all potential risk, by encompassing all actions taken to reduce complexity, increase objectivity, and identify important decision factors.
• Configure the Nexus 1000v switches with UCS manager for the port-type for the Virtual Environment access to VMWare port interface for VLAN access.
• Developed complete subnet blocks for the Private and Public IP address schemes for the UISS APAN Cloud.
• Created the default gateway configures which routes the traffic using ROUTE 53 to the NMS and Compute environment with the use of Juniper SRX Firewall Devices.
• Assisted with the IPSEC configuration from the access through Cisco Akamai technology for two per site redundant Juniper SRX Firewalls which filter provide two level of crypto graphical isolated credentials before entering into the Production network (AWS).
• Created the separation of functional in the AWS environment on how specific traffic will accessed remotely to both CND, System Administrators, Network Administrator within the NMS (network management systems) VPC and the Compute (VPC) for the production and services environment for user.
• Ensured all MNIS various program office qualitative risk assessment process which may subjectively impact an event that will effect a capability, project to support the war fighter from being compromised.
• Developed with a team effort the DRP (Disaster Recovery Points) for redundant site design for Primary & Active standby sites using AWS East Coast and West Coast for UISS APAN Capability.
• Also developed TTPs which address information technology operations risk, business continuity management, information system testing, reliability and performance management and change management.
• CND (Computer Network Defense) installation, configuration and monitor (Network Traffic Monitoring) with the use of network logger, scrutinizer and forensics analysis appliances for e.g. Arcsight Logger, Arcsight Manager, NetScout Analyzer, Splunk, Plixer on various networking section (Core, Distributed and Access Layer).
• Evaluate all customer equipment and troubleshoot all networking router, switch and firewall devices and networking infrastructure with specialty software Solar-winds, Cisco ISE, ForeScout, Palo Alto and Fortinet.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to the DISA/MNIS organization information system or environments of operation.
• Discuss matter with during CND meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems.
• Reviewed and Adhered to security practices that integrated into the requirements and daily routines of the DOD Enterprise Campus and Remote Sites organizational personnel with security responsibilities.
• Continuous monitor of both DOD & NSA Combat and Command Remote Sites around the world with regards to information system to ensure the effectiveness of deployed security controls, changes and the operation environment are with compliance with the mandated legislations, directives and policies
• Develop complete project plans on how each phase of the project is executed base schedule.
• Designed the Enterprise Architectural Diagrams for Public integration for EC2 (Elastic Compute Cloud) for providing scalable computing capacity in the AWS Cloud. EC2 eliminates your need to invest in hardware up front, so you can develop and deploy applications faster.
• Provide additional support the JS6 & MNIS Chief on the requirement to implement OSS tools with regard to SDN (Software Defined Networks) to eliminate the various traditional networking and system operational models.
• Implement various SDN solution depend on the combat and command capabilities with regard to OSS tools with Solarwinds, DADAC & Itential on the vendor agnostic solutions.
• NETWORK ENGINEER/ ASSISTANT PROGRAM LEAD - MISOURCE/DIDATA
• Directive for a Public school infrastructure refresh/upgrade process for staging, provisioning, deploying, configuring and troubleshooting all Cisco 2960 switches, with VLAN configurations.
• Assist in the provisioning and test off all Cisco Unified Call Managers with Verizon networks.
• Deployed and ensured registration of all Cisco VOIP 8841 phones with regards service.
• Provide directives on how to effective troubleshoot the STP, VXLAN, iBGP, eBGP, DMVPN, IPSEC networking issues. Which provide services to ensure the security of all physical, logical and cloud service integrated environment within various customers collocated locations services are restored in the event of a network interruption related to (physical outages, logical outages, IOS failures).
• Implemented Cisco ISE 2.1 (Identity Service Engine) used to control and simplify access across the entire Enterprise Campus, WAN Edge, Data Center, Remote Sites (VPN Connection) which use deploy policies across all end points or access points that are enforce using Cisco TrustSec ( SDN) Segmentation.
• Train new employees on the proper steps and procedure on how to effectively stage, provision, install, and configure all network switches and router before migration.
• Security accreditation on Risk Management, Change Management, Privilege Management, Computer Forensics, Legal Issues and Ethics

Confidential

NETWORK OPERATION DATA CENTER SPECAILIST

Responsibilities:

• Evaluate all customer equipment and troubleshoot all networking hosting devices and networking infrastructure with specialty software web application like “Looking-Glass”.
• Install, configure and troubleshoot various Server, Firewalls, Cisco Router & Switches, Juniper and Server related devices base on customer request instruction. e.g. EMC, IBM, Dell, Hitachi, Vormetric.
• Ensure the facilities daily operations hosting area PDU’s, Emergency Power, Air-condition Units and other equipment are operational. Visible failures or fault must be reported during a walk through or when it arises and inform facilities team immediately.
• Monitoring and troubleshooting all ongoing security violation for customer equipment connective issue with basic and complex command like PING, Trace-route, Nslookup, Wire-shark and etc.
• Assisted corporate customers to effectively manage networking engineers functions in various DOD colocation environments base of the nature of networking installation or troubleshooting request.
• Process all tickets through Remedy for applications to which various clients will request from our First Touch Response representatives assign our team members troubleshoot and test Fiber-Optics Card, Multi-mode or Single-mode fiber and ensure all customers are receiving the lot band with from our colocation Cisco 6500 and 7200 supervisor networking cards.
• Current have a clear understand an experience with the installation and configuration of Cisco Check Point Firewall, Internet gateways, MPLS, Security/Firewalls (PIX/ASA/VPN) with strong IP routing protocols knowledge (RIPv2, EIGRP, OSPF) for interior gateway protocols on a classful network and inbound and outbound ACLs.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to the NSA organization information system or environments of operation.
• Discuss matter with during CDS meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the NSA Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems.
• Present stable, flexible catalog of security controls to meet the current information protection needs and the demands of future on the basis for changing threats, requirements and technologies for any capabilities provide to combat and command.
• Discuss the Security board member on improving the communication among various combat and commands at various sites around the world by providing a common lexicon to support discussion regarding the risk management concepts.
• Experience supporting DOD IT business programs, and Colocation environments with NATO interagency intelligence, daily Operation procedures on the base of commands from Army, Air Force
• Assistance with third party vendor installation equipment for ATM, Cisco, Nortel and optical products and switches.
• Provide detail assistance with the installation, configuring and troubleshooting of LAN/WAN systems to deliver networking services.
• Also trained on the Elasticbox functionality of how to effective transition all Data Center Site into one scale functionality to traverse traffic and integrate multi-vendor cloud platforms for “AWS, Microsoft Azure, VMWARE-Cloud and many more.
• Verify all customer IT Infrastructure, enterprise computer and networking systems architecture with the effective solutions to implement of new networking logical topologies and physical diagrams, ensure all service security standard within the Virtual Area meets the network cloud requirements.
• Test all networking fiber optics termination end with specialty Leviton testing tools.
• Trained in configuring, racking and installation of Juniper Firewalls, Cisco Fire-source and other devices.
• Reviewed and Adhered to security practices that integrated into the requirements and daily routines of the Data Center organizational personnel with security responsibilities.
• Continuous monitor of both Data Centers information system and Colocations distributed networks to ensure the effectiveness of deployed security controls, changes and the operation environment are with compliance with the mandated legislations, directives and policies.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to the Confidential organization information system or environments of operation.
• Discuss matter with during CND meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems
• Monitor the physical with networking infrastructural changes with Shareware & Leviton patch panel & connector, distribution system and intelligent port management system.
• Security escort to approved vendor to access colocation areas to complete a requested task based on customer demands.
• Implemented Cisco ISE 2.1 (Identity Service Engine) used to control and simplify access across the entire Enterprise Campus, WAN Edge, Data Center, Remote Sites (VPN Connection) which use deploy policies across all end points or access points that are enforce using Cisco TrustSec ( SDN) Segmentation.
• Created the default gateway configures which routes the traffic using ROUTE 53 to the NMS and Compute environment with the use of Juniper SRX Firewall Devices.
• All package received from all customers must be immediately signed, logged into the internal tracking system for track record purposes and stored in the locked storage facility. Email notification must be sent to customer immediately to verify receipt.
• Create a complete logical networking diagrams and other communication layout within White Paper.
• Discuss and forester improvement on update production and operational policies, on a high level, document step by step procedures.

Confidential

SENIOR IT Network Wireless Engineering

Responsibilities:

• Evaluate and Update procedures with regards to building an effective Blackberry mobile support team.
• ITIL Trained and Project Management Trained in order to submit requirement in the change management process prior to development, implementation and sustainment.
• Troubleshoot, Document, all new employees with proper steps and procedures on resolving mobile related issue. Example. Service coverage, drivers and software integral repair.
• Repair related, IOS, Citrix, Virtual Terminal Related issue for mobile device on MiPads, iPhones, and BB's.
• Assist with Managing, Setup and on CA ticketing system for all mobile related ticketing issues.
• Assist with PKI Sync interaction with all Blackberry, Apple IOS and Android mobile devices issued to requested customer, via E-mail import as well as utilize Blackberry Desktop Manager 7.0 & Blackberry Link 10.
• Provision, Update Profiles & Installation on all mobile broadband, hotspot and blackberry devices on various carriers, e.g. Sprint, Verizon, Confidential & AT&T.
• Process all necessary replacements with utilizing the designed Wireless Equipment & Service Portal on Info Path Platform.
• Discussed the Cloud mobility service on how to transition all services from on Call Manager to Premise (Cloud) environment for customers to access on more secure basis which save the functionality of duty with Gov-Cloud services or alternatively AWS.
• Trained on the Latest Blackberry 10 Server & understanding the service interaction with multiple mobile devices within the Workspace Environment & Personal utilize the Hub.
• Android, IPhone & MiPad setup and configuration of utilizing secure messaging service on the Good Server with App on mobile device. Install, Monitor and Locating all devices used with Air Watch Server, Absolute Manage Maas360 and Mobile Iron.
• Blackberry 10, Good Server Trained in USD, BAS, BES, MDM & other integral services on Verizon 10.2
• Configure the Nexus 1000v switches with UCS manager for the port-type for the Virtual Environment access to VMWare port interface for VLAN access.
• Implemented Cisco ISE 2.0 (Identity Service Engine) used to control and simplify access across the entire Remote Sites (VPN Connection) which use deploy policies across all end points or access points that are enforce using Cisco TrustSec ( SDN) Segmentation.
• Installed, configured and troubleshoot Cisco Wireless Controller and Cisco Access Point through the Department of Veteran Affair headquarter and remote location, with regards to spectrum avoidance issue, user authentication and rogue devices.
• Created the latest modules on how to effectively troubleshoot, repair all Unified Wireless Networks. S.O.P (Strategic Operational Procedures) for daily workflow and processing.
• Developed mandatory elements regarding the implementation of a policy, procedures, standards and guidelines that must be in the living document, which require periodic evaluation and changes as necessary.
• Discuss matter with during CND meeting to implement measures of control to safeguard or countermeasures prescribed for information Wireless communication systems within the US- DEPARTMENT of Veteran Affair HQ Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation wireless network systems.
• (SRT Security Response LEAD)- US ARMY)
• Initiate Tactical response to major virus related issue for found by random scan from Retina.
• Also used Check Point Firewall with Check Point’s Event Reporter and Tufin’s SecureTrack which assisted increased flexibility and secondly, decreased cost.
• Initiate a Check Point Firewall ---cleaning and performance tuning on rule-base or ACL to a more explicit rule to replace “any” in the source and destination or service fields in case of audit purposes.
• Determining if the specific equipment will require decommissioning of a host or service based on the policies and organizational procedure.
• Troubleshoot and Isolate any vulnerability issues regarding the integrity of the existing networking infrastructure base on high risk reports from the CND (computer network defense) Arcsight loggers.
• Increase the Check Point firewall performance by speeding up the quires by indexing all the data all retained.
• Connect All Users and immediately inform them of all compromised workstation and laptops to be removed from the network and re-image dependent on the official standardization required my IA (Information Assurance Security AKO rules)
• Track, Isolate, Perform investigation and provide a complete report to all with auditing detail to the ISAO regarding how the matter should be handled. Dependent on the cause, termination, warning can and will be immediately mandate from SRT IASO or IASMO.
• Implemented Cisco ISE 2.0 (Identity Service Engine) used to control and simplify access across the entire Enterprise Campus, WAN Edge, Data Center, Remote Sites (VPN Connection) which use deploy policies across all end points or access points that are enforce using Cisco TrustSec ( SDN) Segmentation.
• Configure the Nexus 1000v switches with UCS manager for the port-type for the Virtual Environment access to VMWare port interface for VLAN access.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to the US-ARMY organization information system or environments of operation.
• Discuss matter with during CDS meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the US-ARMY Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems.
• Present stable, flexible catalog of security controls to meet the current information protection needs and the demands of future on the basis for changing threats, requirements and technologies for any capabilities provide to combat and command.
• AKO certified and trained by US ARMY related to security requirements for SRT division.
• Provide backup assistance to all Service Issues regarding repair, password reset, CAC card activation and any other general user error or use.

Confidential

Networking /System Support Administrator

Responsibilities:

• Provide Remote assistance to Internal & External Desktop user with Check Point VPN for work at home application like App Portal, Remote into the user workstation to resolve problematic issue with software applications like WebEx, Team view, Windows Live Meeting.
• Also used Check Point Firewall with Check Point’s Event Reporter and Tufin’s SecureTrack which assisted increased flexibility and secondly, decreased cost.
• Initiate a Check Point Firewall ---cleaning and performance tuning on rule-base or ACL to a more explicit rule to replace “any” in the source and destination or service fields in case of audit purposes.
• Determining if the specific equipment will require decommissioning of a host or service based on the policies and organizational procedure.
• Increase the Check Point firewall performance by speeding up the quires by indexing all the data all retained.
• Daily Task of re-occurring issues and the fixes, Password Reset, Reconfiguration of Operating System, Configure, Repair, and Re-image all users Software & Hardware related Desktop P.C. and Laptop problems.
• Create, Update and Reconfigure user new and existing user accounts for in AD, Exchange, provide the correct policy group to added as well as account termination.
• Troubleshoot all software relate issue for MS Office, Windows XP, Windows 7 and Windows Vista and Ubuntu.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to the Confidential organization information system or environments of operation.
• Discuss matter with during CND meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems
• Create, Resolved, & assign Technicians related problems sent via Ticket request on software call Footprint.
• Monitor and assist with all Helpdesk Technicians in setup and troubleshooting issues for users & resolving back end tickets.
• Check the Service Desk phone voicemails periodically.
• Provide support for private designed application like PGP encryption, SXC account creation.
• Maintain and Repair all multifunction printer and private office printer e.g. (Lexmark, HP and Brothers)

Systems Administrator

Confidential

Responsibilities:

• Build, Implement and Upgrade all server infrastructures for Exchange Server, Active Directory, Symantec Enterprise Vault, Blackberry Enterprise Server 5.1 and V-Sphere.
• Symantec Enterprise Vault designed to sync all end users archiving data, from the local computer or shared networking drives e.g.(.pst, ost and n2k ).
• Set all storage limits depending directives request.
• Troubleshoot, Word Perfect, MS Office, TCP/IP networking, Outlook E-mail Accounts to Exchange Server 2007 & 2010, for the Federal Government COPS.
• Access Layer - VLAN configuration and load balancing for the entire environment to ensure all end user are capable of access various networking service and resource.
• Create Solutions for all software and hardware related problems submitted via the Ticket system of Help Star.
• Perform Maintenance test and initiate all workstation updates regarding Windows Server and End user (Window 7 Enterprise) environment.
• Formulate contingency plans for all Sequential Server Backups and failure issue.
• Investigate all software changes via the Windows Kernel Registry that might have been affected by fail group policy services that require isolated attention.
• Co-ordinate all new designs and infrastructure with the IT Department team members on plans and best dates for implementation once approved.
• VPN networking troubleshooting, upgrade and tweaking for all remote users’ utilizing JRSA and JMD security.
• Print Server & File server troubleshooting and upgrade for all networked printers.
• Imaging Workstation with Symantec, Acronis for various laptops and desktops.
• Developed software engineering process with a process model of using spiral and agile model with the characterized by repeating different levels in revolution and combine the requirements with a iterative development as a ongoing collaboration.

Jr. Networking Consultant Tier 2

Confidential

Responsibilities:

• Also used Check Point Firewall with Check Point’s Event Reporter and Tufin’s SecureTrack which assisted increased flexibility and secondly, decreased cost.
• Initiate a Check Point Firewall ---cleaning and performance tuning on rule-base or ACL to a more explicit rule to replace “any” in the source and destination or service fields in case of audit purposes.
• Determining if the specific equipment will require decommissioning of a host or service based on the policies and organizational procedure.
• Increase the Check Point firewall performance by speeding up the quires by indexing all the data all retained.
• Installed, configured troubleshoot additional devices Firewall Cisco Check Point, F5, Juniper Firewall & third party vendor devices.
• Remote Desktop Assistance to Internal Desktop user & JSRA VPN user utilizing token ring on a Windows Vista & Windows 7 OS. E.g. of daily re-occurring issues and the fixes, Password Reset, Reconfiguration of Operating System, Juniper Network Troubleshooting, Configure, Repair, and Re-image all users Software & Hardware related Desktop P.C. problems.
• Troubleshoot, Word Perfect, MS Office 2007 & 2010, TCP/IP networking, Outlook E-mail Accounts to Exchange Server 2007 & 2010, for Civil Division & Civil Rights Divisions.
• Create, Resolved, & assign Technicians related problems sent via Ticket request on software called Remedy.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to the US-DEPT Justice organization information system or environments of operation.
• Discuss matter with during CND meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems
• Monitor and assist with all Helpdesk Technicians in setup and troubleshooting issues for users & resolving back end tickets.
• Check the Helpdesk phone voicemails periodically.
• Assign tickets to Field Support technicians to repair Printer, Scanner and other technical related issue that we cannot resolve remotely.
• Assist in the initiation of the JCONV 5 Pilot Virtual Terminal Station (Vsphere) used in all Divisions.
• Communication with Helpdesk Technicians and remotely we utilize 2007 Office Communicator

Systems Administrator Support Tier 2

Confidential

Responsibilities:

• Active Directory Profile Creation, Group Polices, VPN account creations and profile activation.
• Remote Desktop Assistance to Internal Desktop user & VPN installation users. E.g. Password Reset, Reconfiguration of Operating System, Juniper Network Troubleshooting
• Troubleshoot, Configure, Repair, and Re-image all users Software & Hardware related Desktop P.C. problems.
• Setup Users Logon, CNNX application, Excel Word, PowerPoint, TCP/IP networking, Outlook E-mail Accounts to Exchange Server, NORC Suite application as well as troubleshoot.
• Create & Resolved User & Technicians related problems sent via Ticket Request on software called, Track I.T., Remedy and Footprints.
• Also used Check Point Firewall with Check Point’s Event Reporter and Tufin’s SecureTrack which assisted increased flexibility and secondly, decreased cost.
• Initiate a Check Point Firewall ---cleaning and performance tuning on rule-base or ACL to a more explicit rule to replace “any” in the source and destination or service fields in case of audit purposes.
• Determining if the specific equipment will require decommissioning of a host or service based on the policies and organizational procedure.
• Increase the Check Point firewall performance by speeding up the quires by indexing all the data all retained.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to the NORC organization information system or environments of operation.
• Discuss matter with during CND meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems
• CND network monitor and optimization of specific work flow with regard to Packet Capture and analysis using CounterAct, Riverbed Shark technology, Cisco ASA Firewalls to gather flow to attain the true functionality of the networks operation.
• Solid understanding of the OSI & TCP/IP Re
• Install and Configure Cisco ASA firewall device to either using a proxy, OSPF or EIGRP protocol or IPSEC to traverse traffic through the Enterprise Campus network via secure VPN for client access.
• Monitor and assist with all Helpdesk Technicians in setup and troubleshooting issues for users & resolving back end tickets. Setup VOIP Phones, Video conference meeting and train of the issue of the device over a Polycom System and Creston.

System Administrator

Confidential

Responsibilities:

• Active Directory Profile Creation, Group Polices, VPN account creations and profile activation.
• Remote Desktop Assistance to Internal Desktop user & VPN users. E.g. Password Reset, Reconfiguration of Operating System. Reset Internet Access
• Troubleshoot, Configure, Repair, and Re-image all users Software & Hardware related, Routers, MPLS Switches Desktop P.C. problems.
• Setup Users Logon, RAS, Citrix application, Excel Word, PowerPoint, TCP/IP networking, Outlook E-mail Accounts to Exchange Server.
• Create & Resolved User & Technicians related problems sent via Ticket Request on software called Touch Paper, Track I.T.& Remedy.
• Monitor & Train New Recruited Helpdesk Technicians in setup workstation and troubleshooting issues for all end users, instruct on the correct method of resolving back end tickets.
• Also used Check Point Firewall with Check Point’s Eventia Reporter and Tufin’s SecureTrack which assisted increased flexibility and secondly, decreased cost.
• Initiate a Check Point Firewall ---cleaning and performance tuning on rule-base or ACL to a more explicit rule to replace “any” in the source and destination or service fields in case of audit purposes.
• Determining if the specific equipment will require decommissioning of a host or service based on the policies and organizational procedure.
• Increase the Check Point firewall performance by speeding up the quires by indexing all the data all retained.
• Aware of NIST Special publication, with regards to cautionary implementation changes to adding security controls or control enhancements where applicable to the ACS organization information system or environments of operation.
• Discuss matter with during CND meeting to implement measures of control to safeguard or countermeasures prescribed for information networks or systems within the Enterprise Architectural Designs to (protect the confidentiality, integrity and availability of information that is processed, stored, and transmitted with the operation network systems
• Order hardware replacement for Desktops, Laptops, Networking Printers and excreta.
• Citrix, LTS, WMS, ACRS+ web application updating, troubleshooting and configuring.
• Update & Scan all workstations & network printers for ACSDTS Inventory via location ID, Monitor & Workstation Asset tag and Service or Serial tags in Microsoft Access.
• Synchronize, Troubleshoot & Update all Blackberry Cell Phones for ACS Managers, Directors and General Users for Microsoft Exchange Server
• Experience with Riverbed WAN Optimizer, Load balancing, and Spanning Port for Netflow, Flexible Flow with Cisco networking router and switching devices.
• Manage all user’s assigned permissions to mailbox creation and managing exchange recipients for various policy management.
• Move User mailbox form one server to another server.
• Import& exportuser e-mail to archive folder to be stored local on workstation, networking drive or enterprise vault server.
• Initiated the Creation and Management all Group Distribution List.
• Correct database issue with regarding to profile sync and log on for lost connections from online and off line integration, migration, defragmentation, recovery & repair.
• SMPT connectors are maintaining by the routing tables and etc.
• Report Site Status Update during & before departure of my shift to my immediate supervisor & co-works of any Network Latencies or Server Application Outages.
• Provide updated on any disaster recovery for various workstations & server OS.
• Performed desktop assistance for approximately 250 users in the ACS administrative environment city wide.
• Setup VOIP phones setup for Cisco 7190 devices.

Confidential

Networking Technician

Responsibilities:

• Remote Desktop Assistance to Internal Desktop user & VPN users. E.g. Password Reset, Reconfiguration of Operating System. Reset Internet Access
• Program Backup Server for daily backups on Sequential Tape Drives
• Troubleshoot, Configure, Repair, and Re-image all users Software & Hardware related problems.
• Setup Users Logon, RAS, CNNX application, Excel Word, PowerPoint, TCP/IP networking, Outlook E-mail Accounts to Exchange Server.
• Create & Resolved User & Technicians related problems sent via Ticket Request on software called Touch Paper.
• Monitor Junior LAN Technicians in resolving back end tickets for users.
• Order hardware equipment replacement for Backup Servers, Desktop P.C. and etc.
• Citrix, LTS, WMS, ACRS+ web application updating, troubleshooting and configuring.

Confidential

Junior Consultancy Manager

Responsibilities:

• Also used Check Point Firewall with Check Point’s Event Reporter and Tufin’s Secure Track which assisted increased flexibility and secondly, decreased cost.
• Initiate a Check Point Firewall ---cleaning and performance tuning on rule-base or ACL to a more explicit rule to replace “any” in the source and destination or service fields in case of audit purposes.
• Determining if the specific equipment will require decommissioning of a host or service based on the policies and organizational procedure.
• Increase the Check Point firewall performance by speeding up the quires by indexing all the data all retained.
• Troubleshooting, configuring, new installation of LAN( Local Area Network)
• Repairs and consultancy solutions for all Small, Medium and Large Network Infrastructure.
• Build, Repair, Install and configure all 2003 Operating Systems for example: - Microsoft Windows Server (Exchange Server, Active Directory Server, Domain Server, Web Server, Sequential and Random Access Backup Servers.
• Indepth Knowledge of using Cisco 5500 Series Wireless Control for private and public AP (Wireless Infrastructures with TKIP & AES Encryption, also control frequency interferences
• Configured and assisted a Coosal I.T. Technician on how to setup a Linux web server, using apache http server for mod-security as an open source intrusion detection and prevention engine for web applications.
• Experience in routing protocol like EIGRP, OSPF and IS-IS and BGP
• Trade- INS, Rental, Repair, Upgrade on Desktop Computers.
• Configuring ADSL Modems for Internet Home & Business uses.
• Diagnose Major, Minor problems on various types of computers as well as new installation.
• Building & Guaranteeing Home & Office use computers.
• Upgrade Computers system to the Latest & Best Technological Hardware on the
• Market.
• Insure Customer keep their Schedule date’s for their computer maintenance on time.
• Assisted in installation, repairing & reconfiguring of office PBX telephone systems e.g. Nor-star, Samsung

Confidential

I.T. Coordinator

Responsibilities:

• Also used Check Point Firewall with Check Point’s Event Reporter and Tufin’s SecureTrack which assisted increased flexibility and secondly, decreased cost.
• Initiate a Check Point Firewall ---cleaning and performance tuning on rule-base or ACL to a more explicit rule to replace “any” in the source and destination or service fields in case of audit purposes.
• Determining if the specific equipment will require decommissioning of a host or service based on the policies and organizational procedure.
• Increase the Check Point firewall performance by speeding up the quires by indexing all the data all retained.
• Source all required hardware & software integrals for Server Environment for e.g. Windows Exchange Server 2003, Windows Server 2003 & up OS.
• Web Server, firewall to block unwanted traffic coming from bad IP sources or having bad patterns. Also diagnose problems with overload causes, overload systems, anti-overloading techniques.
• Build, Configured and Managed over 400 computers with a the design of a Microsoft Server 2003 with setup of Active Directory and assign specific group polices for various departments.
• Integrated DMZ, for the main purpose of creating single and dual firewalls for Web Servers, E-mail Servers, Proxy Servers, Reverse proxy servers for under the utilization of Microsoft ISA Server 2004 & 2008 with the GUI/Interface.
• Provide a helpdesk support on all computer technology-related matters for Users.
• Install, Configure and Maintain all Network hardware and software infrastructure.
• Planning, Implement, Managing and enforce IT Policy.
• Defining operational procedures.
• Educate & Train User in update software. e.g. Windows XP SP 2, Office 2007.