Summary

Highly-motivated lead global enterprise networkand security architect with extensiveexperience in designing Juniper and Cisco architectures, known for his strategic and creative approach to finding innovative, cost-effective solutions to business operations.

Technical Skills

• Designed and implemented MPLS/BGP/OSPF with Cisco and JuniperL2/L3 devices
• Managed Juniper Netscreen/SSG/ISG/ISG/SRX firewalls including site-to-site VPN, NSM
• Supported Cisco VPN provided multiple global vendors with site-to-site VPN access
• Designed redundant PCI-compliant networks with Cisco, Juniper, BlueCoat
• Implemented 3-node campus-wide OC-3/12 SONET/SDH ring, Fujitsu ADM DS-3/T1 handoffs
• Implemented 1/10G Ethernetdata plane,Cisco 6509GMPLS-control network Texas-Europe
• Developed global and campus Layer-2 Dynamic Circuit Networks DCN for multimedia apps
• Internet2/LEARN deployment of 10G Metro Ethernetin Texas, single mode fiber
• ConfiguredCisco 7200/2800/2600 routers, 6905/3750E/2950 switches
• Maintained Juniper J and M-series routers, EX/MX L2/L3 switching
• Designedand installed secure campus-wide 802.11wireless networks
• Installed DS3 microwave5GHz line-of-sight radio system capable of reaching 10 miles
• Implemented secure VoIP system, PBX, Cisco IP Phones, Soft-Phones, TLScertificates
• Implemented remote and site-to-site VPN IPSec with Cisco and Juniper
• Supported Traffic Engineering TE , QoS, VLANs, multilink PPP, QoS RSVP
• Installed Linux/Win servers, virtualization for various applications and development
• Experience programming software in Java, C/C /C .NET with database support
• Designed dynamic service-oriented Cloud Web business applicationsin Java, C

Employment History

Lead Network Security Architect

Confidential

• Direct data center and enterprise network planning, implementation
• Execute security policies, facilities against network security breaches/vulnerabilities
• Provide expert technical consulting on Juniper/Cisco Systems security
• Work with technical team on Data Center and Enterprise Networks security planning
• Develop information technology disaster recovery and business continuity planning
• Audit Data Center and Enterprise Networksbackbone, core and security systems
• Create and administers IT security policies, activities, and standards
• Develop goals, objectives, and policies to ensure compliance with network guidelines
• Evaluate, recommend, and assist in prevention, detection, containment data breaches
• Designs systems and procedures for correction of data and network security breaches
• Reviews contracts to ensure that data and network security are properly addressed
• Conduct periodic audits of internal data and network security controls
• Validate effectiveness, identify risks, and promote continuous improvements

Systems Engineer

Confidential

• Participated in transition-to-active process with CGI/IBM/AT T teams
• Worked with Internet and network security teams in transition process
• Provided support to client's global network infrastructure and security
• Supported client's PCI compliance and security system
• Recommended implementation of security strategies to global clients
• Managed security policies in Juniper ISG1000/2000 and SRX650 firewalls
• Assisted in Juniper firewall system and Network Security Manager upgrades
• Managed Cisco ASA firewalls,6509-FWSM firewall modules
• Supported Cisco remote and site-to-site VPN user and vendor access
• Implemented US, Hong Kong and Europe BlueCoat Internal/External proxy policies
• Managed client's global InfoBlox Domain Name Service DNS system
• Developed products and tested solutions in IBM's WebSphere MQ system

Technical Consultant

Confidential

• Supported oil, gas and power industry with trading and risk management tools
• Provided software customization for financial and physical operations
• Collaborated in development cloud-based gas nomination system in C .Net, Oracle
• Designed gas and power deal interface accelerators in OpenJVS and Oracle
• Developed automated gas pipeline plant accounting system in OpenLink AVS
• DesignedWeb Project Management tool with SharePoint support
• Provided technical architectural consulting support to Software Developers

Manager/Network Architect

Confidential

• Created and managed the University of Houston AT T research network
• Developed and oversaw implementation of network expansions
• Provided Intra- and Extranet network connectivity to 100 campus users
• Managed campus-wide 3-node OC-3/12 SONET with DS-3/T-1 hand-offs
• Installed and supported 1GigaEthernet campus network and services provided
• Installed Juniper J-series BGP/OSPF/RIP routing, EX-4200 switches
• Configured VLANs for campus IP service for research, videoconferences and training
• Implemented MPLS cloud with Cisco and Juniper Networks for research applications
• Connected 1GE campus out to Internet2 layer-3 IP network over single-mode fiber
• Configured Cisco 3500/2950 switches for network connectivity to Internet/ Internet2
• Collaborated with vendors AT T, Fujitsu, EMC, VMWare, Juniper, Cisco among others
• Designed UH campus Layer-2 1GigEthernet dynamic circuit network tied to global net
• Supported Intranets and Extranets connected to Internet/Internet2/AT T networks
• Expandedcopper, single- and multi-mode fiber deployments for service expansion
• Installed and supported Juniper firewalls in production environments, IDS/IPS
• Installed and maintained several local area networks including the UH AT T Lab
• Installed server and desktop virtualization applications from VMWare and Citrix Xen
• Developed EMC information management and storage training facility in UH AT T Lab
• Teamed up with AT T in various research and product development initiatives
• Supported Active Directory, Radius/LDAP security locally and campus-wide
• Worked with research team in development of SCADA infrastructure and security
• Researched and made recommendations for investments in IT to management
• Deployed and supported SIP Voice over IP system using IPSec VPN security
• Deployed Unified Communications solution that included IM over SSL and VoIP
• Collaborated in development and expansion of high-speed regional network in Texas