SUMMARY:

• Have a broad technical background with good knowledge of Stonegate, Cisco ASA, and Palo Alto firewalls, wired/wireless networks, L2/L3 VPNs, Network Security, Network Management, IPv4/v6 Mobility, Cloud Computing, MBSE/SysML/UML modeling, DNS/DNSSEC, DHCP, IPv4/v6, TCP, MPLS, IP Routing (BGP/IS - IS/OSPF/RIP), Anycast, Multicast, IPsec/GRE/PPP/L2TP/PPTP, LAN/VLAN, RADIUS, ATM, Frame Relay, X25/PAD, MSPP, SONET, DWDM, T1/T3, ADSL/SDSL/IDSL/HDSL2, VoDSL, VoIP, H.323, SIP, GR303, SS7, CAS, WIMAX, SATCOM, SNMP, JUNOS, and Cisco IOS.
• Attention to detail, analytical, innovative, a proven fast learner, and a solid team player. Strengths include strategic planning, problem solving, multitasking, and technical writing.
• Passed the CCIE Routing and Switching written exam on June 2, 2008.
• Having an interim Top Secret security clearance.

PROFESSIONAL EXPERIENCE:

Confidential - DC

Network/Firewall Engineer

Responsibilities:

• Designed and planned for the lab test of a secured enclave with Palo Alto Vsys (Virtual System) and Stonegate firewall for hosting the PTL (Personnel Tracking and Locator) platform. Engineered and documented a VPN solution for sharing tracking data with an external partner.
• Planed, coordinated, and replaced fourteen end-of-life Stonegate firewall clusters. Rebuild the Policy/NAT/VPN rules for some. Troubleshoot and fix irregular cases. Responsible for the Stonegate firewall being relocated and rebuilt on the 10G Corporate Stack (internet gateway) being engineered jointly.
• Engineered, installed, configured, and turned up an IPsec VPN of eight nodes utilizing Cisco ASA devices for the management of perimeter security appliances. Developing a transition plan that cover more than 100 (ESA/SMA, Stonegate, PAN, A10, F5) devices.

Confidential - Fort Meade MD

Senior Network/Systems Architect

Responsibilities:

• Served as a SME for the evaluation, design, and deployment of IPv6 service architecture and network management solutions. Responsibilities included and not limited to wired/wireless IPv6 requirements, best practices/strategies, network/service enhancements (for IAPNet, Internet COI, NIPRNet, SIPRNet/AWICS/SATCOM, Mobility Gateway, and Data Centers), component network /enterprise architecture, SysML/MBSE modeling, GIG network operations planning (DOSS/CDC), Service Performance/QoS/SLA (for voice and video), Multicast, L2/L3 MPLS VPNs, DISN network security controls and analytics, IPv4/v6 mobility (LTE, WIFI, Mobility Gateway), and cloud computing (SDN/NFV).

Confidential - Washington DC

Lead IPv6 Network Engineer / IPv6 SME

Responsibilities:

• Involved in addressing planning, network architecture, internet gateway architecture, risk assessment, routing plan, firewalling plan, network management, tests,, technical demonstrations (pilots), and implement of an IPv6 transport infrastructure Confidential VA. Maintained an IPv6 Lab with internet2 connectivity Confidential TechWorld of DC for concept/service testing and technology evaluations/trials.

Confidential

Network Security Engineer

Responsibilities:

• Worked in a small team (3) Confidential US Army installation(s) to re-engineer the enterprise networks for risk mitigation and improved network security. Works involved implementing VLANs by defined classes, enhancing Routing Policies (ACLs), and permitting only the necessary network services.

Confidential

Test Engineer

Responsibilities:

• Developed/executed the interoperability, conformance, and performance tests for IPv6 and IP QoS over Juniper and Cisco routers. Planned and jointly performed interoperability testing on the GIG-BE optical, electrical, and IP network infrastructure (Router/MSPP/ODXC/OTS). Developed the network service requirements (FRDv1) for the US Army DWDM project in Europe. Provided the preliminary test planning for VBrick MPEG-2/4 Encoder/Decoder (video & audio unicast/multicast over IP networks), DVB-RCS (Digital Video Broadcast - Return Channel System), Marconi DWDM and MSPP, and KOTnet (Korean Optical Transport Network).

Confidential- Florham Park, NJ

Tech/Svc Systems Engineer

Responsibilities:

• WIMAX/Mesh Networking - Jointly evaluated the feasibility of this wireless/Radio technology for broadband Ethernet access and T1 circuit emulation service.
• DISA’s GIG-BE 18-month Contract - Responsible for IP Multicast requirements for acquisition, evaluated the RFP responses, and lab tested of the IP Multicast protocols (IGMP, PIM-SM, PIM-SSM, MSDP, MVPN) in both intra and inter-domain scenarios over a high-capacity Juniper IP platform with advanced IP service features (IS-IS, BGP, MPLS, eVPN, QoS, & enhanced securities).
• ADSL Service Development - Defined the architecture for both voice and data/video services. Evaluated several DSLAMs (Adran, Samsung, Zhone, ADC, Siemens) and Line/ADSL portable test tools. Conducted QoS and Voice/Video Quality testing. Performed reliability/availability study. Worked with Anymedia, Jetstream voice gateway, Integral Access PurePacketNode, Adtech, Smartbits, Consultronics line simulators, Sage, DBtelco, Cisco7500, & Redback SMS routers.

Confidential- Middletown, NJ

Senior Technical Staff Member

Responsibilities:

• Worldnet VPN - Developed the architecture for global roaming via Infonet. Performed feasibility study on IPASS/GRIC services for global access. These were launched Confidential &T services prior to the procurement of IBM Global network.
• IAS/Remote Professional Service - Lead engineer for the delivery of 384 Kbps X.25 egress service. Jointly re-engineered the IAS/RP platform for cost reduction and Y2K compliance. This required the integration of Dial, IP, RADIUS, X.25, Frame Relay, and ATM technologies for end-to-end service architecture. Lab tested the platform with Cisco routers (as CPE).
• ACCUNet Packet Service - Performed service planning, re-evaluated the transport reliability, and was part of a team in search of potential replacements for 1PSS switches.

Confidential - Holmdel, NJ

Member of Technical Staff

Responsibilities:

• ACCUNet Bandwidth Manager - Provided system requirements, specifications, DMOQ definitions, and service performance reports. Participated in BoD network design. Conducted performance, root-cause, and data analyses.
• Transmission Services Planning - Provided technical support to ACCUNet T1.5 Service (transmitted over SONET and optical infrastructure). Jointly created the requirements for the NM2000 network management system.

Confidential- Nowalk, CT

Elec. Design Engineer

Responsibilities:

• Designed, Simulated, and analyzed DSP algorithms for a Multi-Mode Radar System. Devised tests and updated system specifications for High Resolution Ground Map, Doppler Beam Sharpening Ground Map, Ground Moving Target Indication, Moving Target Tracking and Rotating Antenna.