SUMMARY

• Amazon Public Cloud Engineering - utilizing teh Agile methods and Version One to migrate, create, validate and implement rules across teh enterprise network to support AWS.
• Coordinate wif LOBs to create DBEs, FMFs, etc. Validate rules and implement in accordance wif FW council standards. Acting VIL for Public Cloud Engineering Team.
• Research utilizing various tools CheckPoint Tracker, TUFIN, HPSM, EasyIP, Wireshark, TCPDUMP, etc.
• Research and develop rules from third party firewalls to newly created Cloud environments.
• Setup IPSEC and GRE tunnels to support transformation
• Configure firewalls: routing, NATS, global and local polices, etc.

.TECHNICAL SKILLS

• Review and implement firewall changes on Juniper 5200, 5400, ISG 2000 Gateways utilizing ScreenOS, Network and Security Manager, Juniper SRX, Cisco ASA 5200 series, Cisco PIX, Cisco Security Manager, CheckPoint Provider-1, and SideWinder firewalls for infrastructure environments in accordance wif ITIL concepts for incident and change management.
• Research utilizing various tools CheckPoint Tracker, TUFIN, HPSM, EasyIP, Wireshark, TCPDUMP, etc.

PROFESSIONAL EXPERIENCE

Firewall Security Engineer

• Amazon Public Cloud Engineering – utilizing teh Agile methods and Version One to migrate, create, validate and implement rules across teh enterprise network to support AWS.
• Coordinate wif LOBs to create DBEs, FMFs, etc. Validate rules and implement in accordance wif FW council standards. Acting VIL for Public Cloud Engineering Team.
• Research utilizing various tools CheckPoint Tracker, TUFIN, HPSM, EasyIP, Wireshark, TCPDUMP, etc.
• Research and develop rules from third party firewalls to newly created Cloud environments.
• Setup IPSEC and GRE tunnels to support transformation
• Configure firewalls: routing, NATS, global and local polices, etc.

Perimeter DMZ Architect/Engineer System Engineer 

• Development and maintenance of system architecture studies of new and existing DMZ systems utilizing experience wif DMZ routing, switching, encryption and DDos.
• Research utilizing various tools including Firemon, CP Tracker, Juniper Log Viewer, Registrar Toolbox, FWDB, etc.
• Checkpoint R77 (SDM), Juniper R9 (NSM)

Firewall Security Engineer

• Domain Boundary Control Project security engineer responsible for analyzing and validating traffic for high and extreme compliance violations across multiple domains and intranet/internet segments.
• Write, verify and stage firewall rules for compliance on CheckPoint R75 across enterprise environment.
• Setup and analyze traffic for compliance and eliminating permissive rules. Analyze traffic via custom reports and queries using TUFIN. Validate assets for removal of rules via HPSM.

Firewall Security Engineer

• Advanced Threat Protection Plan project security L3 engineer responsible for analyzing and validating data flows for FRIT intranet/internet segments.
• Prepare Network Boundary Requests for firewall implementation in collaboration wif SMEs and MSOs. Assist wif testing and troubleshooting issues after firewall implementation.
• Interface wif customers to understand security needs and implement firewall policy including encryption, protection, design and privilege access to accommodate.

Cyber Architect 

• Senior engineer in daily operations and on-call support. Overseeing firewall operations across multiple legacy and current infrastructure systems based at headquarter and disaster recovery sites.
• Review and implement firewall changes on Juniper 5200, 5400, ISG 2000 Gateways utilizing ScreenOS, Network and Security Manager, Juniper SRX, Cisco ASA 5200 series, Cisco PIX, Cisco Security Manager, CheckPoint Provider-1, and SideWinder firewalls for infrastructure environments in accordance wif ITIL concepts for incident and change management.
• Setup of enterprise device firewalls for initial configuration, deployment, and daily operations.
• Resolve connectivity and access issues as related to firewall, server, and network equipment utilizing Juniper log viewer, flow filters, syslog, packet captures, and Cisco ASDM.
• Review firewall configurations to streamline as necessary. Maintain security systems and administer security policies to control access to internal and DMZ systems.
• Perform IDS / IPS real-time monitoring analysis. Work wif customers and execute on best practices for server design, application implementation and well known attacks and vulnerabilities for infrastructure security.
• Provided strong technical leadership in engineering, customization, and maintenance for enterprise firewalls. Performed routing, VPN, OS upgrades, and firewall rules via best security practice requirements/SLA.

Network Security Engineer: Information Technology Specialist 

• Design, recommend and install Cisco and CheckPoint Nokia hardware and software to maintain enterprise LAN/WAN including Cisco routers, switches, IP phones, PIX firewall, and CheckPoint FW-1 NGX on Nokia IP series appliance.
• Maintain WAN hardware connectivity to other state agencies; telecommunications equipment including dial up and leased lines, CheckPoint and PIX firewalls and Cisco router configurations.
• Setup and maintain VPN connections wif outside vendors for secure data transmission on both Cisco PIX firewall and CheckPoint FW-1 NGX on Nokia IP series appliance.
• Monitor LAN/WAN system performance and perform appropriate actions to prevent failures; i.e. change management, apply patches, OS upgrades, review system logs, intrusion detection, bandwidth monitoring, network traces and contact outside vendor support.
• Troubleshoot TCP/IP, e-mail client, VoIP, DNS issues.
• Install and setup network equipment and instruction for end use of these resources.
• Maintain SMTP gateway, UNIX web server security and application software products.
• Create and install SSL certificates

Computer Network Support Technician Senior

• Manage teh day-to-day operations of teh on-site PC hardware/software repair center.
• Provide senior level hardware and software technical support services including initial hardware and software design, setup and installation, problem diagnosis and resolution, data recover and restoration and helpdesk support.
• Provide procurement services of IT equipment and technical services through teh independent preparation of technical specifications, IFB, RFP and sole source documents, evaluation and award.
• Perform contract compliance duties as certified Virginia Contracting Officer.