SUMMARY:

• 18 + years extensive experience coordinating, integrating and directing complex, multi - site projects, efforts and initiatives supporting thousands of users across a full-range of IT, network, security and telecommunications-related disciplines within a variety of data-intensive, high-transaction, fast-growth industries for Fortune 500, enterprise and SMB’s.
• “Hands-on” network architect, data center and security architect with a proven ability to lead high-performance teams, establish a cooperative climate across multiple departments/divisions and work in unison with cross-functional business partners.
• A natural and articulate communicator and presenter with tactical foresight, keen bottom-line focus and a proven record of reducing costs, upholding fiscal integrity and achieving margins on project delivery through the execution of value-added programs, systems and procedures.

TECHNICAL SKILLS:

• Hands on experience installing, designing and administering a variety of security systems including firewalls, IDS/IPS, anti-virus, anti-malware and NAC solutions.
• Hand’s on experience installing, designing and administering identity access management solutions, cloud security, network security, application whitelisting, vulnerability management and endpoint security control systems.
• Program development experience working on compliance and regulatory projects for HIPPA, ISO 27000, NIST and SOC standards.
• Demonstrated project management skills and ability to track and report progress against established milestones, metrics and deliverables.
• Excellent written and verbal communication skills, the ability to write with purpose, clarity, and accuracy to both technical and non-technical audiences.

WORK EXPERIENCE:

Senior Network Engineer | Security Architect

Confidential, San Francisco, CA

Responsibilities:

• Lead network/security engineer responsible for various aspects of driving business including: hands on greenfield deployments, making recommendations to clients to optimize infrastructure platforms, network + server environments, data center access, security policy development.
• Developed network architectures/designs to align with enterprise IT strategies across various domains including: networking, network security and data center products and solutions ( Cisco/Dell/HP )
• Working on project team responsible for driving audit/compliance requirements including: HPPA and PCI
• Partnering with information security leadership to promote adoption of enterprise security best practices related to implementing enterprise security solutions.
• Conducting technical/vulnerability and network assessments to ensure optimal critical resources stability and availability
• Hand’s on engineering of cloud infrastructure solutions including: Amazon Web Services (AWS), Microsoft Azure, Vmware vcenter, Openstack
• Hand’s on network engineering, configuration, troubleshooting and deployment of LAN/WAN and security devices including: Cisco IOS, Cisco NX-OS, Cisco ISR, Cisco ASA devices.
• Implemented data center solutions Cisco Nexus/Cisco UCS platforms to enhance business productivity for mission critical data center environments.
• Network Architect expert in Cisco ACI, ACI integration, cloud center provisioning
• Network Architect experience with Cisco 9k, Cisco 4500, Cisco NX-OS, Cisco Nexus 7k,5k, 2k, Cisco UCS
• Network Security Architect expert with Cisco Cloudlock, Cisco AMP, Cisco umbrella
• Security operations centers procedures and process adoption

Senior Security Architect

Confidential

Responsibilities:

• Creation of Incident Response Procedures
• Architecture and deployment of security systems
• Development Security Operations Center (SoC), Daily Runbooks
• Hand’s on engineering of cloud infrastructure solutions including: Amazon Web Services (AWS), Microsfot Azure, Vmware vcenter, Openstack
• Server orchestration and hardening
• Architecture and PoC testing of Mobile Device Management and MD
• Development of Reference Security Architectures and standards
• Secure application programming, code reviewing, and penetration testing web based application
• Managed a team of white-hats across various global regions - provide consultancy & advice to managers across the product development, engineering & operations teams
• Help to improve documentation: IP addressing schemes, VLAN design, physical cabling, data center rack connectivity documents, network diagrams.
• Recommended security enhancements and communicated reasoning to appropriate leadership, developed and executed plans effectively
• Network Architect expert in Cisco ACI, ACI integration, cloud center provisioning
• Network Architect experience with Cisco 9k, Cisco 4500, Cisco NX-OS, Cisco Nexus 7k,5k, 2k, Cisco UCS
• Network Security Architect expert with Cisco Cloudlock, Cisco AMP, Cisco umbrella
• Security operations centers procedures and process adoption

Network Security Architect

Confidential

Responsibilities:

• Developed design/architecture for 50+ offices + 3 data centers in support of high availability improvement projects. internet to MPLS carrier failover: BGP to OSPF integration, DMVPN for WAN backup
• Created, published and update related IT status communications and training documentation
• Evaluated current state network design and provided recommendations for improvements in the areas of fault tolerance, high availability and network security implementation.
• Hand’s on engineering of cloud infrastructure solutions including: Amazon Web Services (AWS), Microsfot Azure, Vmware vcenter, Openstack
• Maintained strong vendor relationships and oversight to ensure the success of outsourced services and implementations.
• Communicate corporate requirements and stay abreast of new technology and product enhancements.
• Defined standards and procedures for networking equipment upgrades/refreshes/replacements
• Coordinating and leading cut overs for data center/WAN deployments/integrations
• Provided hands on implementation, configuration and troubleshooting duties with routing protocols including: OSPF, EIGRP, BGP, IPSEC, MPLS, DMVPN.
• Hand’s on operational/configuration support for LAN/WAN and data center security devices including: Cisco ASA, IPS/IDS systems, URL-filtering gateways.
• Executed enterprise wide security assessment, provided recommendations for improvement to senior level IT staff and management.
• Network Architect expert in Cisco ACI, ACI integration, cloud center provisioning
• Network Architect experience with Cisco 9k, Cisco 4500, Cisco NX-OS, Cisco Nexus 7k,5k, 2k, Cisco UCS
• Network Security Architect expert with Cisco Cloudlock, Cisco AMP, Cisco umbrella
• Security operations centers procedures and process adoption

Network Security Architect

Confidential

Responsibilities:

• Hand’s on configuration and implementation skills with Meraki cloud controller and related solutions.
• Hand’s configuration, operational and implementation experience with Cisco Nexus data center solutions including 5k, 7k and Cisco UCS management systems.
• Hand’s on configuration, troubleshooting and operational experience with protocols including: BGP, OSPF, EIGRP, STP, MPLS, SD-WAN.
• Authored standards and guidelines for IT best practices
• Escalation point for managed services team driving resolution of complex network technology/connectivity issues.
• Hand’s on engineering of cloud infrastructure solutions including: Amazon Web Services (AWS), Microsfot Azure, Vmware vcenter, Openstack
• Communicated status of technology project plans and progress to managerial and executive teams.
• Partnered with IT services practice leadership develop network engineering lab solutions to support vendor initiatives
• Proposed next generation unified/converged fabric to improve and optimize provisioning of critical data center network services for Fortune 100 customers
• Proposed adoption of solutions to reduce configuration provisioning errors through standards-based approaches
• Deployed identity access management solutions to enhance overall security posture.
• Network Architect expert in Cisco ACI, ACI integration, cloud center provisioning
• Network Architect experience with Cisco 9k, Cisco 4500, Cisco NX-OS, Cisco Nexus 7k,5k, 2k, Cisco UCS
• Network Security Architect expert with Cisco Cloudlock, Cisco AMP, Cisco umbrella
• Security operations centers procedures and process adoption

Network Security Architect

Confidential

Responsibilities:

• Network Security lead design consultant for data center and campus networks.
• Project Lead and network architect for enterprise WAN/MPLS rollout
• Escalation tier 3 network operations support for network devices across all sites: Cisco catalyst, Cisco Nexus, Dell switches, Cisco ASA, Juniper SRX, Cisco UCS operations support.
• Interviewed and selected Carriers for MPLS service providers for globally.
• Hand’s on engineering of cloud infrastructure solutions including: Amazon Web Services (AWS), Microsoft Azure, Vmware vcenter, Openstack
• Designed and configured Wireless LAN deployment for Corporate networks and standards.
• Worked with Air defense and Cisco on deployment.
• Worked with CIS teams to maintain compliance for IS policies and procedures and PCI compliance initiatives.
• Configured DMVPN for extranet build out, MPLS & WAN encryption, and to support services such as VOIP, multicast and QoS.
• Network Architect expert in Cisco ACI, ACI integration, cloud center provisioning
• Network Architect experience with Cisco 9k, Cisco 4500, Cisco NX-OS, Cisco Nexus 7k,5k, 2k, Cisco UCS
• Network Security Architect expert with Cisco Cloudlock, Cisco AMP, Cisco umbrella
• Security operations centers procedures and process adoption

Senior Network Architect

Confidential

Responsibilities:

• Overseeing and coordinating projects on security architecture improvements, design, policy development, risk management and compliance for customers.
• Hand’s on engineering of cloud infrastructure solutions including: Amazon Web Services (AWS), Microsoft Azure, Vmware vcenter, Openstack.
• Partnering with sales and marketing executives to help drive Fusion Storm's business and technical value proposition.
• Hand's on implementation and network engineering of network/security technologies including: Cisco ASA firepower services, SD-WAN, SDN, Cisco ACI SDN, Viptela, Cisco wireless networking, Cisco ISE
• Wrote scripts in multiple languages - Python, Ruby, Perl, Bash
• Prepared and delivered end-to-end audit prep / compliance ownership in HIPPA and PCI projects
• Conducted penetration testing overseeing multiple urgent projects simultaneously
• Network Architect expert in Cisco ACI, ACI integration, cloud center provisioning
• Network Architect experience with Cisco 9k, Cisco 4500, Cisco NX-OS, Cisco Nexus 7k,5k, 2k, Cisco UCS
• Network Security Architect expert with Cisco Cloudlock, Cisco AMP, Cisco umbrella
• Security operations centers procedures and process adoption

Senior Network Engineer | Security Operations lead

Confidential

Responsibilities:

• Conducted network and security assessments
• Developed Risk Mitigation and Risk analysis strategies and programs
• Help to lead Forensic Investigations on data leak and compromise issues
• Worked in partnership with CISO and IT executives on Enterprise Risk Management, Team Leadership, Security Training, ISO 27000, Incident Response, Computer Forensics, and Project Management

Senior Network Engineer

Confidential

Responsibilities:

• Day to day operations network support of campus, LAN and data center networks
• Performed complex troubleshooting of network and security protocols
• Lead data center network upgrade refresh to Cisco Nexus/NX-OS environment
• Developed incident procedures and threat mitigation strategies and solutions
• Lead network engineering efforts for opening of new headquarters

Principal Network Architect | Security Architect

Confidential

Responsibilities:

• Overseeing and coordinating projects on security architecture improvements, design, policy development, risk management and compliance for customers.
• Partnering with sales and marketing executives to help drive Fusion Storm's business and technical value proposition.
• Hand's on implementation and network engineering of network/security technologies including: Cisco ASA, firepower services, SD-WAN, SDN, Cisco catalyst, Cisco wireless networking, Cisco NAC.
• Expert in scripting, in multiple languages - Pyhton, Ruby, Perl, Bas
• Driving projects for end-to-end audit prep / compliance ownership in HIPPA and PCI projects Penetration testing overseeing multiple urgent projects simultaneously
• Network Architect expert in Cisco ACI, ACI integration, cloud center provisioning
• Network Architect experience with Cisco 9k, Cisco 4500, Cisco NX-OS, Cisco Nexus 7k,5k, 2k, Cisco UCS
• Network Security Architect expert with Cisco Cloudlock, Cisco AMP, Cisco umbrella
• Security operations centers procedures and process adoption

Senior IT Security Consultant

Confidential

Responsibilities:

• Provided security assessments and high level Risk/Gap analysis to Gensler's information security executive team
• Responsible for conducting high level analysis based upon the ISO 17799 and its controls internal security policies to review their vendors policies and architecture to ensure a level of compliance and to cite any Risk/Gaps between the vendor and SFDC .
• Traveled to several vendor sites throughout the United States and Canada for on sight reviews of their facilities and security procedures
• Physical review of the facility, an interview of the vendor’s “C” level management and technical team and producing a report provided to the BU and the VRM member assigned to the vendor reviewed.
• Assisted in the development and training of this process to consulting team for the audit project.
• Conducted several high level technical reviews of SFDC vendors as a senior member of the Site Review Team.

CCIE Network Engineer Architect

Confidential, Pleasanton, CA

Responsibilities:

• Provided senior level configuration development, operations, implementation troubleshooting for networking/security protocols pre and post deployment: OSPF, EIGRP, STP, BGP, IPSEC VPN, HSRP, VPC.
• Presenting ideas and solutions to streamline network operations and influence SLA metrics.
• Hands on configuration changes for Cisco/Palo Alto firewalls including: security rule additions/deletions, configuring NAT and access-lists, troubleshooting VPN and access connectivity across networks

Senor Network Architect | Lead Network Security Engineer

Confidential, San Jose, CA

Responsibilities:

• Hands on troubleshooting, configuration and implementation of network security protocols: IPSEC, VPN, DMVPN, ASA/PIX firewalls, IPS/IDS systems, router security.
• Defined standards and procedures for networking equipment upgrades/refreshes/replacements
• Coordinating and leading cut overs for data center/WAN deployments/integrations
• Provided hands on implementation, configuration and troubleshooting duties with routing protocols including: OSPF, EIGRP, BGP, IPSEC, MPLS, DMVPN.
• Hand’s on operational/configuration support for LAN/WAN and data center security devices including: Cisco ASA, IPS/IDS systems, URL-filtering gateways.