SUMMARY:

• Senior Network Engineer with 14+ years of experience designing, implementing, and managing complex, enterprise - class networks for Federal clients.
• A decorated Confidential with the technical and leadership experience gained through the implementation of mission critical tactical communications networks.
• Significant experience and expertise with all classes of network infrastructure design and management, including the implementation of Data Center, Wireless, Client, and Security Network systems and applications.
• Applies expert level skills with Cisco routers/switches, network security, and network diagnostic tools to ensure the performance, reliability, and integrity of critical networks and systems.
• Communicates effectively with customers, team members and management, with a strong focus on customer satisfaction.
• Self-motivated and goal-oriented, with a demonstrated ability to handle complex responsibilities in a demanding work environment.

EXPERTISE AREA:

Network Management: Applying the technical expertise and critical judgment required to maintain high performing networking infrastructures.

Infrastructure Design: Integrating the analysis and design expertise required to deliver networking solutions that support Agency mission and business objectives.

Network Security/Performance: Embedding the network security processes and controls that ensure the availability, integrity, responsiveness and compliance of critical network systems.

Project Management: Applying Federal and industry best practices to deliver cost, schedule, and performance goals for complex, technical projects.

Customer Service: Leveraging the effective technical and communications skills needed to assess customer needs and recommend innovative, cost-saving solutions.

TECHNICAL SKILLS:

Operating Systems: Cisco ASA, IOS, IOS XE, NX-OS, Microsoft Server 2008/2012, Windows OS 7/8.1/10, VMWare ESXi 4.1/5.1/6, Microsoft Hyper-V

Network Equipment: Cisco ASA 55xx series firewalls os version 8 and 9, 4000/2900/1900 integrated service routers, Cisco Catalyst 4500/3750/2960 series switches, Cisco Nexus 5k, 7k, VPC, VDC, VRF

Network/Security Applications: SolarWinds, Nessus, Riverbed Steelhead, McAfee Proxy servers, Niksun, Netflow, IBM MQ, Wireshark

Hardware: SANs, Servers (HP, Dell, IBM, Cisco), RAID

Enterprise Applications: VSphere Web Client, MS Active Directory, MS Office Professional Suite/Visio, Remedy, Magic

LAN/WAN/MAN: DS1, T1, T3, OC3, OC12, ISDN, HDLC, Point-to-Point, Frame Relay, ATM, ACLs, ACEs, Security zones, VPNs, 802.1x, ASDM, AAA, MAC filtering, Inter vlan routing, EtherChannel, LACP, PAgP, SVI, RPVST, VTP, Wireless

Network Protocols: EIGRP, OSPF, BGP, RIP, VPN, ACL, Spanning tree/RSTP, TCP/IP, WINS, DNS, DHCP, SMTP, FTP, TELNET, NAT, TFTP, TACACS, RADIUS

PROFESSIONAL EXPERIENCE:

Senior Network Engineer

Confidential, Woodbridge, VA

Responsibilities:

• Provide network management, security, and infrastructure design functions
• Install/replace, configure, test, maintain, upgrade, document, and troubleshoot network equipment for the Commission, including the Confidential, Wireless Network, Security Network, and Client Network.
• The Confidential networks include a broad range of networking systems, software, and protocols, including 40+ Cisco Catalyst switches, Confidential, Cisco Nexus switches, F5 load balancers, 5508 Wireless LAN Controllers, Wireless Access Point mobility groups, Proxy servers, Riverbed Steelhead, and Cisco Voice over Internet Protocol (VoIP) capabilities.
• Utilize multiple network management, diagnostic, and Configuration Management (CM) tools, including Cisco Prime, SolarWinds, WhatsUp Gold (WUG), and Splunk, to identify, track, document, escalate, and resolve network outages and performance degradation in a highly heterogeneous network environment.
• Provide daily administration duties; install, upgrade, and patch network operating systems; implement, configure, and maintain Virtual Private Network (VPN) connections; and ensure the continuity and performance of data center and building cabling plants. Interface with Original Equipment Manufacturer (OEM) warranty and break/fix services, including Cisco Smart Net, to manage the repair/replacement of defective equipment.
• Interface with the Confidential CIO, ValidaTek, Take 2, and other Confidential technical professionals to research, recommend, design, and implement new technology solutions to enhance and expand the Confidential network infrastructure.
• Reach out to industry representatives to assess various commercial hardware/software offerings and emerging technologies with application to the Confidential environment.
• Conduct onsite testing of proposed hardware/software solutions and provide detailed technical analysis and recommendations to the customer including life cycle license and maintenance costs.
• Plan and lead complex network implementation, technology refresh, and upgrade projects with impact to the Agency’s networking enterprise.
• Develop and vet Project Plans, negotiate project schedules to mitigate impact on Commission operations, and lead cross-organizational implementation projects that deliver new functionality to the Agency.
• Configure and manage the Confidential network security infrastructure, including Cisco Aligned Security Appliance (ASA) 5500 series firewalls, VPNs, Access-control lists, and Network Address Translation (NAT). Provide day-to-day administration of network security applications and devices.
• Configure and manage daily Nessus scans of Confidential network systems and respond to and mitigate potential network vulnerabilities.
• Participate in a biweekly meeting with the Confidential Cyber Security team to align network security functions with ongoing cybersecurity activities.
• Collaborate with the Cyber Security team in configuring and analyzing McAfee Proxy servers, Niksun, Splunk, Netflow, and WhatsUp Gold (watcher).
• Monitor the availability and performance of the Confidential network infrastructure using WUG, Splunk, and other network infrastructure monitoring and diagnostic tools. Apply an ATTENTION TO DETAIL in reviewing LAN/WAN network performance reports and analyzing customer reports and service requests to identify potential network degradation trends or equipment failures. Interface with the CenturyLink network service provider to troubleshoot and resolve network connectivity and latency issues.
• Review, interpret, and apply National Institute of Standards and Technology (NIST), Federal Information Security Management Act (FISMA) and other Federal and Confidential policies and standards related to the management of Confidential networking resources. Ensure the compliance of networking systems and protocols with Federal security policies and best practices.
• Serve as a networking resource to the Confidential Helpdesk and Tier 2/3 support personnel. Provide Tier 4-level support to respond to and resolve complex networking-related incidents and chronic issues. Participate in the CIO’s weekly networking meetings to identify new network-related initiatives and objectives critical to the Commission’s IT operations and review status and concerns regarding ongoing projects.
• Interface with Confidential and contract personnel at every level of the customer organization. Use effective oral communications skills to convey technical information to technical and non-technical personnel. Develop and maintain comprehensive network documentation using Visio, SolarWinds, and other documentation tools. Develop, and deliver written technical specifications for proposed customer acquisitions. Research and author technical white papers to explore and recommend potential solutions to networking challenges in the customer infrastructure.
• Manage contracting interactions with the Take 2 Corporation, including managing security clearance compliance, providing weekly contract activity reports, invoicing for contract hours, and monitoring the on-time delivery of all contracted services and products. Participate in biweekly ValidaTek contract meetings to review contracted services and deliverables.

Confidential

Project Lead

Responsibilities:

• Redesigned and upgraded the Confidential wireless infrastructure to include Cisco Prime Infrastructure/Prime Network Control System (PI/NCS), Cisco Mobility Services Engine (MSE), Wireless LAN Controllers, Access Control System and a Wireless Access Point.

Senior Network Engineer

Confidential, Reston, VA

Responsibilities:

• Single Network Engineer for the 5-person Automated Targeting System-Global ( Confidential ) deployment team for the U.S. Customs and Border Protection (CBP), under contract to the Department of Homeland (DHS) Security Office of Field Operations (OFO).
• Confidential is a decision support tool that compares air passenger and cargo information against intelligence and law enforcement data, employing risk management targeting criteria and scenarios to identify potential security risks. The Confidential team was tasked to plan, prepare, and deploy Confidential systems and applications to 20+ countries across the globe.
• Served as the Network Project Lead to plan and conduct Site Surveys for proposed Confidential installations.
• Travelled to the remote site; met with host nation dignitaries and technical counterparts; and conducted a physical and documentation inspection of the site.
• Compiled and documented all aspects of the proposed location, including power, space, and cooling (PS&C); electrical emissions; physical and information security measures; rack size; building access; and available technical personnel. Produced a comprehensive Site Survey Report, which summarized the key aspects and risks associated with the deployment and provided a technical recommendation regarding the specific hardware, cabling, and other components required to complete the installation.
• Assessed the technical specifications for proposed Confidential installations and designed the network infrastructure required to accommodate site restrictions and host nation requirements, from small “all-in-one” solutions to enterprise-class installations. Identified all required hardware/software components and technical specifications and developed the Bill of Materials (BOM) required for the DHS procurement process.
• Developed detailed project implementation plans and network diagrams.
• Led the preparation and installation process from pre-deployment system build, imaging, and configuration to packing, shipping, installation, and testing at site. Prepared, installed, and upgraded a variety of hardware, software, and supporting infrastructure, including networking components (Cisco routers, switches, and ASA firewalls, VPNs, IBM MQ channels) and computing and data systems ( Windows Server, SQL Server, Dell PowerEdge servers, Dell PowerVault Storage Area Networks (SANs)).
• Configured inbound VPN connections carrying classified airline passenger metadata (Advance Passenger Information (API)/Passenger Name Record (PNR)), using Cisco ASAs and ASRs, from the foreign government’s network infrastructure to the DHS secure network.
• Used DHS proprietary applications, open source software, debugging commands, and Wireshark to ensure that all required functionality and security controls were properly installed and configured and in full compliance with pertinent International Security Agreements (ISAs).

Confidential , McLean, VA

Network Systems Engineer/Solutions Architect

Responsibilities:

• Providing in-house network infrastructure support for Sotera’s development environment for a contract supporting the Federal Bureau of Investigation (FBI) Criminal Justice Information System (CJIS). Sotera (now acquired by KEYW), is a mid-sized national security technology company that delivers systems, solutions, and services for the Department of Defense (DoD), the Intelligence Community (IC), Federal law enforcement, and other Federal Agencies.
• Served as the dedicated network and system administrator for the development environment supporting the CJIS contract, the Information Technology Test Lab (ITTL).
• Provided daily network and system administration to ensure the availability, security, and performance of a heterogeneous development infrastructure that included Cisco switches and routers, Windows and Red Hat Linux operating systems, HP and IBM Blade Centers, Dell Servers, APC UPS systems.
• Dell 990 Desktops, EMC AX4, EMC DMX3, and VMWare Virtual Machines (VMs).
• Responded to a variety of networking and computing incidents, issues, and service requests from the Sotera CJIS development team.
• Applied effective ORAL COMMUNICATIONs and PROBLEM SOLVING skills to respond remotely and in person to identify, troubleshoot, and mitigate system and network availability and performance issues and to implement custom configurations required to support Development & Test scenarios. Served as a technology advisor for technology solutions proposed for the customer.