SUMMARY:

To excel in a leadership role, serving a corporate enterprise computing infrastructure where I use my advance expertise in security, network architecture, to provide secure SME and reliable technology solutions for the company. 20+ years in Information Technologies, 12 years creating security architect and developing automation tools in SOC, NOC, and Big Data. Providing direct leadership development and management of small to medium size teams for technology deployments enterprise wide.

COMPUTER EXPERIENCE:

• Network Security and Penetration Testing
• Darknet/Sonet/MetroFiber/Fios
• Developing Effective Security Policies and Procedures (FIPS, ISO27k, FDCC, NIST, CIS, DISA, STIG, PCI)
• Current Theories and Practices of Network Security
• Network Design and Planning
• HA, Load Balancers, Redundancy Design
• Groupware Migrations (Exchange/Lotus)
• Project Planning and Troubleshooting
• Enterprise - wide Migrations
• BDR-Data Integrity/Recovery
• Root Cause Analysis
• Team Leadership
• ComSat/Iridium/GeoSat
• Project Management
• Photonics-Diodes/Optics
• Disaster Recovery Planning
• Big Data\Linux\Wintel Platforms

TECHNICAL SKILLS:

Array /Backup: DLT Tapes, Raid 0/1/3/5/10, Blue Ray DVD, EMC AX/CX (Clarion), DMX (Symetrics), NS (Celera), XSAN

Circuits: ISDN, HDSL, DS1, DS3, T1, T3, OC48, Frame Relay, ATM

Handheld Devices: Blackberry 957, 6750, 7250, 7130, 8700, Pearl, Curve, Bold, Storm, Treo 650/700, Palm, HTC, Samsung, Motorola, Handspring, Iphone

Electric: AC/DC, AMPS, CAPs, Transformers, Circuit Analyst (in phase and/or out of phase)

Security: Cisco Aironet, Cisco VPN Concentrators, Watch dog

Servers: Compaq Proliant, Dell PowerEdge, HP Alpha/Intel, IBM

Switches: Cisco 1950/2960/3800, 3Com SuperStack, HP Procurve, Extreme, Arista

Routers: Cisco PIX, Netgear Prosafe, Linksys, Juniper, Nortel, SG (SecureComputing)

RF: CCTV, DTV, Dishnet, EchoStar, Hughes (C/Ku), SatCom, IntelliSAT, 802.11b/g, GSM, GPRS, TDMA, CDMA

VoIP/Video: Aastra, Avaya, Cisco, IC3, Nortel, Polycom, Shoretel, glowpoint HD

Accounting/Law Software: Peach Tree, QuickBooks, MS Accounting, Times Matters

Admin Utilities: DameWare NT, LDAP, Netuitive, MOM, Patrol, Site Scope, HP BAC, QPasa, IBM NetCool

Backup Utilities: Veritas Backup Exec 8.6/9.1/10/11 D/CPS

Cad Utilities: SolidWorks, AutoCad 14/15/2000, 3D Cad, EdgeCam, SurfCam

Graphic Design: Photoshop CS2, Adobe Illustrator

Email Migration: Quest Migration Tool v3.6.2, Exchange 2000/2003/2007 Migration Wizard, ADMT

MS Software: Active Directory, DOS 6, DNS/DHCP, MMC, Exchange 5.5/2003/2007, Group Policy Manager, IIS 6.0, CCS, Office 2000/XP/2003 Pro. SMS, Support Tools/Resource Kits, SQL 2000, TCP/IP

Mortgage/Trading: Calyx, Bloomberg

Operating Systems: Windows NT 4.0/2000/2K3\2K8 Server, 95/98SE/XP/VISTA, HP-UX, Solaris, Unix, OSX

Proprietary Applications: Acronis, Lotus Notes 6.0, Blackberry Enterprise Server, Ghost 8.0, StorageCraft, IOS, DOCSIS

Security: Auditor 2.0, AVG, KDE, BackTrack 1-4, Black Spider Mail Filter, Burst Internet Proxy, Checkpoint Firewall, Ethereal, ISA Server 2004, NetCat, Nessus, Nmap, NOD32, McAfee Foundstone, McAfee Eplicy Orchestrator, PGP, Webshield, Groupshield, Mozilla Project, Pest Patrol, Spam Assassin, Snort, SSH, SSL, Surfcontrol, Tripwire, VNC, WebSence Webfilter, WEP/WPA/WPA2E, Winsock Proxy, Super Antispyware, Malewarebytes, Wireshark, Webroot, Qualys, Wikito, Burp, OWASP ZAP, 0100 010 01110101

Storage/Virtual: NetApp, CapData, PowerLink, Storage Foundation, VMWare ESX 3.5, ESXi 4, ESX 5/6, EC2, S2

PROFESSIONAL EXPERIENCE:

Confidential, VA

Endpoint Encryption Architect and Senior Security SME - Consultant

Responsibilities:

• SME best practice standards for OWASP top 10 CIS CSC, DLP, Data classification, and Encyption standards for Contractors/Employee’s.
• Identify non-PCI compliant assets at 28 data center locations for Amazon EC2, Cloudera, and Confidential Big Data Steel-Cloud.
• Query reports for AD, DNS, PGP, Bitlocker, Certs, and PKI key management for IDM, integrity and trust issues with Endpoints.
• Research vulnerabilities that translate to high risk from exploit-DB, Cobit 5, ISO, SOX, PCI, and IEC detection activities.
• Managing existing PGP infrastructure (Enforcer, Collectors, Applications and Endpoint agents)
• Developing and maintaining installation, configuration procedures for migration deployments and ongoing SCCM packed updates.
• Support all Endpoint encryption activities, documentation of SOP’s, known risk and automation assurance.
• Implementing enterprise deployment of Bitlocker WDE on Laptops, Desktops, Tablets and Mobile devices.
• Decommission End-of-Life Assets network wide for remediation of critical threats to impact DLP policies for Information Assurance.
• Architect PCI compliance for MBAM integration of Win10, Bitlocker, HSM deployments to meet PCI standards for west, central, east.
• Review audit logs from Qualys, Nessus, NMAP, CVSS, Wikito, Burp, ZAP, PCAP, SIEM for integrity, monitoring security response of SOC.
• Support regular compliance requirements with integrated encryption POC for file-share application for business internal file-encryption cloud.
• Provide recommendations for automation of hotfixes, patches, and recovery procedures for securing assets from security breach.
• Evaluate vendor security products, develop Q&A testing, implementation and/or integrate security solutions for internal/ext audits, pentesters, and security deficiencies. Research emerging security technologies in support of active controls, enhancements and improvements to lifecycle.

Confidential, DC

Senior Security Systems and Network Architect

Responsibilities:

• Whitman-Walker HP network architect and deployment of Procurve hardware for a multi-site migration. Firewall, switches and data/voice.
• HP, IBM, NETAPP, ARISTA, and CISCO architect for SAP Enterprise Cloud engineer. Provide managed services and tech services for deployment of engineering team to SAP data centers. Rack/Stack cloud services throughout North America at 30 data center Co-locations.
• Direct management of application development team, cloud-Apps, SIEM management of security tools and application development.
• Windows Server 2012/Hyper-V deployment for law firm to utilize AD, DNS, RD Gateway, CA Authority, and VDI for Windows 8 Enterprise.
• Install Visual Network model 109 for T1 CSU/DSU circuits in a secured data center operation environment at the FBI in Washington DC.
• Break/fix for the major airlines at Dulles, Regan, and BWI, desktops, laptops, servers, network devices, Wifi, RFID, PSTN, T1, and printers.
• Rack/Stack Cisco 3845 Routers, Confidential 4710, Catalyst 3560/2950 series deployment for a new trading floor build out for JPMorgan and Chase. Configure the router to bind four T1’s through PPP encapsulation, setup seven cisco airAP 1142 wifi. Terminate all data, voice, and pots lines.
• Cable management of fiber arrays, switches, routers with multi-mode fiber inside data center operations.
• Deployment from Cisco to Extreme Networks POE switches for redesigned LAN throughout 300 locations for (BCPS) Baltimore Schools.
• Install Cisco TX9000/3000 telepresence multi-monitor video conferencing communications for Black & Decker and JPMC.
• Migrate existing clients to cloud based email solutions from Microsoft Office365 setup. AD/Office365 cloud sync for user authentication through LDAP and your local onsite Windows server 2008R2/AD/Domain Controller with DNS migrations. Support the Microsoft/App-river portal for migration support to Office365.
• Pen testing software applications with sql injection and python scripting. Bash script hashing with Netcat. Provide in-depth network analytics and security vulnerabilities testing. SIEM data archiving for Security information and event management.

Confidential, VA

Help Desk Manager and Network Engineer

Responsibilities:

• Management of IT solutions in a NOC environment to fix or route field engineers for immediate resolution.
• Unique management of 200 clients, to provide the highest tier of support, workstations, servers, and network devices.
• Troubleshoot Windows server 2K3/2K8, hyper-V(vm), AD, Exchange 2K3/2K7, BES 5, SQL, Ironport, Symantec, and Viper.
• Deployment of packet trap on the network for over 200 nodes to support remote network outages for escalation.
• Configure Hyper-V, DNS, DFS, AD/Exchange replication, Symantec Backup Exec 2010, Packet Trap, Solarwinds, and N-able monitoring.
• Give team mythologies on training and support of various clients to new employees for proper handling of calls.
• Deal directly with software and hardware vendors to support RMA, Warranty issues, and purchasing products.
• Penetration scanning with security tools to acknowledge vulnerable assists with Backtrack, wireshark, and Nmap.
• Calculate the datacenter annual loss expectancy over a yearly annual rate occurrence, to analyze loss of revenue.
• Instruct upper management on developing a plan for disaster recovery and creating a hot site for virtualization of physical sites.

Confidential, DC

Field Systems Architect

Responsibilities:

• Break fix management of IBM hardware onsite for Air Canada, Saudi Arabian, and British Airways Airlines.
• Resolution for DC, Confidential, network hardware, servers, desktops, printers, kiosk, scanners and RFID barcode scanners.
• POS system hardware and software troubleshooting, successful ticket completion and systems engineer for IBM.

Confidential, MD

Senior Network Architect

Responsibilities:

• Visio, architecture planning for effective data center layouts. Build Cisco Confidential 4710 IDS/IPS in a clustered configuration.
• Deployment of Confidential hardware in a data center environment for redundancy in Active-Passive configuration.
• Effective load balancing of HTTPS, SSL, Oracle, Apache web apps within the guidelines of Confidential contract configurations.
• Setup DNS site selector and global load balancing. Update the Cisco PIX to apply the appropriate rules and ACL.

Confidential, DC

Lead Systems Engineer

Responsibilities:

• Provide management of installation procedures of other systems engineers. Delegate installation methods and cross training.
• Visio, architecture planning for effective data center layouts. Build Cisco catalyst 2960 switches in a clustered configuration.
• Deployment of HP Proliant DL 380 servers for VMware ESX, HP-UX 11i, and Windows 2003 to manage the POS application.
• Effective load balancing of LAN, WAN, SAN, APC power management within the guidelines of HP deployment configurations.

Confidential, DC

Network Security Architect

Responsibilities:

• AD, IIS, cluster, FTP, ISA, SSL, DNS, OSPF, MLPS, BGP, DES, FIPS, NetIQ, ESX, Cisco CSS 11503 load balancer, ASA 5520 (Active/Passive).
• Resolving all the security thresholds for FEMA Gov’t project. Writing security reports for documentation of effective process.
• SQL (Active/Passive), ASP.NET injection, Penetration testing Cisco and Windows servers, government security compliance.
• Wireshark, Nessus, Backtrack, Nmap, Snort, Retina, NSAuditor, rules for DoS, DoD security policies and procurement.

Confidential, DC/MD/VA

Senior Network Engineer

Responsibilities:

• Windows 2K3/2K8, Cent 5, Apache-Tomcat 6, Mono, IIS 6/7, Exchange 2K3/2K7, ISA, BES, ESXi, OMA, OWA, Confidential, IPv6, DNS, VLAN, OSPF, BGP, SSL, AES, IDS, MLT, IPSec, NAT, ACL, GRE, and supporting multi-flavor Unix, Linux, Windows Server system platforms in a data center Co-location. Termination of POTS and T1 voice/data circuits in a switching environment for Toshiba/Cisco VOIP phones.
• Direct IT sales solutions, audit, analyst, and monitoring of services within an enterprise environment.
• Net/Voip Design, Secure practice of IT policies, Penetrate secure hardware/software DMZ/firewalls. Migrations with Aastra (SIP), SG, Juniper, Nortel, Polycom, BackTrack, connectwise, NAT, VLAN, MPLS, AES, WPA. Developing BDR solution with StorageCraft/Symantec Backup Exec for redundant NAS backups. Security assessment, technical assistance, and policies.
• Manage Cisco call manager for small enterprise solutions. Migrate existing phone systems to a unified solution.
• Support remotely over 300 servers in a SOC/NOC environment. High level onsite support for 100 small businesses.

Confidential, NC

Field Support Administrator

Responsibilities:

• Assistant in project management with bank moves within the trading floor environment. Desktop and laptop refresh migration project, migrating secure data on workstations across the bank network and storage servers (EMC clarion SAN).
• Tivoli server application replication and troubleshooting. (Office 2007, Citrix, Blackberry, Bloomberg, Oracle, SQL, VPN, etc)
• Secure disposal of data (GDISK, DoD) removal and hardware.

Confidential, NC

Information Technology Systems Administrator

Responsibilities:

• Wintel Systems Admin for the Target racing team headquarters, resolving issues within the data center environment
• Configurations, deploy, troubleshoot, load balancing, and upgrade (Dell PowerEdge) servers with Win 2K3 R2, desktops, laptops, Cisco, Avaya switches, VOIP (Avaya), VPN, DMZ, IntelliSAT, IEEE 802.3, OSI, blackberry, and windows mobile.
• AD/Exchange, CCS, IIS 6.0, VB, MOM, NETMON, PERFMON, WireShark, SecureIT, Confidential, MSFTS OCS/Live meeting, MDS, BES, GOOD, TFTP, ISA, SQL, IMAP, LDAP, DC, SNMP, WIN, DNS, J2EE, SharePoint, and Dynamics.
• Package vendor released updates, Microsoft patches, SMS software application deployment and administration.
• SMS client/server health reports, WMI repository errors, resolve IPSec, subnet and any network related issues.
• Designing a repository backup plan, creating Lun/Raid groups, NetApp, HBA’s, utilizing Symantec Backup Exec 11D/CPS. For instant snapshot replications to EMC CX/AX Clarion series of fiber arrays for redundant backups.
• Lan/Wan application deployment of non-Microsoft apps, utilizing login scripts and Wise Package Studio (WMI).
• Cisco Aironet 1131/1240 migration for replacement of Netgear wifi to Cisco, for the internal wireless LAN at the headquarters.
• Troubleshoot, configure, and manage the project for effective IT team deployment of Cisco AP solutions.
• Hardware analyst and architecture design of servers for Microsoft compute cluster pack for real time simulation using Matlab.
• Glowpoint IP video conferencing Gateway to stream live HD video for network broadcast television stations.
• Visio diagrams for network and server layouts, upgrades for forecasted projects and a knowledge base.
• Migrating servers to ESXi to vitalize server load. Wireshark and SecureIT for analyst of security on the SOC/NOC.
• Turning around the IT department communications in the organization. Assure server sustainment reporting requirements, on time support for remedy ticketing system, and complete problem resolution in a 24x7 priority.

Confidential, NC

Senior Systems Engineer

Responsibilities:

• Investment Security Exchange 5.5 and 2003 e-mail support during migration from IMAP to Exchange for 700 users. Configure Wintel, Active Directory, DNS, LDAP, SMTP, Outlook 2003, and resolved any migration issues.
• Working on multiple projects to support domestic and international users on a 11,200 user migration from a Exchange 5.5 based email system to an Exchange 2003 based system. Providing swing migrations from Notes to Exchange using the Quest data migration tool.
• Administer the BES 3.4 and 4.1 servers for 2500 users over various network providers and blackberry pda’s.

Confidential, NC

Help Desk, Desktop Support, and Field Support Engineer

Responsibilities:

• XP Data Migration project, migrating secure data on dell laptop and desktop pc’s across a large area Network. Pushing applications, updates, using Tivoli. Trading floor bank moves within dmac.
• Merlin project, Windows XP server/desktop data migrations. New HP servers, desktops, and dell laptop equipment upgrades in 7 states. MOM, HP BAC, Site Scope, Patrol, Netuitive, and QPasa for monitoring servers.
• Providing technical support for Fleet bank migration, migrating users from Exchange 5.5 to 2000.
• Escalating trouble tickets from the help desk que to resolving issues dealing with data migrations and Blackberry PDA’s on a WAN. Moving people’s outlook data, to work with the current migration. Assign delegates, Moving, restoring pst, oft, fla, tmp file types, contacts, public, and personal folders to network storages units (NAS).

Confidential, NC

Lan Administrator

Responsibilities:

• Providing onsite support for installation, repairs, and migrations.
• Troubleshooting software (backup exec 9, exchange server, Active directory, office xp/2003, outlook, McAfee’s, Noton’s antivirus, citrix, NT 4.0, Win 2000/2003 Small Business Server, and other proprietary apps called spabiz and calyx) and hardware (desktops, servers, laptops, printers, PDA, wireless network cards and base stations).

Confidential, NC

Systems Administrator

Responsibilities:

• Providing help desk phone and email support for a mortgage and law firms across the USA.
• Documenting trouble tickets with Magic ticketing software.
• Troubleshoot software (Mainframe, Office XP, Outlook, Norton’s Antivirus, Citrix, Novell, Windows, and other proprietary database software, AP3) and hardware (Desktops, Servers, PDA, Wireless LAN and wire access points.
• Network admin with AD and Novell admin support with creating accounts, changing passwords, and exchange 2000 migration issues.
• Remotely fixing problems with VPN software to repair or update the user’s laptop and desktop (pc anywhere, carbon copy, RDP) in a windows 98/xp/2000/4.0 environment.

Confidential, SC

Cell Site Network Engineer

Responsibilities:

• Responsible for improving system performance and optimizing the southeast Cellular system. Reducing lost calls and ineffective attempts to resolve cell site outages.
• Troubleshooting and resolving system problems that include, but are not limited to, hand off failures, frequency related issues in poor topology, radio and network blocking, poor quality, low data rate and data capacity; troubleshooting and resolving customer service issues in a fast environment.
• Developed translations for new cell sites, cell site modifications, cell site re-location, carrier additions, cell site updates or modifications as well for new switching equipment verified and optimized new network equipment to meet or exceed original network configurations of FCC regulations.
• Long lead performance solutions tracked and included in network upgrades/redesigns and ensured network latency/performance maintained consistency with changing requirements and needs of the business plan.
• Supported RF design in the development and approval of new cell site research. Locations as required for traffic needs, baseline test and other performance issues. Coordinate with the project manager leads on developing schedules; identifying action items, and completing deliverables on time and under budget.

Confidential, Lasers, NC

Photonics Engineer and Physicist

Responsibilities:

• Business development and project management to provide safe, certified ( Confidential ) laser light show rental service, and sales.
• Troubleshooting engineered hardware (Amps, Galvanometer, AC/DC), servicing hardware, circuit boards, Pangolin, Full Auto.
• Design, building, and repairing laser projectors. Servicing ion (Krypton, Argon, and HeNe) and Solid state lasers (DPSS, YAG)
• Indoor, Outdoor shows by topology landmark of air traffic within a safe fly zone of FAA regulation.
• Pixel parity indexing 3D FPGA simulation with Matlab. UV 355nm Laser 3D Mapping visualizer detection of known aramount threats for cyber-intelligence against boarder protection ICE/DHS and DMZ high-risk zones where officers are able to monitor in 24x7 SOC.
• HEL-TD Army development of LAWs for area defense laser system for Naval and Aerospace integration. Use of high power femtosec pulses for KW’s of photonics energy for direct advancements of future solid-state electrical weapons for Missile defense.
• Darpa Mobile-Force Protection against no fly zones, 3D map anomalies, track and re-enable flight path - man in middle attacks, spoof SSID.

Confidential, SC

Data Center Analyst

Responsibilities:

• Providing Tier 3 technical support in a NOC environment.
• Cable modem deployments, moves, add, and changes to user accounts within South Carolina Roadrunner, EarthLink, and AOL WAN/LAN.
• Utilize docsys tools for network latency, RF signal/noise issues, Hubs, Taps, and network outages.
• Escalate tickets to the network engineers for deep recovery to ticketed related issues.
• Resolve winsock2, DNS, TCP/IP, routing, switching, wins, gateways, security, trust, VPN, Outlook, Exchange issues within effective time limits to meet the customer’s needs.