SUMMARY

• Senior Network Engineer with extensive production environment experience in network design, configuration, implementation and troubleshooting. Proficient in routing/switching, network security, wireless networking, remote access and system administration.
• Key strengths include strong troubleshooting skills, ability to maintain composure under immense pressure and can adapt quickly to change. Energized by tackling complex tasks.

TECHNICAL SKILLS

Networking: Cisco 800 through 7200XVR series routers, Cisco 500 through 6500 series Catalyst switches, Nortel 400 through 8600 ERS series switches, 3Com 3300 through 3900 series switches, Cisco 1000 through 1400 series Aironet access points, Cisco 4100 through 4400 series WLAN controllers. OSPF, BGP, EIGRP, IGRP and RIP routing protocols. STP, VTP, EtherChannel/LACP, etc..

Network Security: Checkpoint NG5x/NG6x firewalls. McAfee IntruShield 2600 through 4000 series IPSs, Cisco IOS Firewall and IPS, Snort IDS/IPS, NTOP, Cisco 500 series PIX firewall, Cisco 3000 series VPN Concentrators, Nortel 1000 through 3700 series VPN Concentrators, Cisco VMS, Cisco ACS, FreeRADIUS, Microsoft IAS RADIUS and CA server, Nessus, Retina, tunneling and access lists. WEP, WPA, 802.1x/PEAP, TKIP and AES security technologies. Various sniffers and port scanners such as Wireshark, NMAP and Ettercap.

NMS: CiscoWorks, Cisco Network/Configuration Assistant, Cisco/Airespace Wireless Control System, HP OpenView, Netcool, MRTG, Solarwinds, WhatsUp Gold, MRTG, Cricket and Smokeping. Dial Up and DSL Remote Access Servers (Carrier RAS/NAS)Nortel/Aastra CVX, Cisco AS5300, 3Com Total Control 1000, Redback SMS1000 DSL Concentrator, Lucent MAX TNTs, Portmaster and APX 8000.

Programming: UNIX BASH and Expect/TCL shell scripting.

Operating Systems: Linux, Windows Vista, Windows XP, Windows 2003 Server, Windows 2000 Client and Server, Windows NT, Windows 9x, Windows 3.11, Solaris/AIX UNIX and Macintosh OS 7.5 - OS X.

Telecommunications: AFOP CWDM/DWM MUXes, Frame Relay, ATM, PRI/ISDN, OC3-12s, DS3s, DS1s, DS0s, xDSL, various MUXes and CSU/DSUs, Telco Trunking/Translations and circuit configuration.

PROFESSIONAL EXPERIENCE

Confidential

Senior Network Engineer/Technical Engineer

Responsibilities:

• Introduced, designed and installed CBS’s first implementation of DWDM (dense wavelength-division multiplexing) using AFOP fiber-optic solutions, over their existing CWDM (coarse wavelength-division multiplexing) infrastructure, to divide a CWDM wavelength into sub-channels and utilizing them as 1GB circuits. This resulted in the creation of additional 16, 1GB data circuits between 3 pairs of major locations during the first wave of installations without purchasing additional 1GB carrier circuits and saves a substantial sum of operating costs monthly.
• Initiated and implemented a major overhaul of the aging network design and infrastructure at CBSs Television City. This included: creating configuration and security standards, updating all access/distribution/core switching elements, mass cable clean-up, device discovery and documenting, repositioning datacenter equipment to allow for hot/cold zones, etc.. This resulted in a more stable and workable environment for those within and as well as outside of Information Technology inside Television city and involved virtually no financial investment.
• Designed and implemented a telecommunications solution for CBS NFL Football mobile truck units which allows CBS Sports staff to make telephone calls using analog phones over the Internet. This involved utilizing Cisco 1800 routers with voice modules to dynamically connect to PBXs within CBS headquarters across the Internet via a secure VPN tunnel from any stadium in the US. This will enable CBS Sports to be less dependent on Stadium services and saves operating costs annually during football season.
• Adapted to and became comfortable with an extremely heterogonous network, demanding, and fast pace work environment in little time and without and minimal assistance.

Confidential

Lead Network Engineer/Senior Network Engineer IV

Responsibilities:

• Designed Confidential ’ first 100% Cisco ship network model and introduced WLAN access to the fleet. The new design is complete with dual 2800 routers, dual 4510R Catalyst core switches, dual Cisco 4400 WLAN controllers, 100+ Cisco 1100 series LWAPP access points and five remote 3750GS Catalyst switch clusters. Successfully implemented the new design on the Pacific Star Princess (Palermo, Sicily,) Crown Princess (Monfalcone, Italy,) Royal Princess (Gibraltar, UK,)
• Successfully integrated the recently acquired Cunard and Seabourn Cruise Lines networks, which operated on used public IP space in a private network, into the Princess enterprise. Minimized local and global network overlaps utilizing such tactics as NAT/PAT, supernetting and strict access lists.
• Introduced Linux to Princess Network Engineering. What started as a simple backup RADIUS server turned into five full production servers running Nessus, FreeRADIUS, Apache, NTOP, Cricket, Splunk, Samba and more. Using open source, license-free network and network security based tools is saving Princess thousands of dollars in software licenses.
• Wrote UNIX shell scripts/programs such as an auto-connect SSH/telnet script, weekly automated configuration backup script, password/SNMP community update script and a Syslog report script customized for SOX compliancy. These tools streamlined day-to-day operations and saved IT thousands of dollars in software licenses.
• Designed and deployed Princess’ AAA for WLAN, VPN, and dial-up remote access via dual Cisco ACS servers, Microsoft AD and FreeRADIUS. Secured WLAN access by enforcing 802.1x/PEAP authentication against RADIUS which proxies requests to AD, securing the network and resulting in Visa compliancy.
• Overhauled Princess’ routing mechanisms, replacing thousands of static routes with dynamic OSPF and EIGRP routing. Enhanced routing further by employing supernetting, tag routing, OSPF stub and NSSA areas.
• Secured network by sealing gaping security holes in 100+ devices by: migrating off of public/private SNMP v2c communities to secure communities and/or SNMP v3, moved away from telnet and onto SSH, assigned open devices local passwords and pointed them towards TACACS+ and/or RADIUS for AAA, updated outdated software on all access, core and edge devices. Outcome was a secure, compliant management network.
• Administered all NMS services such as HP OpenView, Cisco VMS and CiscoWorks, Cisco Wireless Control System, and WhatsUp Gold. These tools allow Network Engineering to maintain virtually zero visible downtime by correlating and isolating failures in real-time.
• Engineered and applied Princess’ Corporate WLAN infrastructure using Cisco/Airespace WLAN controllers, centralized LWAPP and distributed Aironet access points. Enforced strict security by utilizing 802.1x/PEAP, RADIUS and WPA/WPA2 encryption.
• Contributed to Network Engineering team peers by preparing walkthroughs and diagrams, writing shell scripts to simplify redundant tasks, sharing critical information and fixes, conducting ad-hoc training courses and provided off-hours assistance.
• Adapted to and became comfortable with Princess’s network in under a months time with minimal training.

Confidential

Network Engineer

Responsibilities:

• Ensured a virtually seamless integration of three major external networks: Confidential, Mindspring and Onemain by correcting network and access problems during the mergers as soon as they arose, minimizing Mean Time to Repair (MTTR.)
• Helped maintain a dial-up call failure rate of below 2% network wide, which resulted in Confidential achieving several accolades including the J.D. Power and Associates award for Highest in Customer Satisfaction.
• Wrote BASH shell scripts for the NOC to simplify tedious tasks such as a script that would busy out 56 dial-up PRIs in seconds rather than minutes in the event of a malfunction on a CVX RAS device, minimizing MTTR.
• Provided teammates technical assistance and guidance by sharing new fixes, proactively offering assistance on issues and generating technical walkthroughs, e.g. an OSPF training document geared towards NOC personnel.
• Consistently the NOC’s top performer opening and resolving the largest number of tickets weekly with no loss in the quality of work, resulting in a manageable queue and decreased number of reoccurring problems.
• Worked with Telco vendors nationwide, built relationships with key individuals and called upon them when the need arose, reducing the amount of time to resolve circuit issues.

Confidential Center Technician

Responsibilities:

• Performed constant monitoring of systems and network elements, correcting problems and addressing needs as they surfaced, producing one of the world’s most stable external networks.
• Cut network operational costs considerably by thoroughly documenting vendor related outages affecting any one of Confidential 's thousands of high speed circuits, which was used to recover charges from vendors that accrued during the downtime.
• Learned to operate and maintain 10+ hardware platforms in about a month’s time.