SUMMARY:

Multi - skilled Network and Security Engineer with over 10 years of significant experience managing large enterprise network infrastructures. Known for consistency exceeding organizational goals and objectives coupled with a strong work ethic and capacity to work well under pressure. Seeking a challenging and varied position that will allows me to capitalize on my technical expertise with opportunities for personal and professional growth.

TECHNICAL SKILLS:

Security Tools: Nmap, Nessus (Professional, Security Center), Metasploit, Backtrack, Wireshark, Tcpdump, Fiddler, SIEM (Archsight, Qradar, AlienVault, Alert-Logic) BitLocker, ESET, CrowdStrike, ForcePoint

Languages: Perl, Bash, PHP, Python, C++, MS-SQL, Oracle, F5 iRules

Networking: Cisco {routers, switches}, Cisco SLB {GSS, ACE, CSM, CSS}, Cisco {ISE, IronPort, -ACS, ASA}, F5 {LTM, GTM, EM, BIG-IQ}, Checkpoint Firewalls, Confidential ProCurve

Applications/Services: TCP/IP, Curl, Iptables, DNS (BIND9, AD-DNS), DHCP, Active Directory, BlueCat, Infoblox, SDN, SMTP, NFS, Samba, Squid, Apache, LVM, RAID, MySQL, MS-SQL, Oracle, NNM, SNMP, HPNA, SolarWinds

Operating Systems: RHEL (4, 5, 6, 7), Confidential -UX(11x), Centos, Ubuntu, Debian, Windows Server (2003, 2008, 2012), VMware vSphere

PROFESSIONAL EXPERIENCE:

Senior Cyber Security Specialist

Confidential, Houston, TX

Responsibilities:

• Senior member of Cyber Security team, responsible for the day-to-day security operations, administration, and maintenance of information security systems.
• Served as security incident response technical lead for majority of security incidents that come into the organization.
• Manage/Maintain Endpoint Detection and Response (EDR) Security products: ESET and CrowdStrike.
• Conducting event collection, log management and threat management activities using AlienVault and Alert-Logic SIEM platforms.
• Conduct Threat Intelligence (e.i Threat-Connect, ONG-ISAC) analysis for determination of impact, hunting to determine scope, and implementation of mitigations to defend the enterprise.
• Approved/Denied web site access using Palo Alto NG FW web filter.
• Performed basic penetration testing using Nessus and other opensource reconnaissance tools.
• Performed in-house risk assessments based on data obtained from scan outputs, as well helping third party security audits against our infrastructure.
• Supported and implemented security controls using ISO/NIST security frameworks.
• Analyze/Troubleshot for malicious email-based attacks using Forcepoint email filter.
• Performed in-depth analysis and investigations of high severity security incidents
• Update incident response documentation which includes malware and malicious email playbooks for incident handling.
• Reviewed current training documentation and revised technical procedures as necessary.

Senior Network/Security Engineer

Confidential, Houston, TX

Responsibilities:

• Focused on working with a team of 20 senior Engineers to engineer and deploy Network Security and Services for 4,000 network devices (Checkpoint Firewalls, Bluecoat Proxies, F5 Load Balancers, Remote Access).
• Worked with a team of 5 Engineers to plan/test/implement a device management solution (BIG-IQ/HPNA) for 700+ network devices.
• Performed weekly compliance checks on 4,000+ devices, and implemented new rules using Confidential Network Automation (HPNA) software to conform to JPMorgan Standards.
• Successfully migrated 100+ of switch configurations from legacy cisco equipment to new hardware devices across multiple datacenters with zero outages for clients.
• Key contributor of project to remove all legacy vulnerable ciphers (RC4 & 3DES) for all managed devices across JPMC Network Infrastructure.
• Developed perl script for mass device route configurations which reduced implementation time by 80% to increased productivity.
• Created implementation plans, network diagrams, and configuration documentation during projects to ensure successful deployment through the change management process.
• Responsible for business requirements, analysis, design, implementation, and maintenance of Network infrastructure to support the business needs.
• Participate in 24/7 oncall rotation schedule

IT Network Security Engineer

Confidential, The Woodlands, TX

Responsibilities:

• Works closely with internal technology teams, business stakeholders, and outside vendors to research, design, test, evaluate, and select network solutions to secure and protect the infrastructure.
• Implemented and managed IBM QRadar (SIEM) components at multiple Datacenter Locations (Houston & Austin).
• Designed and formulated custom rules within QRadar to optimize data collection (false positives) and improve search performance. This tuning reduced the number of illegitimate offenses being logged by 50% which eased administration efforts.
• Performed security assessments and vulnerability testing (ex. PCI DSS) at regular intervals using Nessus Security Center.
• Generated SSL/TLS negotiate scan policy on network infrastructure with Nessus to determine which systems and devices are vulnerable to attacks. Worked with various IT teams to ensure vulnerable systems used current secure version of TLS.
• Managed, Configured, troubleshoot, 11 Cisco ASA Firewalls (5510/5515/5520/5585 ) for manage clients, which includes network resource access, or hardware related problems. Created objects, rules & policies on Cisco ASA appliances that were approved by change management.
• Managed Proxy Infrastructure composed of 8 Cisco Web Security Appliances (WSA). Created custom categorization policies to allow/block webpages & DNS domains to comply with security policy.
• Build and support F5 Load Balancing infrastructure with an advance knowledge for modules LTM, GTM, ASM, and VCMP. Maintain and administer load balancing standards, documentation, processes and procedures.
• Centrally manage F5 configurations, backups, certificates, and software images using BIG-IQ.
• Successfully migrated 100+ configurations from Cisco Global Site Selector (GSS) to F5 GTM with zero downtime.
• Managed and supported Cisco Access control server (ACS) appliances.
• Recommends and implements policies and procedures to ensure adherence to security standards.
• Developed Standard Operating Procedure (SOP) configuration implementation documentation for Cisco WSA, F5 LTM/GTM, and QRadar (SIEM).
• Participate in 24/7 oncall rotation schedule

IT Operations Network Engineer

Confidential, Houston, TX

Responsibilities:

• Eight years of work experience supporting Confidential ’s Global Network Infrastructure in 7 datacenter environments.
• Monitored system performance and modified system parameters to effectively utilize system resources using Confidential Network Node Manager (NNM), Confidential Sitescope, and F5 Enterprise Manager.
• Performed packet analysis for core network services {HTTP(S), LDAP, SQL, SMTP, DNS, NTP} using a variety of tools sniffing tools (Wireshark, Tcpdump, Fiddler).
• Executed weekly compliance checks on 1,000+ network devices, and implemented new rules using Confidential Network Automation (HPNA) software to conform to Confidential Standards.
• Planned, Coordinated, and implemented mass software upgrades on 500+ Cisco, Confidential ProCurve, F5, Bluecat, and NTP symmetricom network devices in accordance to FY15 goals and objectives.
• Created Web Application to inventory all F5 devices across Confidential 's Network Infrastructure. This webpage allowed for quick queries based on FQDN to find the F5 device a given VIP was configured on.
• Execute subnet allocation and DNS/DHCP administration on for Confidential 's network infrastructure, which is composed of two class A subnet blocks (15/8, 16/8), and 25+ Linux (BIND) appliances managed using BlueCat Networks DDI platform.
• Developed training material on standards of operations (SOP) for configurations, troubleshooting methods, and hardware replacements for operations team.
• Reviewed current training documentation and revised technical procedures as necessary.
• Participate in 24/7 oncall rotation schedule.
• Key contributor for the following projects:
• System Migrations - Migration of legacy system configuration files for core services DNS, NTP, NTP, and FW settings for device refresh.
• 13,000+ system configuration files migrated.
• Cisco Eradication - Developed Perl Script to performed data extraction and transformation of Cisco configurations to F5 format with zero outages/downtime.
• Cisco GSS to F5 GTM - 2500+ configs migrated
• Cisco {ACE, CSM, CSS} to F5 LTM - 1000+ configs migrated
• Monitoring Enhancements - Implemented new monitoring standards for managed devices. Was instrumental in being able to find network problems using monitoring tools and ability to take remedial action.

IT Operations Network Engineer

Confidential, Houston, TX

Responsibilities:

• Serving as team lead for resolving chronic/systemic issues within Confidential ’s Infrastructure
• Deep problem analysis or production support
• Primary point of escalation for all critical production issues
• Review changes/implementations against production requirements (holding engineering accountable)
• Provide input to programs and initiatives to ensure that GT technical requirements are ingrained in all engineering designs
• Implemented Archsight (SIEM) rules to recognize attack patterns, and to correlate events that pose a security risk
• Performed system hardening on new/existing managed devices to reduce potential security risks
• Focused attention to application performance/architecture analysis
• Focused on all network technologies that have been determined to pose a risk to production
• Identifying where we are not standard, and driving actions to gain concurrence with Arch/Eng Standards
• Drive network/telecom tools innovation through partnership with tools team to identify gaps, and ensure effective monitoring of production change, fault, and performance
• Leveraging key technical staff and direct reports to train and mentoring to increase their capability
• Participate in 24/7 oncall rotation schedule

IT Operations Network Engineer

Confidential, Houston, TX

Responsibilities:

• Configured and troubleshoot complex network load balancing solutions including the following core network services {HTTP, HTTPS, SMTP, DNS, SSH, FTP, NFS, SQL etc.}
• Configure/Maintain 300+ load balancers across 6 datacenters (2 Atlanta, 2 Houston, 2 Austin)
• Work with application teams daily through the full software development lifecycle to ensure quality solution.
• Served as Hostmaster for 13,400+ DNS zones for Confidential including Confidential .com
• Provide Tier 3 subnet management support Confidential ’s two class A {15/8, 16/8} network blocks
• Performed daily maintenance tasks which includes performance tests, upgrades, backups, and creation/execution of automated scripts to simplify redundant tasks
• Provide SOP training documentation to colleagues and lower level support teams
• Participate in 24/7 oncall rotation schedule

ITOC Network Support Engineer

Confidential, Houston, TX

Responsibilities:

• I provided tier 3 support for Confidential Global Network Infrastructure on a 24/7 rotation schedule
• Responsible for the implementation, troubleshooting, and maintenance of network systems
• Responsible for configuring and maintaining core communications devices including routers, switches, firewalls, load balancers, VPNs, point-to-point connections, and servers
• Responded to security incidents as part of an incident response team
• Quickly resolve all IP Network incidents and changes while working in diverse management environments
• Perform daily IP administration tasks including:
• Subnet Management {IPv4, IPv6}
• Add/Delete/Modify DNS records
• Zone Creation/Maintenance
• Experienced in configuring/troubleshooting:
• WAN/LAN {Cisco, Procure, 3COM}
• DNS Administration {BIND9, MS-DNS, Secure64}
• IPAM Administration {NETID, BlueCat, Infoblox}
• Load Balancing
• Cisco {CSM, ACE, CSS, GSS}
• F5 {LTM, GTM, EM, APM}
• Firewall
• Cisco {ASA, FSM, PIX}
• Checkpoint Appliances {12000, 13000}

Superdome Solutions Technician

Confidential, Houston, TX

Responsibilities:

• Build, Test, and configure Confidential ’s High-end Enterprise Superdome (SX1000/SX2000) servers for external customers
• Use bash scripts to stress test all aspects of hardware components coming off the assembly line to ensure they meet the standards set forth by engineering.
• Debug script output to locate hardware errors and failures
• Replacement of hardware components (IO Chassis, backplane, SCSI peripherals, CPU, RAM, Drives, Cables) in case of stress test failure.
• Executed OS Installation ( Confidential -UX v11, Linux Red Hat 4x, and Windows Server 2003), software applications, patches, and kernel parameter changes per customer documentation.
• Create and configured virtual partitions (vPar) to allow multiple instances of Confidential -UX to run on a single hard partition (Disk).
• Created and configured Local Volume Manager (LVM) RAID {0,1,5,10} disk arrays spanning 50+ drive racks.
• Creation of scripts to automate routine tasks to reduce misconfigurations.
• Cable IO chassis and configure network settings for network adapters on 4 PCI-X IO chassis with a max of 48 PCI-X slots.
• Configured ProLiant support management servers (SMS) to provide a support terminal for superdomes.
• Notify engineering for issues requiring possible code upgrades.
• Achieved Internal Level 200 Solutions Certification during my first year of employment.
• Provided training to new employees.