SUMMARY:

• Trusted consultant, designer, and implementer for large, enterprise networks.
• I have extensive hands on experience with LAN, WAN, WLAN, and Security technologies including Cisco Catalyst and Nexus switches, Cisco ISR and ASR routers, and Cisco ASA, Checkpoint, and Palo Alto Firewalls.
• Personnel and processes management, change control/management, P&L, process improvement/standardization/streamlining working with diverse teams
• I have over 20 years of experience in the IT Industry with a full range of experiences.
• With an extensive and diverse background, I have been able to move into critical roles and bring together and assist cross - functional teams to solve complex issues.

WORK EXPERIENCE:

Confidential

Sr Network Security Engineer

Responsibilities:

• Built from scratch many Cisco ASAs 5500X series.
• Multi-context firewalls
• Routed and Transparent firewalls
• X single and clustered firewalls
• Responsible for troubleshooting, working with Cisco TAC, and working with clients to resolve simple to complex issues.
• Experience setting up and trouble-shooting and Cisco’s “Next Generation” firewalls, including Firepower/Sourcefire.
• Experience setting up and troubleshooting Palo Alto firewalls, and working with Panorama to manage these firewalls
• Experience consulting, designing firewall solutions, working with clients, internal client support teams, and Finance.
• Routing protocols - OSPF, EIGRP, and BGP
• B2B VPN and SSL VPNs
• Responsible for daily ticket requests from internal clients requesting access, NATs, routes, etc to support client requests.
• Assisted company requirements to maintain secure information through PCI auditing.

Confidential

Sr. Network Security Engineer

Responsibilities:

• Lead firewall engineer on Confidential 3rd party rail
• Built new contexts on ASA 5585X, and work with Security, Confidential Business Units, and 3rd Party clients to set up Internet IPSEC VPN, MPLS and Internet DMVPN connections.
• I’m lead interviewer on
• Configure Catalyst 6500 VSS, ASR 1006, ISR G2 routers, Catalyst 2900, 3600, 3700 switches, and ASA 5505 up to 5585X firewalls.
• Routing protocols used BGPv4 and EIGPR
• Spanning tree protocols MST and RPVST
• VTP modes Server/client and transparent
• Firewall ASA OS configured 8.2 on old firewalls, and 9.5 on new firewalls
• I’ve updated several firewalls from old to new ASA OS
• Configuration experience in both CLI and GUI (via CSM).

Confidential

Sr. Network Engineer/Engineering Supervisor

Responsibilities:

• I’ve worked on enterprise class 5585X firewalls in multi-context mode, in large data center applications. I’ve built from the new contexts, and configured NATting, and ACLs per client requirements
• Worked both in CLI and GUI based configuration.
• Managed multiple firewalls via Cisco’s CSM
• For a year and a half before the Data Center migration project, I worked extensively on reviewing firewall rules and working with Security to ensure compliance. I also set up new connections, and migrated existing connections to the now centralized 3rd Party environment. I actually set up this environment about a year previously, working with several other Design team members. The goal was to centralize and heavily control and monitor coming into and exiting Confidential through multiple business environments, separated into many different subnets and enclaves within the larger Confidential network.
• The review and approval process was extensive. After receiving Confidential Security approval, we would work with the other company that either Confidential needed to access or they needed to access Confidential resource.
• During this time and for a couple years before this, I installed several smaller ASAs and Juniper firewalls in remote sites where it was necessary to segregate nodes from the rest of Confidential for one reason or another. I’m familiar with setting up single firewalls and clustered firewalls primarily in single context mode.
• Design and Build Cisco LAN/WAN and Security solutions
• These projects most of the time are remote sites with 50-500 nodes (SOHO to small campuses) that require network hardware and cabling remediation. Some locations have existing documentation, other times I need to perform discovery and create this documentation.
• After discovery, I’m responsible for putting together a design that is presented to the business decision makers (Business). Then once the Business agrees on course of action, the design is presented to Operations to ensure it follows Confidential design guidelines or has appropriate approvals for deviation from standard design.
• Then the equipment is installed and a test plan is executed. If needed “tweaks” to the configurations are made and finally I receive Business signoff.
• Once I receive Business signoff, I take the new environment/equipment through a series of steps to ensure the CMDB is updated, and operations has sufficient monitoring and documentation to support the site.
• After this the project is closed.
• The equipment is typically all Cisco. Routers (ISR), switches (Catalyst), firewalls (ASA), and wireless access points.
• Data Center (Cisco Nexus and Catalyst 6500E) Experience
• I’ve done a lot of work in large Confidential Data Centers. The most recent was just completed in June where we migrated hundreds of servers with thousands of applications that impacted the entire Confidential worldwide community.
• My primary responsibility was building out two environments using Nexus 5596 and 2232/2248s. One of those was an internet DMZ, and the other a Confidential enclave, accessible by only Confidential authenticated personnel. I also worked some of the Nexus 7000 series switch.
• I’ve worked extensively on setting up vPCs, provisioning 2Ks, and have experience configuring “fabric path.”
• I’m used to working in a large project, following processes and procedures to ensure full compliance with Confidential mandated policies.
• Cisco router and switch experience
• Routing protocols: BGPv4, EIGRP, RIPv2
• Route shaping using prefix lists, tags, and route maps
• Route redistribution between BGP and EIGRP
• Configuring VRFs
• Experience with all levels of Catalyst from 2960’s up to 6500E chassis switches.
• Experience configuring RPVST and MST spanning tree protocols
• Supervisor Professional Services
• I was with Cincinnati Confidential for a couple years, and they asked me to lead a group of network engineers.
• This was typically about 25% of my workload.
• There are times when the management team will pull the supervisors in to improve processes, build/update documentation, etc.

Confidential

Sr. Network Engineer/Engineering Supervisor

Responsibilities:

• Design, build, and implement Cisco LAN/WAN solutions
• Cisco Catalyst (switch/route)
• Cisco ISR G1 experience (route - EIGRP, OSPF, BGP, VPN)
• Supervised 7 Network Engineers

Confidential

Director - Professional Services

Responsibilities:

• Developed the process and procedures the team uses today for pre-sales.
• Hired and trained (hands on trained - worked with the team in the position until they came up to speed.
• And was always involved with escalations the team needed help resolving)
• Design/Configure Cisco solutions
• Interacted with customers and sales reps to develop custom network designs based on client needs.
• Created stub configuration files for both switches and routers.
• Assisted clients as needed with switch port configuration, router circuit configuration, and troubleshooting implementations.
• Acted as a level 3 support - when the team on site could not fix the issue.
• Responsible for maintaining Gold partnership with Cisco and managed the companies SMARTnet contract team.

Confidential

Sr. Manager - Technical Marketing

Responsibilities:

• Managed a team of up to 85 Technical Marketing Reps
• Participated in several cross-functional teams focused on increasing client satisfaction, process improvement, and cost containment
• Participated in several projects focused on system enhancements to help automate manual activities
• Design/Configure HP and IBM servers and storage solutions

Confidential

Project Management/Configuration Specialist

Responsibilities:

• Managed many system integration and deployment projects for Confidential 500 companies
• Participated in numerous projects focused on system and quality improvements
• Custom built desktops, laptop, and servers for Confidential 500 companies

Confidential

Configuration Technician

Responsibilities:

• Custom built desktop, laptops, and servers for Confidential 500 companies
• Responsible for quality checks on orders for high visibility clients
• Participated on several projects to improve processes and quality output