PROFESSIONAL SUMMARY:

Cisco Network Architect with Cisco Security and Routing & Switching design, implementation, and administration expertise, with emphasis and focus on prevention and remediation of cyber threats, and internetwork architecture leadership and management.

NETWORKING SKILLS:

Cisco 700, 2511, 3640, 4700

Cisco Catalyst 6509, 6513, 5505, 5509

Cisco Catalyst 3750G

Cisco 3506: CX

Cisco 1602, 7507, 2524, 2621Cisco 3810, Cisco 3945

Cisco Catalyst 2924, 2980, 4500, 6506Cisco Catalyst 6509 - E

Cisco PIX Firewall

Cisco 4948: 10G

Cisco WLC 2106

Cisco AIR: WLC4402

Cisco 2610, 2620, 2621, 4000Cisco 7600, 2821, 7206, 7204Cisco 2811, CSS 11503, 11800

Adtran 924e, Cisco 3845

Cisco 2501, 2503, Cat 3550, 3548, 3750

Catalyst 4506, 4510R

Cisco ASA 5520, 5525: X, 5540

Cisco CSA, Solarwinds

Cisco AP AIR: AP113

Cisco Nexus 2248TP

Cisco Nexus 7710

Cisc0 Nexus 93180YC: EX

NetFlowAnalyzer v9Cisco 2950G

Cisco 6880, 6807: XL

Cisco Nexus 93180

Cisco Nexus 5596UP

Cisco Nexus 1010, Nexus 1110

Cisco C9500, Cisco 9300

Cisco 3850

Environment: Fast Ethernet, VLAN

RSTP

Cisco Instant Access

Frame Relay, TCP/IPCisco IPS

SNMP, OSPF, RIP v1, RIPv2, EIGRP, MPLS

VSS, OTV, vPc, vDc

BGP, ATM

Wireshark

TACACS, HSRPCisco IOS 802.1x

Cisco IBNS

Cisco ACS

Gibabit Ethernet, VTP

Cisco SSL VPNCisco GET VPN, Switchwise

Cisco IPSEC VPN, IPSLA, HSRP

Fiber OpticsCisco IOS DMVPN

Concord, OpennetCisco ZFW

Cisco Intellishield

Remedy, Vitalsuite Cisco IDS, NAM eEye Retina Scanner AD Manager Plus

Netview 6000

Cisco ISDM: 2

Windows NT 4.0, Win SBS 2003

Window 2000, XP, 7, Microsoft Vista, Kiwi, Orion, CIMC, HA

IEEE 802.1X

Win 2000 Server, Team Q ManagerPolycom ViewStation PVS-1419-Q

VRF: Lite, QualysGuard, DNS, Polycom Phones

Confluence, Fedline, Bugzillla 3.2.3

Cisco Umbrella, Cisco ISE, Microsoft Azure

PROFESSIONAL EXPERIENCE:

Lead Network Architect

Confidential, New Haven, Connecticut

Responsibilities:

• Network Architect primarily responsible for the evolution of the data, voice, and wireless networks while managing and optimizing the current environment.
• Design and deploy BankMobile LAN, WAN, Security, and Wireless Networks.
• Oversee new and existing equipment, hardware, and software upgrades.
• Communicates and coordinates all circuit installations for both internet and permanent physical circuits and troubleshoots with vendors when corrective action needs to be taken.
• Configure networks to ensure their smooth and reliable operation for fulfilling business objectives and processes.
• Perform network asset management, including maintenance of network component inventory and related documentation and technical specifications information.
• Collaborate with executive management and department leaders to assess near- and long-term network capacity needs.
• Create and maintain documentation as it relates to network configuration, network mapping, processes, and service records.
• Interfaces with the hardware and software networking vendors for technical support when new functionality is requested and escalates problems to central support when assistance is required.
• Implement and maintains all TCP/IP network addressing schemes. Plans, tests, and maintains network security and remote user access.
• Manage telecommunication PBX functionality. Performs system performance evaluations and makes recommendations for improvements.
• Plans and implements disaster recovery procedures and participates in off-site recovery testing. Identify opportunities for cost savings appropriate to the department and organization and implement action plans that reduce costs. Conduct research on network products, services, protocols, and standards to remain abreast of developments in the networking industry.
• Responsible for the 24/7/365 days on-call annual support.

Network Architect Consultant

Confidential

Responsibilities:

• Design of network solutions based on customer requirements.
• Providing customers and senior program managers with recommendations to successfully implement data network solutions.
• Working with the project management team from start to finish, including developing network designs based upon user requirements, creating network diagrams using Visio and full implementation follow-through and documentation of requirements.
• Providing network engineering consulting services, including assessment, design and implementation of data networking environments.
• Collaborate with customers to define requirements and develop a networking solution.
• Work with carriers / service providers relating to various type of connectivity, collocation and routing.
• Develop customized CPE hardware configurations.

Lead Network Architect Consultant

Confidential, Waterbury, CT

Responsibilities:

• Serve as the network subject matter expert providing strategic direction and planning of enterprise network, wireless, and voice infrastructure initiatives to ensure they are properly designed and in alignment with corporate infrastructure strategies. Manage key vendor relationships with IT leadership, provide key input on technology investments regarding price vs. performance vs. proficiencies and matching of costs against benefits.
• Review and recommend infrastructure technologies to meet business needs and priorities and to align with organizational strategies. Design the new Confidential Cisco Nexus 9000 redundant Core infrastructure which is comprised of: Cisco Nexus 93180, Cisco Nexus 2248TP’s, Cisco Nexus 7009, Cisco ASR4331, Cisco 2911, Catalyst 3850’s, Catalyst 3650’s, Catalyst 4506’s Catalyst 4510R’s, Catalyst 3750’s, Catalyst 2950’s, Catalyst G’s, Cisco ASA5520’s, and Cisco ASA5525-X’s. Technologies administer: EIGRP, Spanning-tree, VLAN, Ether-Channel, Site-to-Site VPN, DHCP, DNS, Cisco Stackwise, FastEthernet, 1GigabitEthernet, 10 GigabitEthernet, layer 3 & 3 Interfaces, LACP, vPC, and Single-mode & Multi-mode Fiber Optics.

Senior PostSales Security Consultant

Confidential, Bedford, NH

Responsibilities:

• Senior Networking Consultant providing Cisco Data Center solutions and Security to government, education and banking clients, performing data center network analysis design, and implementation at the edge, distribution, and core. Network Routing Protocols: BGP, OSPF, EIGRP, WAN technologies using DWDM and VPN Encryption Tunnels, VSS, VRF, and HA. Manage and implement firewall software/hardware/Rules/Policies configurations utilizing CiscoASA 5585, ASA5525, Catalyst 6506, 6506 - E, 6509, Nexus 7710 s, 5596UP s, 2248TP s, 1010v s, 1110x s, 4506-E s, ASR1004, 6807-XL. Assignments:
• Designed and implementation of State of CT Norwich Public Schools Toshiba Phones System VLAN Project which entails:
• Deploying a dedicated Voice VLAN for traversing packets for their system-wide deployment of Toshiba Phone System.
• Creation of 14 routed VLANs for the 14 Norwich Public Schools Sites
• Designing 14 IP Address /24 Scopes for the 14 Sites VLANs
• Creation 14 DHCP Servers with the 14 IP Address /24 Scope; one for each site on the switches
• Configure Phones switchports for respective VLANs
• Add subnet to 14 Cisco 3750 switches Eigrp 100 adjacency table
• Test Phones for DHCP and Laptop for Internet access
• State of CT Department of Education requested that Confidential provide firewall installation services for their Windham Regional Technical High School which entails:
• Obtain IPs for outside of firewall and DHCP Server
• Allow all connections on WLC - using ether-channel
• Configure Cisco switch for Inside (FW Inside, WLC, DHCP) and Outside (FW Outside) Connections
• Configure Cisco Switch with non-routable VLANs for networks that will be NATted by FW
• Configure FW for outside and Inside networks Using Ether-channel. for speed and redundancy
• Ensure systems working, test failover and troubleshoot as necessary
• Deployment of new Nexus 7710’s, 5596UP’s, and 2248TP in the Groton and Waterbury Data Centers.
• Configuration of Cisco ASR 1004 Core routers for branch office VRF implementation.
• Design and implementation of Nexus 1110’s in the infrastructure for Application Development virtual machine deployment.
• Troubleshooting of routing and setup of catalyst switches.
• Decommissioned of pre-deployed network equipment from the Data Centers
• Design and implemented of Judicial Branch State-Wide Port-Based Access Control (802.1X) Topology for providing employees access to network services from State Courthouse Conference Rooms.

Network Security Consultant

Confidential, Bedford, MA

Responsibilities:

• Network Security Engineer with responsibilities of firewall rules implementation, web proxy administration, and intrusion detection and prevention device policy management.
• Analyze network issues with network packet capturing tools Wireshark, tcpdump, and Kismet.
• Recommend and implement Qualys Guard Vulnerability tool to enable periodic and on-demand system audits, vulnerability assessments including user accounts, applications access, file system and external web integrity scans to determine compliance.
• Implement and act as subject matter expert on AD Manager Plus Active Directory Management and Reporting tool to enable the IT Services Department in the integration of a role-based delegation process for technicians, to automate Active Directory Management and reporting processes, and to meet requirement during compliance audits.
• Conduct remediation and manage the implementation of security controls to meet business needs.
• Participate in on-site network and security audits related to Web Development, WindChill, SharePoint, and External Internet access to provide an effective network security enterprise control. Investigate and stay current on the latest network security threats and vulnerabilities to take proactive actions to secure the enterprise environment. Participate in infrastructure and security incident management processes to derive root cause and post action reports.

Network Tools: Packet Analysis tools such as Nmap, Security Analytics, Qualys Guard, AD Manager Plus, IPS/IDS, Wireless Intrusion Prevention, Web Proxy, VPN Technologies, CISCO ASA and Checkpoint.

Network Routing Protocols: BGP, OSPF, WAN technologies using MPLS and VPN Encryption Tunnels.

Sr. Network Design Engineer

Confidential, Springfield, Massachusetts

Responsibilities:

• Design, change, and maintain solutions for scalability, reliability, and redundancy of the Layer 2 & 3 network infrastructures which includes:
• Maintaining/updating network documentation for related changes.
• Investigate and troubleshoot network interruptions providing root cause analysis and mitigation recommendations.
• Manage and implement firewall software/hardware/Rules/Policies configurations. CiscoASA 5520, ASA5545-X IPsec and Site-to-Site VPN deployments.
• Utilize Cisco Catalyst 6506, 6506-E, 6509, 3560’s, 3750’s, and Cisco 3845 routers.

Routing Protocol: BGP and OSPF

Network tools: Whatups Gold, Cattools, Conceptdraw Pro, and Cacti.

Sr. Network Architect Consultant

Confidential, Bristol, CT

Responsibilities:

• Member of the Network Architecture and Engineering Team as the resource for the SAW Migration Project and the design and implementation of the new corporate Management Network infrastructure.
• The SAW Migration Project entails the verification of 15 Security Group DMZ Sites topology and diagrams for transition to the Network Services and Support Group for operation management. The new Management Network I have designed will encompass layer 3 routing at the distribution layer with access to the internet from the Confidential L2/L3 Nexus 7010 Edge. The layer 3 routing entails a new Management Network VRF with 15 new VLANs segmented for the 15 Campus buildings.
• Network Components Utilize: Cisco 6509-E’s, 3750’s ’s, Cisco, Cisco Nexus 3064, Nexus 5500, Nexus 7010, Force10 c150, force10 c300, force10 4810, force10 c25n, force10 s25p, Palo Alto 4060, Palo Alto 2050, Palo alto 5060, Lantronic Console Servers, and Cisco ASR 9001.

Network Architect Consultant

Confidential, West Hartford, CT

Responsibilities:

• Inventory of all network equipment and assess components.
• Design of Layer 2 Switching and Layer 3 WAN topology.
• Manage WAN circuit upgrades for Remote Branches.
• Upgrade Internet Primary Router from Cisco 3825 to Cisco 3945.
• Add 1 CX4 cable to increase the bandwidth between the 2 WH cores. Installed CX4 cablings for Etherchannel connectivity between West Hartford Core 3750 Stackable Switches to allow for 30 Gigabit of bandwidth between core 3750’s stacks.

Network Architect Consultants

Confidential, Simbury, CT

Responsibilities:

• Install 34 - Cisco 2960 Catalyst switches to replace Cisco 3550 switches that are end of life.
• Configure Cisco Catalyst 6500’s DTP to allow traffic between the new Cisco 2960’s and the core 6500’s backbone.
• Configure VTP mode client on catalyst 2960’s to enable VLANs traffic from core Catalyst 6506s.
• Decommission Cisco Catalyst 3550 network switches.
• Documenting network topology and inventory to allow for efficient management of the Simsbury, CT site.

SENIOR NETWORK ENGINEER CONSULTANT

Confidential, Burlington, MA

Responsibilities:

• Technical network lead consultant with responsibility of troubleshooting and implementing existing and newequipment to optimize network and security systems.
• Provide Cisco infrastructure expertise, direction, troubleshooting and assistance to Back Office Systems Administrators as it relates to networking.
• Work closely with Aspen Senior Security Analyst on security patches and monitoring of security devices.
• Oversee outsourced Network monitoring vendor.
• Manage vendors’ onsite resource on open projects and Work with vendor on open tickets, troubleshooting device failures and schedule onsite engineering resources.
• Update network diagrams and keep updated list of contracts, circuit numbers, and technical contact numbers.
• Perform daily network administration, integration, and troubleshooting tasks to corporate backbone, local, and global remote infrastructure components:
• Cisco Routers 2621, 2811, 2821, 3825, 3845, 3745, Catalyst Switches 6509-E, 3750, 2950, 3550, 3750G, ASA5505, ASA5510, ASA5540, PIX525, Wireless LAN Controller AIR-WLC4402, Wireless Access Point WAP 1231G.

SENIOR NETWORK ENGINEER

Confidential, Charleston, WV

Responsibilities:

• Performed the duties of the lead integration and implementation engineer for the WV Broadband initiatives Program.
• The proposed network will provide a backbone to community anchors, including: schools, libraries, hospitals, public safety agencies and jails.
• Initial staging completed includes: Design and configuration of Cisco 3945’s which is the standard platform providing fiber connectivity to the 1064 locations identified as unserved and underserved rural sites.
• Deployment of the CiscoWorks 3.2 LMS which will enable monitoring, configuration, and IOS upgrade of the 3945’s.
• Implemented and tested an automation process using CiscoWorks Netconfig for upgrading the image of the 3945’s Network Analysis Module Card (NAM) if it is corrupted.