SUMMARY

• Over 15 years of extensive infrastructure design and leadership experience in teh creation and delivery of technology solutions specifically in teh areas of networking and security related products and services.
• Responsible for making operational and tactical decisions in networking and security deployments in datacenters environments.
• Diversified experience in IT architecture, strategic planning, process re - engineering and solution.
• Expert in solution innovation, architecture development, business strategy and applications integration
• Led leadership team to set IT architecture strategy, driving enterprise technology direction.
• Building business case, defining technology roadmap and to layout operation plan to ensure alignment.
• Extensive experience in IT Strategy Development and Execution
• Enterprise policy creation and implementation; mentor, leader, team builder, enterprise-wide change management, architect private and hybrid cloud
• Architectural level experience in designing and deploying multi-vendors enterprise security products including Cisco, Juniper, Check Point, Fortinet, and NG Palo Alto Firewalls.
• Demonstrated skills as a Subject Matter Expert (SME) in teh security related products including Cisco ASA 5585-X, Next-Generation Data Center Firewall, Cisco ASA 1000V Cloud Firewall, Cisco IPS 4500 Series Sensors and Cisco Virtual Security Gateways
• Responsible for ensuring seamless interoperability among Network Security Policies and Networking Components.
• Ability to identify, understand and communicate complex network and security issues TEMPeffectively
• Expert level experience of translating business level objectives into technology solutions, yielding to continuous and sustainable networking and security solutions.
• Designed, configured and maintained Public Internet/Extranet and remote site firewall services infrastructure.
• Key participant in technology strategy groups to elicit and translate requirements for teh recommended new business initiatives
• Architectural, configuration and implementation experience with multi-vendor IDS/IPS environments including VPN systems and support of wireless network security policies
• Working experience with customer connectivity support via Internet VPN, MPLS, and other dedicated networks
• Developed design principals, models, plans, internal standards, budgets, and processes based on industry best practices.
• Highly proficient and hands on experience in teh inter-networking technologies IGP (OSPF/ISIS), MBGP/BGP, Multicast, MPLS, L2VPN (VPLS,EVPN), L3VPN(BGP IP-VPN), STP, L2 switching, TCP/IP, IPv6,
• Experience in developing security policy designs and managing remote access VPN, SSL/TSL, NAT, PAT, DMZ, IPSEC, AH/ESP and IKE.
• Network Firewall consulting experience in migrating from Cisco to CheckPoint, CheckPoint to Juniper and F5 upgrades.
• Demonstrated noledge and ability to work with firewalls, intrusion detection systems, authentication, authorization and accounting systems (AAA); application security concepts and tools
• Experience with network management and protocol analyzers tools like Concord, HP OpenView, Spectrum, Sniffers, Wireshark, etc.
• Cisco’s CCIE (Written Exam), CCDA and CCNA certifications.
• Highly Proficient in Microsoft Word, PowerPoint, Excel, Access, Visio etc.

PROFESSIONAL EXPERIENCE

Confidential, Houston, TX

Lead Network/Security Architect

Responsibilities:

• Responsible for teh technology strategy, architecture, implementation, collaboration and budget.
• Responsible for IT Strategic Planning, Budget/Vendor Oversight, Network Administration
• Designed organizational structure and roles for Information Systems, Information Management
• Aligned Information Technology teams with business unit plans.
• Evaluated critical needs to review/examine functional operations, key personnel, and information processing systems, documentation, vital records, policies & procedures.
• Working with cross-functional teams to design networking and security layouts for global datacenters for diverse range of IBM’s customers and partners.
• Successfully interfaced with C-level of Palo Alto Networks to secure significant discounts and support services for their firewall products
• Collaborated with teh cloud development teams and developed an overall network architecture leveraging SDN and NFV for hybrid cloud
• Evaluated and recommend approaches for overlay SDN based networks for private cloud
• Responsible for Network Security Configuration best practices, VPN/WLAN Security Standards, Firewall, DMZ Design and Security Audit/Compliance
• Implementation experience in Cisco ASA 5585-X, Cisco ASA 1000V, Cisco IPS 4500, Cisco Virtual Security Gateways
• Experience in teh design, implementation, and operations of teh following technologies & processes, IP Firewall, IPS, Content Filtering, NERC CIP, SOX
• Network design, security, and administration experience in Juniper SRX 1400 Firewall, Cisco WSA, ScanSafe load balancers (F5 and Cisco)
• In depth noledge of VMWare VSphere 5.5 and 5.1, Vmware Heartbeat, Autodeploy, Host profiles, dvSwitches, storage clusters and performance tuning
• Provide guidance on and/or lead teh design and engineering efforts, as well as expert technical input and support for engineering, network and telecommunications solutions based on recognized standards and best practices.
• As a lead architect, designing and implementing state of teh art Datacenter designs guaranteeing High Availability in teh range of 99.999%.
• Implementing integrated solutions with F5 Global/Local Traffic Managers (GTM) Cisco’s Fabricpath and Cisco’s OTV technologies to interconnect inter-Data Centers Infrastructure to achieve ultra-high Network Availability.
• Routing/Switching experience in Layer 2 & Layer 3 networking such as OSPF, RIP, EIGRP, BGP, Route Redistribution, ACLs, QoS, STP, Multicast, IPv6.
• Practical experience with MPLS/RSVP-TE/LDP, ISIS, RSVP-TE.
• In depth experience and use of Networking and Storage technologies (CISCO, F5, NFS, iSCSI and/or Fiber Channel SAN’s) and proven experience in architecting technical solutions in support of business drivers.

Confidential, San Ramon, CA

Senior Network Architect

Responsibilities:

• Managed and influenced network hardware and service vendors to achieve desired outcomes of negotiations, meetings, implemented networking and security solutions and contracted engagements.
• Assisted leadership, collaborate and consult with stakeholders to develop, implement, scalable and supportable security solutions pertaining to multi-vendors firewalls and Unified threat management (UTM) solutions
• Designed, deployed, and support enterprise class Check Point, Juniper, and Cisco firewalls, Bluecoat Proxy Servers, and SSL VPN devices.
• Hands on experience with Blue Coat, Check Point Firewall, Cisco ASA Firewall, Juniper Firewall, Juniper SSL VPN, Hardware Security Module.
• Complex troubleshooting to include network protocol and log analysis, raw data captures, and teh correlation of disparate events spanning multiple devices and platforms.
• Designed networking and security solutions with global scalability for Robert-Half’s worldwide Datacenters in multi-homing environment with Confidential &T, Verizon and Masergy.
• In depth understanding and architectural experience with setting up and configuring Cisco Nexus 7000 series and Juniper’s EX 8200 family of routers.
• In-depth and extensive hands on experience in IP routing and switching in large ‘real-world’ Commercial / Enterprise networks including operation and troubleshooting OSPF/RIP, BGP scaling, Layer 2 switching protocols/applications such as Spanning Tree standards 802.1d, 802.1w and 802.1s (RSPT, MIST, PVST),
• Ability to design complete networking solutions from layer 1-7, with advanced noledge of DWDM, L2, L3 protocols, including STP, BGP, OSPF, VLAN, MPLS, VPLS.
• Setup and configured Cisco Fabricpath on multiple Nexus 7010 routers providing a full redundancy on Layer 2.
• Extensive experience in configuring vPCs Nexus 7010 series routers in dual redundancy configuration through multi-hop BGP4, on multiple VDCs (Virtual Device Contexts).
• Implementation experience with Palo Alto Networks PA-5000, Cisco ASA and PIX Series enterprise firewalls in multiple DMZs environment to achieve a complete Unified Threat Management (UTM) solution.
• Completed detailed IP layout configuration plan based on Cisco Catalyst 6500 switches and Cisco 7600 series routers including configuration, management and allocation of private and global IP addresses.
• Designed Network Implementations and Transitional planning for migration of Cisco 6509 catalyst switch/router based network to Cisco Nexus 7000 platform. Created VDC’s and vPC’s optimization with their respective QoS in Nexus VDC’s.

Confidential, Pleasanton, CA

Lead Network Architect

Responsibilities:

• Experience with rule based policy (firewall) and UTM (Unified Threat Management) across Confidential &T’s Datacenters located in Ashburn, VA.
• Assumed responsibility for network design, security, architecture and administration of teh various networking hardware and software components, including, firewalls, Cisco WSA, Scan Safe and load balncers (F5 and Cisco) on teh client network.
• Interfaced with management and vendors to develop and implement new solutions particularly related to Cisco’s Fabricpath and Juniper’s QFabric based on TRILL standard (RFC 5556) to meet business requirements.
• Designed and managed teh rollout of critical network infrastructures to support Confidential &T’s Datacenters products and services, on both a strategic (long term) and tactical (immediate term) level.
• Team participation to ensure that Confidential &T datacenters network infrastructure was fully documented and performing as required by SLA guarantees by means of specific metrics and measurements.
• Designed large-scale network architecture with teh technology focus in LAN Architectures (IP Routing Architecture, Layer 2 Switching), WAN architectures (MPLS VPN, IPSEC VPN, and traditional VPN), WLAN architectures, optical (DWDM, SONET), and IPv6 and QoS architectures.
• Experience in designing and implementing solutions to support multi-site, high-availability, load-balanced infrastructure (active/active).
• Expert understanding of EIGRP, BGP, OSPF, MPLS, ATM, VPN, Ethernet, DSL, GetVPN, QoS, COS, SNMP, VoIP, VLANS, Subnetting, Supernetting, Trunking, and Virtual Networking.

Confidential, Fremont, CA

Technical Architect (CTO)

Responsibilities:

• Planed and executed major and complex changes to supported network and security devices, participated in planning and executing changes for enterprise ios upgrades for all supported devices
• Authored multiple Patents in teh IP and Storage related technologies with two patents granted.
• Provided leadership to customers’ team and offshore team for Cisco firewall to Checkpoint migrations.
• Designed innovative line of products for WAN monitoring and performance reporting devices particularly for TCP/IP suite of Protocols (Patents pending)
• As trusted advisor created and maintained TEMPeffective customer relationships so as to insure customer satisfaction related to cutting edge technologies in networking and security domains.
• Supervised and led teh development efforts on teh NetEye product line that measures QoS in real time for multi-million traffic Flows passing through teh Internet.

Confidential

Networking Architect

Responsibilities:

• Developed strategic architect policies to TEMPeffectively measure and report teh behavior of security technologies (Firewalls, IPS/IDS, VPN, etc) under extreme overloaded conditions and dynamic congestions
• Thoroughly analyzed teh root causes of teh congestions problems and teh factors leading up to bottleneck patterns of teh networking and security related protocols.
• Lead Architect for implementing IP-MPLS QoS related features in Cisco Gigabit Switch Routers (GSR 12000 Series).
• Developed detailed testing procedures to examine teh QoS related issues and their possible solutions over MPLS networks.
• Participated in business strategy development subsequently orchestrating teh development and employment of realizable technology strategies and solutions for beta customers

Confidential, Irvine, CA

Consultant

Responsibilities:

• Assumed a lead technical role to layout teh detailed migration plan for Confidential ’s core and IP networks into IP/MPLS based architect delivering specific QoS for diverse traffic types including VoIP.
• Configured Catalyst 6513 Switch as dedicated firewall and IPSec VPN system.
• Optimized teh forwarding of mission-critical traffic via quality of service (QoS) mechanisms.
• Secured teh Catalyst 6500 switch environment through Layer 3 Protocol Filtering, IP Permit Lists, and VACLs.
• Configured teh Catalyst 6500 switch to support multicast applications.
• Worked on implementing QoS technologies through DiffServ and IntServ.
• Extensive and in-depth experience in teh design architecture of BGP/MPLS based network as outlined in RFC 2547.
• Implemented OSPF v2 in Cisco’s 7600 and 12000 series routers as IGP to support fast convergence in MPLS based networks.
• Worked on traffic engineered E-LSPs, L-LSPs issues and individual MPLS based PHBs for different traffic types over Cisco 7600 and 12000 series platform.
• Implemented QoS using MPLS-TE, RSVP-TE, DiffServ, Constraint-based Routing OSPF (CSPF), CR-LDP and OSPF-TE.

Confidential, Costa Mesa, CA

Technical Sales Engineer

Responsibilities:

• Teh role of Technical Sales Engineer is to provide pre-sales support, design and implement complex LAN and WAN network architectures tailored to specific customer needs. Another dimension of dis role is to provide advanced technical support to engineering, sales and marketing teams.