Summary

 

I have more than fourteen years of experience in Network and Security Network Engineering while working on various government and corporate networks.  I am enthusiastic about technology and look forward to providing support and guidance for a network that will yield a high return on investment.

 

 

Professional Experience

 

Huxley Associates – New York for T. Rowe. Price

May 2015 – July 2015 Firewall Engineer/Security Consultant

Assigned to team to administrate security stack

·  Palo Alto Firewall Tipping Point administration

·  Remedy Ticketing System operation for ticket management

·   administration and engineering

·   Used Splunk to search logs

 

TekSystems / Rovi – Tulsa OK.

Nov 2014 – February 2015 Firewall Engineer/Security Consultant

TekSystems was chosen to assist Rovi’s disaster recovery and business continuity initiative.  Goals included the assessment of the network, documentation of findings, and implementation of rule changes identified to resolve the findings discovered in the assessment.

·   A Team of 6 members was assembled to address an international network of 1700+ employees, 20 firewalls, multiple servers and domains of Rovi and its acquisitions.

·   The Vulnerability Assessment for the firewalls was conducted by me and another team member and included an extensive assessment using different tools such as Nipper studio and Solar Winds Firewall Security Manager.

·   After the assessment was completed a compilation and verification of the findings was necessary to facilitate implementation of the changes required to bring the firewalls current.  This required an expert level of knowledge for the Cisco ASA.

·   Estimated Project budget was $100,000.

 

 

HealthCare Dynamics International, Lanham, MD

April 2014 – June 2014

Security Engineer,

HCDI need an initial security evaluation of their network after being awarded a contract with the United States Department of Health and Human Services.

·   An initial security evaluation was performed that included a scanning of all of the network resources including the Servers, Firewalls, Routers and switches.

·   The findings were documented and a report submitted.  I was responsible for all of the work performed.

 

PolyCarpePlus Inc. Orlando, FL

Nov, 2013 – Present(Part time)

Web Developer and Network Security Engineer

A PHD Psychologist created a startup to provide mental health services for children in his local community.  I was asked to provide the infrastructure to allow him to focus on running his business while the IT infrastructure was created.

·   Developed Website and application to record confidential Patient information using (HTML, CSS, PHP, JavaScript, Gimp, Inkscape)

·   Built secure HIIPAA compliant CentOS distro web server

·   Conducted firewall assessment and rule set implementation

·   Built secure Postfix Mail Server

 

Washington DC Government, Washington DC

Sep 2012 – October 2013

Firewall Engineer

Conducted Firewall Engineering and maintenance for the District of Columbia.

•             Implemented firewall rule-set modifications as received from tickets in Remedy system
•             Provided augmentation of existing network configuration to accommodate growth
•             Created Perl and Bash scripts for automation of administrative tasks.
•             Created Perl and Bash scripts to assist team in completion of scheduled projects.
•             Conducted changes on Cisco ASA and Checkpoint Firewall devices.
•             Daily Palo Alto Firewall administration and configuration on PAN 5.0 and Pan 6.0

 

Softworld Technologies. Richmond, VA

Mar, 2012 – Nov 2012

Network & Security Engineer for HP Technology Group on the Federal Reserve Contract.

 

•             Created VPN connections with Federal Reserve business partners.
•             Implemented firewall rule-set modifications as received from tickets in Remedy system
•             Provided augmentation of existing network configuration to accommodate growth
•             Implemented configuration changes for load balancers.
•             Worked on Cisco ASA, Juniper SRX and Checkpoint Gaia firewalls.
•             Modified configuration and performed troubleshooting on F5 Load Balancers
•             General Troubleshooting

 

 

PlanIT Technologies Group. Richmond, VA

Nov, 2010 – Mar. 2012

Senior Network & Security Architect for RANK IT Reynolds Packaging and CSI group.

As the Senior Network and Security Architect for Reynolds Packaging I managed two teams responsible for serving a global company with remote datacenters in Alpharetta, GA and Carlstadt NJ. 

·   Performed High Level Engineering and Analysis on collapsed core architecture with remote LANs situated throughout the world.

·   Responsible for daily analysis of logs and management of access control lists for Cisco ASA firewall solutions, a Cisco FWSM architecture and Checkpoint firewalls.

·   Responsible for engineering and implementing security posture.

·   Reengineered Cisco 6509 Core architecture to resolve inherited issues related to latency and lack of predictability in the network.

·   Performed numerous upgrades and migrations related to LAN architecture for remote sites and Core data center.

·   Completed configurations and analysis related to BGP/OSPF routing protocols.

·   Performed as lead architect on an eVPN MPLS WAN network for Reynolds and CSI

·   Used Nagios for monitoring of networks.

·   Implemented Snort and Linux monitoring tools for remote networks.

·   Worked with Vendors to accomplish tasks.

·   Utilized existing Open source platform for monitoring of network resources that required scripting tools written in Bash and Perl.

 

 

Skyepoint Decisions, Washington DC

May, 2010 – Nov, 2010

Senior Firewall Engineer Consultant,

Senior Firewall Engineer/Internet Services Administrator for the Department of State.

·   Performed troubleshooting on Stonegate and Sidewinder firewalls

·   Responsible for daily analysis of logs.

·   Used scripting and web development tools to generate an intranet site that automated log analysis.

·   Built, configured, performed maintenance & monitoring of firewalls such as ASA and PIX.

 

Navstar, Tysons Corner VA

May, 2007 – May, 2010

Senior Firewall Engineer/Internet Services Administrator,

As a Senior Firewall Engineer/Internet Services Administrator for the Treasury Communications System (TCS) project I provided support to Treasury bureaus for all TCS provided Internet related services.  The TCS project in support of its efforts for the treasury acts as the Internet service provider for one of the largest private networks in the world.

·   Performed troubleshooting on Cisco ASA and Juniper Raptor firewalls.

·   Responsible for DNS and Bind implementation on Solaris UNIX platform.

·   Responsible for daily analysis of logs.

·   Used scripting and web development tools to generate an intranet site that automated log analysis.

·   Created tools using Perl and PHP for Administration related tasks.

·   Built, configured, performed maintenance & monitoring of firewalls [Symantec Enterprise Firewall, PIX, Checkpoint, Raptor & Velociraptor]DNS servers [BIND v.8 & 9], VPN gateways [SEF 7.04], email servers (mailhubs & relays)[sendmail & postfix],load balancers [F5 Big-IP], web servers [Apache, iPlanet & IIS], and Active Directory systems [LDAP over X.500].

·   Built and configured Cisco PIX firewalls for customers’ stateful inspection networks.

·   Created and maintained Visio network diagrams demonstrating interconnectivity inside the Dept. of Treasury's infrastructure.

·   Performed maintenance & updates to internal and external name servers [BIND v9.0]

·   Provided UNIX shell scripting solutions for automation of daily maintenance tasks, including the use of PERL, PHP and MySQL for log file manipulation & large binary file processing.

·   Performed troubleshooting of VPN access solutions through a multiple firewall configuration including load balancers

·   Developed dynamic database driven websites for the analysis of logs and the generation of reports and SNMP data.

·   Implemented VPN solutions using ASA firewalls and Cisco VPN concentrators with FINCEN BSA customers.

·   Implemented IRS upgrade to Cisco Pix with new Cisco ASA VPN firewalls.  During this migration over 140 different financial institutions that have VPN tunnels were migrated using scripting techniques to facilitate the transfer.

·   Designed Security upgrade to BSA Production and disaster recovery network for FINCEN

 

TEKSystems,

Nov 2006- Mar, 2007

Network Security Engineer II

While working on a six month contract at Sprint Nextel Communications I served as a team member responsible for the analysis of VPN, Firewall solutions and Border routers for Sprint customers.  

· Performed troubleshooting on Checkpoint, Juniper Netscreen and Cisco Pix firewall and VPN solutions for Managed Network Services infrastructure at Sprint.

· Performed troubleshooting on Cisco router and switch communication solutions

· Performed administration of network using Solaris UNIX platform.

· Performed design/support of security devices such as Checkpoint, Netscreen, PIX, Netcache, Arbor.

· Responsible for IDS technologies – Cisco IDS & Enterasys Dragon.

· Denial of Services (DoS) experience with Cisco IP Defender & Arbor Networks.

· Performed analysis and maintenance of VPN solutions from Nortel, Juniper, and Cisco.

· Performed analysis and maintenance of routing and switching technologies for Cisco & Juniper.

· Provided Internet, Network, Systems, wireless, and emerging technologies and solutions.

· Windows OS and applications (IIS, Exchange).

· UNIX OS and applications (Apache, MySQL, Sendmail).

· Provided limited hands-on incident response.

Smartronix,

Oct 2004-Nov 2006

Network Security Engineer

Responsible for Information Assurance through the documentation and recommendation of security measures to improve the security of the network infrastructure. Designed and implemented VPN, Firewall, and IDS solutions.  As Marine Corps Technical C&A Lead submitted packages that included all scans, documentation and configurations for review for DA’s office.

 

 

·   Marine Corps Technical Lead for C&A Packages on NMCI project.

·   Used Microsoft Baseline Security Analyzer and ST&E scripts to generate reports on server security.

·   Used Retina to scan and analyze routers, switches, Netscreen VPN devices and Windows 2K and 2K3 servers.

·   Performed C&A duties for Technical and Non Technical C&A responsibilities on NMCI network including SSAA and ST&E documentation.

·   Installed Windows 2003 Management servers and secured these architectures to maintain IAVA compliance according to DOD directives for administration of Cisco Pix and Juniper Netscreen Firewalls.

·   Performed and documented testing procedures of recommended solutions for firewall, VPN and management infrastructure.

·   Created Perl Scripts to assist in the implementation of Firewall and VPN solutions including rule conversion between vendor platforms and the automation of administrative tasks.

·   Served as member of Security team for Pentagon Renovation Project with responsibilities which included the administration, design and configuration of the IDS, Firewall and VPN solutions for both the Black and Red side.

·   Migrated legacy infrastructure and implemented DITSCAP compliance standards on new configurations.

·   Promoted to position of NMCI manager at the Chantilly office.

·   Performed installations and upgrades for NMCI remote sites.

·   Scanned equipment for security vulnerabilities with Retina or ISS scanning applications.

·   Used Packet Sniffing technologies such as Ethereal and TCP/IP Dump.

 

 

STG Inc,

Oct 2002-Oct 2004

Network Engineer / Analyst

I performed the design, implementation, and administration of enhancements to the existing network infrastructure.  Performed Engineering of communication solutions for the Scientific community and the analysis of network performance.

 

·   Worked on Team that designed, configured and administered a full mesh topology of Netscreen Firewalls and VPN solutions for remote networks.

·   Performed enhancements to network architecture at the Access and Distribution layers of the 4000+ node collapsed core architecture while working with OSPF, BGP, HSRP, EIGRP, IPX, AppleTalk and TCP/IP protocols.

·   Performed WAN troubleshooting of Frame Relay, BGP, PPP and remote access issues while working closely with the ISP.

·   Created scripts that monitored and updated network equipment using SNMP, Perl, shell scripting and Linux servers.

·   Created scripts that automated tasks for Help Desk Administrators using WSH, Dos and Perl.

·   Served as Administrator over Linux and Microsoft 2003 servers used to administrate the network resources.

·   Served as member of Microsoft Exchange implementation team during migration from Lotus Notes to Microsoft Exchange

·   Performed Army TNOSC and DITSCAP Order Compliance on firewalls and router access lists.

·   Assisted Help Desk, Linux and Windows Server teams in maintaining IAVA Compliance and troubleshooting using various tools such TCP Dump, Fluke and Ethereal for traffic analysis.

·   Performed and maintained documentation of network infrastructure and procedures.

·   Responsible for maintaining local hardware and software configurations of Cisco routers, switches, firewalls and VPN devices.

·   Responsible for configuration and design of Pix firewalls and Netscreen firewalls VPN solutions.

·   Served as Lead Engineer and Project Manager of solution for Flood Sensors Project.

·   Performed network engineering research, design, development, and other assignments in conformance with customer specifications.

·   Performed troubleshooting of remote access issues for multiple sites.

·   Served as lead engineer over campus-wide UPS issues.

·   Performed administration and troubleshooting of Linux management servers.

·   Performed maintenance & updates to internal and external name servers.

 

RSIS,

Sept 2000-Feb 2001

Help Desk Analyst

Responsibilities included Desktop support for network users in a 500+ node environment of Novell and Windows NT server platforms.

 

·   Member of team that doubled office productivity through the resolution of network and desktop issues.

·   Designed and distributed help desk surveys for the purpose of monitoring customer satisfaction.

·   Maintained databases of purchased equipment and software.

·   Created Lotus Notes applications for report generating.

·   Performed analysis and troubleshooting of Cisco switches.

 

 

Environmental Protection Agency,

Jan 2000-Oct 2000

ECO Intern

·   Lotus Notes IT consultant and web researcher for STI team members

·   Performed research and submitted reports as instructed for STI team members while working for the EPA

 

 

University of Michigan LS&A,

Jan 1997-Dec 1999

Work Study

·   Help Desk and Network Administrator of mixed network environment for the U of M campus. Performed troubleshooting on printers, Desktop applications, and Novell Servers as well as Windows NT servers.

·   Performed network troubleshooting of Cisco switches and Routers

 

 

Education

 

Kalamazoo Valley Community College; Kalamazoo, MI

·              Associates Degree in Science