From: route@monster.com
Sent: Friday, September 30, 2016 12:46 PM
To: hg@apeironinc.com
Subject: Please review this candidate for: CCVP SIP Cloud
This resume has been forwarded to
you at the request of Monster User xapeix03
|
|||||||
|
|||||||
|
|
|
||||||
|
||||||
|
Mychael A. Brown [Clearance: TS/SCI] 4806 Mary Beth BLVD, Clinton, MD 20735, 202-642-2911, mab21@hotmail.com Network Architect | Project manager | Sr.
Network Engineer | Ethical Hacker | Cyber Network Defense Serving as a Chief Architect, I shape
client’s vision and strategy developing highly advance or leading edge
technology solutions and concepts. My key responsibilities are to own the
technology strategy sessions with the client and delivers executive
presentations on IT strategies for multiple service technologies. Represent
the senior level of client interface responsible for creating the complex
designs and solutions. As an innovator, I develop the information technology
architecture and implementation of total system solutions to the
enterprise-wide systems. These complex solutions involve major business
processes used to manage the overall enterprise. Qualification Highlights:
Technology Expertise
Professional
Experience Cyber Network
Defense Architect Assured
Information Security (AIS), Licuthcum, MD •
Responsible
for architecture and reliability, installation or testing of applications,
systems, routers, firewalls, and switches for client, writing proposal and
project reviews. •
Cybersecurity
Engineer – Responsible RMF transition from DIACAP framework; bridging gaps
for compliance by establishing plans for corrective actions to mitigate risk. •
Daily
operations include: analyze, configure client bandwidth, firewall policies,
equipment, applications, and identify potential issues. •
Network
Engineer – Plan design and implement network upgrades/maintenance (i.e.,
firmware, patch management, CM approvals, etc.), approving member within
Change Management (CCB) and provide solutions to limit risk (i.e., IAVAs,
Antivirus, Incidents, etc.) with proven best practices approaches. •
Chief
Network Architect/Project Manager for the cyber defense network systems
architecture design, and functional planning and onsite installation of
continuous monitoring, incident handling, facilities cooling and power
upgrades, and provide improvements to sustain 99% network availability
project. •
Responsibilities
included project management, weekly performance review and recap, AGILE
development, recommendations on architecture and building architecture as
well as hardware, software, NOC layouts break/fix and installs. •
Negotiated
with vendors to obtain an upfront savings to the client of $1.6 Million.
•
Mange
a resource of 20 and vendors. Architected convergence of five internal
networks with an external community, (1) voice networks into VoIP, (2) Fiber
NIPRNET/SIPRNET and Private dual ISP (2) network: 7 U.S, 2 international.
Private and sneaker nets that had previously been separate networks are now
back-hauled to interconnect using attribute base access control (ABAC)
solution levering PKI/PIV card reader authentication to a Web store that
support queries and publish requests to a data store that is share with
external partners. •
Performed
data gathering, assessment of current network, analysis of traffic flow and
bandwidth requirements to meet growth, future additions of sites, and data
retention of metadata and/or different security domains. •
Mapped
topology of the existing network, constructed network conceptual, high-level
and low-level designs. •
Network
architecture and installation for various technologies such as Narrowband,
ATM, SONET, IP, xDSL, DWDM, FlexPod, VMWare, Solarwinds, Fortinet,
SourceFire, F5, Splunk, GitHub, JUNIPER, Cisco NEXUS, and other emerging
technologies. •
Created
security and project support documents such as: a scope of work, work
breakdown structure (WBS), RMF security controls (18 families – 135 documents)
SOPs, System Security Design (SSD), System Security Plan (SSP), SAR, Security
Compliance Traceability Matrix (SCTM) – 360+ security controls, and request
for proposal (RFP). Performed vendor negotiations, bid analysis, bid
evaluation, and contract award. Mondo, NY September 2013– April 2013 Sr
Network Manager Engineer Public Broadcasting Service (PBS),
Alexandria, VA •
Responsible
for maintaining PBS’s WAN (L3) hardware (routers, switches, firewalls, ACE,
WAN optimizers, NAC, IPS, Video Teleconferencing, VPN and PBSs as well as
network related services (DNS and DHCP) and network monitor tools. •
Plan,
design and implement network upgrades and changes by following Change
Management and best practices procedures •
Use
experience with upgrading code on network devices, create design documents,
network Visio diagrams, and peer review other designs as needed. •
Mentor
other junior NOC/SOC engineers to the processes, procedures, and Technologies
that are in use. •
Support
of Service Level Agreements (SLAs): Configure and activate patched and
unpatched ports, meeting all Service Level Agreements in place. •
Provide
add, move or change VLANs with strong working knowledge in switching (L2)
elements: VLAN's; trunking (802.1q and ISL); Aggregation (EtherChannel,
FastEtherchannel) and VOIP/SIP. •
Update
configuration and IOS software to network elements. •
Create,
review and update service request (Remedy and HD Authority) tickets according
to established Standard Operating Procedures (SOPs). •
Monitor
the network via SEIM, ArcSight, and other tools to take appropriate action
based on alerts and severity levels. •
Troubleshoot
wireless network issues by conducting surveys & checking signal
strengths, common windows, Linux/Unix platforms, network related issues and
administers ASDM for ASA 5580/5540 firewalls, Cisco ACS/VPN firewall
appliances, Cisco IPS systems and 6000/4000/3700 switches, ASR 1000 routers,
F5 BigIP (ASM/LTM/GTM) load balancers or ADC’s, Cisco VTC and TACACS
including Active Directory, DNS, DHCP, web, data filtering services. •
Escalate
outages/issues to Supervisors/Managers/ISPs/other groups/vendors by following
established SOPs or incident models. •
Support
the NOC and/or help desk setting with knowledge of TCP/IP, routers, fiber
optic cabling, understanding of the internet, Ethernet and have
troubleshooting. •
Configuring
IP and HSRP protocols on routers, activating/deactivation/testing
ports. •
Experience
with Opnet, Netflow, and database SQL statements for report generation. Projects: •
Designed
the initial proof of concept for F5 Application Delivery Controllers (ADC)
for compression, web acceleration, SSL, and load balancing services. •
Design
and implementation of IPv6 peering devices to dual ISPs with ARIN provide
prefix. •
Managed
the network hardware refresh of Cisco Catalyst to HP ProCurve •
Worked
with Verizon Busines, Zayo/AboveNet, and Datatility to ensure reliable
Internet connectivity and performance. Randstad Consultant July 2012 – September 2013 Senior
Network Engineer American Chemical Society (ACS),
Washington, DC •
Responsible
for maintaining ACS’s network hardware (routers, switches, firewalls, WAN
optimizers, NAC, IPS, Video Teleconferencing, VPN and ADC’s as well as
network related services (DNS and DHCP) and network monitor tools
(NetQos, Extrahop, Websense Triton, SevOne and Orion). •
Performed
ongoing network maintenance, diagnostics, administration and design for
1,000+ nodes for multiple environments. •
Supported
F5 technologies writing iRules and managing SSL certificates for public web
servers through VIPs. •
Troubleshooted
network related issues and administers ASA firewalls, VPN firewall
appliances, SourceFire IPS systems Nexus 7010/6000 switches, ASR 1000
routers, Riverbed WAN optimization, F5 BigIP (ASM/LTM/GTM) load balancers or
ADC’s, Cisco VTC and TACACS including Infoblox DNS, DHCP, web, data
filtering services. •
Worked
with ACS support staff to provide prompt resolution of staff network problems
and requests administers. •
Collaborated
with Windows, Storage, UNIX and application development teams to determine
technical requirements. •
Worked
with security teams to ensure that all network components are PCI compliant. •
Worked
with ISPs to ensure reliable Internet connectivity, and performance. Army Research Laboratory, Maryland November 2011
– July 2012 Network
Architect (STG) •
Responsible
for understanding, configuring Cisco (ASAs/ routers) and Juniper NSM
architecture, security and designing of computer networks, including local
area networks (LANs), wide area networks (WANs), the Internet, intranets,
voice systems and other data communications systems from a network
perspective. •
Creates
tests to evaluates and analyze network, Differentiated Services, routing
protocols, network capacity management , VLAN configuration, and IPv4, IPv6,
VoIP (SIP), SNMP, RMON protocols. •
Develop
technical network solutions through DNS, SMTP, HTTP, SCP, TFTP and SNMP
framework to conduct scheduled maintenance, implement or manage wireless
networks with site survey, access point configuration, or station
authentication schemes for CAC and RSA tokens. •
Determine
specific network hardware or software requirements to operate diverse
platforms (Cisco, Juniper, Brocade, UNIX, Windows, etc.), interfaces or
bandwidths (Ethernet, FE, GE, 10GE, etc.), or routine diagrams to outline
schema (Data flow, service hierarchy, etc.), OOB servers and single sign-on
(SSO) solutions. •
Learn
how to execute services or solutions using the appropriate technology by
attending conferences or sponsor vendor training sessions. Also study
technical journals to keep up with changes in technology and to ensure
Certification and Accreditation of site and enterprise packages are current
or up to date. ICF, Adelphi, MD August 2010 – May 2011 Information
System Security Manager (ICF International Inc) •
Managed
the implementation and development of an organization's IT security; •
Ensured
security policies, standards and procedures were established and enforced •
Coordinated
information security inspections, tests and reviews- conducted Risk
Management activities. Senior
Network Security Engineer (DRS) •
Development
of architectural strategy, including technology standardization and
modernization of enterprise, data center and disaster recovery network
infrastructures. •
Designed
and supported DNS, DHCP and IP address management; Infoblox, Blue Coat
networks; network security technologies including firewalls, IPSec and SSL
VPN, RADIUS/TACACS, network intrusion and detection, DDOS mitigation, network
access control and web content proxy/filtering. •
Enrolled
operational & engineering team members in strategy and business goals, by
interfacing at a technical level. •
R&D
advanced technologies to enhance & evolve core network infrastructure
used across systems and services. •
Stayed
current with developing technologies and predict impact of changing
technologies for next generation data centers, cloud computing including
technologies such as network virtualization, unified communications, IPv6,
and hands-on knowledge with Cisco Nexus products. •
Wrote
reference and/or solution architectures and strategic roadmaps for network
and network security technologies, various infrastructure initiatives for
operational segments, passing all industry tests and internal and external
audits. •
Investigated
and generated recommendations on key third-party components, such as network
and security infrastructure technologies, necessary to implement solutions. •
Solution
design of IP networks including technologies such as BGP and OSPF routing,
L2/L3 switching, server load balancing, QOS, MPLS, network security and
enterprise network monitoring. •
Evaluated
network designs to determine whether customer requirements are met
efficiently and effectively. •
Monitored
and analyzed network performance (Cisco NAM, Solarwinds, Spectrum, Scutlizer,
etc.) and data input/output reports to detect problems (, identify
inefficient use of computer resources, or perform capacity planning. •
Participated
in network technology upgrade or expansion projects, including installation
of hardware (Palo Alto, WebSense, Spirent, etc.) and software and integration
testing. NW
Systems
May 2010 – August 2010 Senior
WAN Technology Engineer •
Designed,
built, integrated and provided operational services to the first Marine Corps
Enterprise IT Services (MCEITS) Datacenter in Quantico VA that supports the
data processing requirements for the U.S. Marine Corps. •
Subject
Matter Expert (SME) across WAN/LAN technologies, services, and designs
utilizing best practice for switching/routing and topologies. •
Forensic
examiner of physical, application and file system level data hiding
techniques- EnCase and NetScout. •
Maintained
OSPF/BGP routing protocols, IP advertising/filtering/redistribution, Quality
of Service, IP multicast software/hardware device upgrades, LAN equipment
configurations. •
Assigned
IP addressing, variable length subnet masking for over 200 subnets. •
WAN
technology provisioning and configuration (i.e. MPLS, ATM, ISDN, Private
Line, Frame Relay) and WAN equipment configurations for bandwidth rates from
DSL to 1gb, as well as Metro-E connectivity from 10mb to 1gb of over 300
pieces of equipment including Cisco, Juniper, McAfee and NetScout. •
Provided
ITIL knowledge with the networking services for ACS, AAA, DHCP, BOOTP, DNS,
ICMP and SNMP Design and Support for network security technologies and
products (ASA, Checkpoint, Juniper SSL, Brocade networking equipment,
Bluecoat, F5 Load-balancing and NetScaler) SSL-VPN, IPSec, B2B, private line
and Dial-up TWD, Washington, DC September 2009 – May 2010 Senior
Enterprise Security Engineer •
Provided
engineering expertise in the system design, analysis, integration, testing,
and fielding of commercial-off-the-shelf (COTS) products in support of the
defense of the Global Information Grid; used systems engineering and
information security knowledge to support the engineering re-design and
enhancement of DoD networks; technical input for continuing refinement of
network defense capabilities and threat detection. •
Applied
technology to simplify implementation of security. Designed hands-on large
scale support, implementation of databases, data plans, directory solutions,
identity management solutions, data integration, web services solutions, and
net management solutions. •
Managed
and implemented the Web Services-based Service Oriented Architecture (SOA)
systems. •
Evaluated
and assessed government and commercial solutions to meet large scale needs
including the DISA Certification & Accreditation (C&A) activities
performing penetration testing, risk assessments, and assistance in the
resolution of accreditation issues. Responsible as an IAO for
developing and maintaining documentation for the DIACAP process, including:
the System Security Authorization Agreement (SSAA), Appendices, Standard
Operating Procedures (SOPs), and Concept of Operations (CONOPs), and
preparing security evaluation responses to Information Assurance
Vulnerability Alert (IAVA) Vulnerability Management System (VMS) inquiries. •
Participated
in daily interactions that build relationships with various customers to
assist in developing solutions to that meet the client’s requirements.
Ability to organize learns, teach and lead formal and informal teams
providing planning and guidance to other team members or partners. FRC, Virginia July 2008 – September 2009 Lead
Network Engineer •
Managed
and analyzed WAN connectivity for offices, buildings, LAN connectivity
(taclanes), switches and firewalls with utilities such as SNORT, CA
NSM/Spectrum, Solarwinds, HBSS, Firewall (Cisco ASA, HIPS, MARS), HP OpenView
(WAN), WhatsUpGold, and Content filters (WebSense), communications devices,
proxies and monitors the hardware to ensure it is properly maintained and
compliant. •
Provide
onsite engineering and technical support to a Security Operations Center and
Network Operations Center in response to connectivity problems,
detection, response, mitigation, and reporting of cyber threats affecting the
enterprise; Designs plans to backup over 20 terabytes of data;. Configure and
ship out replacement switches; Analyzed bandwidth, show documents of traffic
flow and troubleshoot Operating Systems (Windows and Linux), IBM, Dell, HP
Servers, NICS, TCP, Applications, Printers, and internetwork devices (Cisco
and Juniper). •
Last
project included a Windows 2008 build with a Citrix farm that support network
of 60 users configured for dedicated SQL DB, VMware SAN, Active directory,
DNS, DHCP, WSUS, SNORT, Symantec AV, and a print server. •
Created
a posture for the client to aggressively investigate cyber activities
pursuing information and the infrastructure as it relates to network
security. STG, Virginia May 2006 – July 2008 LAN/WAN
Engineer •
Senior
Engineer in the Network Operation Center- extensive experience with devices
and protocols such as Cisco, Juniper, and BGP. Identified solutions for
network anomaly detection, network configuration and change management, and
network auditing management. •
Developed
and supported installation plans, cutover plans, test plans, IP schema and
training for the operation and maintenance of servers and network
environments (data and voice). •
Troubleshot
probable source of malfunctions, coordinates problem resolution with users
and other support staff as necessary, follows up to ensure satisfaction. •
Managed
and monitored support for all TCP/IP various areas of support included
broadband and LAN connectivity, server and account provisioning, email and
Windows installations, configuration, patching system (IAVA) vulnerabilities,
upgrade software, report and document issues and Active Directory, and DHCP
network configurations. •
Traffic
study, monitoring, implement ARMY standards, IPS/IDS including Cisco firewall
changes or ACLs, configuring VPN and VLAN (schema) and the troubleshooting
and reporting of issues and resolutions to IT management. BAE Systems, Virginia June 2005 – May 2006 System Administrator •
Held
multifaceted responsibilities configuring systems, installed images (Windows
and Linux) and administer Cisco network infrastructure and PBX
telecommunications systems including Microsoft Exchange and Lotus Notes that
supported staff of 750 personnel. •
Established
the IT policies which for acceptable use of IT assets within the company.
Fulfilled administrative responsibilities including the addition and changes
to user desktop, email and PBX accounts, installed and configured servers
including RAID 1, 5 and 6 arrays in addition to facilitating backup &
restoration using Symantec and NT Utilities. •
Actively
provided desktop, configuration and phone support for software and hardware.
Managed broad range of full installation, cabling, upgrade, and troubleshoot
of Cisco routers, hubs and switches for new workspaces. Previous Experience, Virginia May 1997 –
September 2005 DCPSMath
Teacher/Director of Technical Aug 2001 to Sept 2005 Gateway Inc, Subject
Matter Expert (SME) Aug 1998 to June 2001 Phone support professional that directly
helped customers with tier-3 issues that were escalated and performed as
Gateway’s local product specialist training internal employees on trends and
latest technologies. Philip Morris USASystem
Administrator
May 1997 to Sept 1998 Worked at PM's Park 500 campus for the IS
department supporting the operation center and PC support. Worked with
Windows 95 deployments migrating from Windows 3.1 Education & Training B. S.& M. S. in Computer EngineeringUniv.
of Maryland University CollegeMD 2014 B.
S. in Computer
Science
Hampton
University
VA
1999 Proteus
Junos Intermediate Routing (JIR) TrainingMD 2012 Proteus Junos Troubleshooting in the NOC (JTNOC)
Training MD 2012 InfoSec Institute CISSP TrainingVA2012 ASM Certified Information Systems Security
Professional TrainingMD2005 Microsoft Certified System Engineer ASM Educational CenterMD2005 MobileArmor System Administrator STG/US ArmyVA2008 Cisco Certified Network Associate ASM Educational Center MD 2005 Project Manager Professional (PMP)***Expected
Completion Date (10/14)2014 |
|
|
||||||||
|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|