Seeking a challenging position as a Network Architect, a Network and/or Firewall Engineer. 

 

·               Have a broad technical background with good knowledge of F5 LTM/GTM, Stonegate, Cisco ASA, and Palo Alto firewalls, wired/wireless networks, L2/L3 VPNs, Network Security, Network Management, IPv4/v6 Mobility, Cloud Computing, MBSE/SysML/UML modeling, DNS/DNSSEC, DHCP, IPv4/v6, TCP, MPLS, IP Routing (BGP/IS-IS/OSPF/RIP), Anycast, Multicast, IPsec/GRE/PPP/L2TP/PPTP, LAN/VLAN, RADIUS, ATM, Frame Relay, X25/PAD, MSPP, SONET, DWDM, T1/T3, ADSL/SDSL/IDSL/HDSL2, VoDSL, VoIP, H.323, SIP, GR303, SS7, CAS, WIMAX, SATCOM, SNMP, JUNOS, and Cisco IOS.

·               Attention to detail, analytical, innovative, a proven fast learner, and a solid team player.   Strengths include strategic planning, problem solving, multitasking, and technical writing. 

·               Passed the CCIE Routing and Switching written exam on June 2, 2008.

·               Having an interim Top Secret security clearance.

 

Department of State – Contractor (Skyepoint Decisions)

Network/Firewall/F5 Engineer          09/2014 – Present, DC

·               Support and enhance existing load balancer capabilities. Assist in new deployment with High-availability & Disaster Recovery considerations. Set up DevNet with GTMs, LTMs, and wide-area L2 subnet over two sites for testing.  Develop Standards, Plan for Customer Outreach in taking over all F5 devices with enterprise applications at DoS.

·               Designed and planned for the lab test of a secured enclave with Palo Alto Vsys (Virtual System) and Stonegate firewall for hosting the PTL (Personnel Tracking and Locator) platform. Engineered and documented a VPN solution for sharing tracking data with an external partner.

·               Planed, coordinated, and replaced fourteen end-of-life Stonegate firewall clusters. Rebuild the Policy/NAT/VPN rules for some. Troubleshoot and fix irregular cases. Responsible for the Stonegate firewall being relocated and rebuilt on the 10G Corporate Stack (internet gateway).

·               Engineered, installed, configured, and turned up three additional nodes for an IPsec VPN utilizing Cisco ASA devices for the management of perimeter security appliances.   Developed a transition plan that covered more than 100 (ESA/SMA, Stonegate, PAN/Panorama, A10, and F5) devices. 

Defense Information Systems Agency – Contractor (Soliel)

Senior Network/Systems Architect  10/2012 – 07/2014, Fort Meade MD

·               Served as a SME for the evaluation, design, and deployment of IPv6 service architecture and network management solutions. Responsibilities included and not limited to wired/wireless IPv6 requirements, best practices/strategies, network/service enhancements (for IAPNet, Internet COI, NIPRNet, SIPRNet/AWICS/SATCOM, Mobility Gateway, and Data Centers), component network /enterprise architecture, SysML/MBSE modeling, GIG network operations planning (DOSS/CDC), Service Performance/QoS/SLA (for voice and video), Multicast, L2/L3 MPLS VPNs, DISN network security controls and analytics,  IPv4/v6 mobility (LTE, WIFI, Mobility Gateway), and cloud computing (SDN/NFV).

Dept of Veterans Affairs – Contractor (NES, GDIT)

Lead IPv6 Network Engineer / IPv6 SME     4/2006 – 9/2012, Washington DC

·               Involved in addressing planning, network architecture, internet gateway architecture, risk assessment, routing plan, firewalling plan, network management, tests, training, technical demonstrations (pilots), and implement of an IPv6 transport infrastructure at VA.   Maintained an IPv6 Lab with internet2 connectivity at TechWorld of DC for concept/service testing and technology evaluations/trials.

Netcom, US Army – Contractor  (METI)

Network Security Engineer                            1/2006 – 3/2006,  Travel Full-Time

·               Worked in a small team (3) at US Army installation(s) to re-engineer the enterprise networks for risk mitigation and improved network security. Works involved implementing VLANs by defined classes, enhancing Routing Policies (ACLs), and permitting only the necessary network services.

DISA/JITC – Contractor (MSD)                

Test Engineer                                          3/2005 – 11/2005 ,  Indian Head, MD

·               Developed/executed the interoperability, conformance, and performance tests for IPv6 and IP QoS over Juniper and Cisco routers. Planned and jointly performed interoperability testing on the GIG-BE optical, electrical, and IP network infrastructure (Router/MSPP/ODXC/OTS). Developed the network service requirements (FRDv1) for the US Army DWDM project in Europe. Provided the preliminary test planning for VBrick MPEG-2/4 Encoder/Decoder (video & audio unicast/multicast over IP networks), DVB-RCS (Digital Video Broadcast - Return Channel System),  Marconi DWDM and MSPP,  and KOTnet (Korean Optical Transport Network).

 

AT&T Local Network Technologies

Tech/Svc Systems Engineer                                                    8/2000 – 12/2004,  Florham Park, NJ

·               WIMAX/Mesh Networking – Jointly evaluated the feasibility of this wireless/Radio technology for broadband Ethernet access and T1 circuit emulation service.

·               DISA’s GIG-BE 18-month Contract - Responsible for IP Multicast requirements for acquisition, evaluated the RFP responses, and lab tested of the IP Multicast protocols (IGMP, PIM-SM, PIM-SSM, MSDP, MVPN) in both intra and inter-domain scenarios over a high-capacity Juniper IP platform with advanced IP service features (IS-IS, BGP, MPLS, eVPN, QoS, & enhanced securities).

·               ADSL Service Development - Defined the architecture for both voice and data/video services.  Evaluated several DSLAMs (Adran, Samsung, Zhone, ADC, Siemens) and Line/ADSL portable test tools.   Conducted QoS and Voice/Video Quality testing.  Performed reliability/availability study.  Worked with Anymedia, Jetstream voice gateway, Integral Access PurePacketNode, Adtech,  Smartbits, Consultronics line simulators, Sage,  DBtelco, Cisco7500, & Redback SMS routers.

AT&T Data Communications Services

Senior Technical Staff Member                                           3/1995 – 7/2000,  Middletown, NJ

·               Worldnet VPN– Developed the architecture for global roaming via Infonet.  Performed feasibility study on IPASS/GRIC services for global access.  These were  launched AT&T services prior to the procurement of IBM Global network.

·               IAS/Remote Professional Service –  Lead engineer for  the delivery of 384 Kbps X.25 egress service.   Jointly re-engineered the IAS/RP platform for cost reduction and Y2K compliance. This required the integration of Dial, IP, RADIUS, X.25, Frame Relay, and ATM technologies for  end-to-end service architecture.   Lab tested the platform with Cisco routers (as CPE).

·               ACCUNet Packet Service –  Performed service planning, re-evaluated the transport reliability, and was part of a team in search of potential replacements for 1PSS switches.

AT&T Private-Line Services

Member of Technical Staff                                                              9/1989 – 2/1995,  Holmdel, NJ

·               ACCUNet Bandwidth Manager - Provided system requirements, specifications, DMOQ definitions, and service performance reports. Participated in BoD network design.  Conducted performance, root-cause, and data analyses.  

·               Transmission Services Planning - Provided technical support to ACCUNet T1.5 Service (transmitted over SONET and optical infrastructure). Jointly created the requirements for the NM2000 network management system. 

Norden Systems /United Technologies

Elec. Design Engineer                                                                         6/1986 – 5/1989, Nowalk, CT

·               Designed, Simulated, and analyzed DSP algorithms for a Multi-Mode Radar System.   Devised tests and updated system specifications for High Resolution Ground Map, Doppler Beam Sharpening Ground Map, Ground Moving Target Indication, Moving Target Tracking and Rotating Antenna.

 

·               Master of Technology Mgt, 3.77 GPA - 06/2000, Stevens Institute of Technology, Hoboken, NJ

·               MS in Electrical Engineering,  3.67 GPA - 09/1988, Polytechnic University, Westchester, NY

·               BS in E.E. - Computer Option, 3.63 GPA - 06/1986, Polytechnic Institute of NY,  Brooklyn, NY

 

·               A Technical solution for Reconfigurable Integrated Network Access (RINA) to dynamically reconfigure the access facility for accessing to Voice, Packet, and Private-Line services.