From: route@monster.com
Sent: Friday, September 30, 2016 12:46 PM
To: hg@apeironinc.com
Subject: Please review this candidate for: CCVP SIP Cloud
This resume has been forwarded to
you at the request of Monster User xapeix03
|
|||||||
|
|||||||
|
|
|
||||||
|
||||||
|
WEI XU xwusa@yahoo.comUS Citizen Secret
Clearance202-258-8291(C) PROFESSIONAL
CONTRIBUTIONS
A contributor in delivering cutting-edge
solutions and IT modernizations with my 18-years highly motivated experiences
of technology vision, business strategy, strong leadership, analytical
thinking, initiative innovation, and versatile solutions in-depth hands-on
engineering skills at the 4 areas of: network infrastructure,
security architecture, software applications, and storage
provisioning for high performance services, automated configurations,
and virtual infrastructure creations with highly scalable intelligence,
virtual cloud data centers, institutional engineering process, and business
logic transformation. TRACK
RECORDS
1.
Network expert
Designed
and engineered thousands of software defined wireline and wireless virtual
cloud networks in government, military, finance, and enterprise organizations
since 2000. 2.
Data Center Expert
Automated
dozens of virtual data centers secure and cloud networks since 2002. 3.
Software Expert
Wrote
numerous apps/scripts using Java, .Net, XML, Web, and database service since
1994. 4.
VPN Expert
Solely
implemented the well-known first commercial VPN
at IT industry in 1994. 5.
Firewall Kernel
Expert
Developed
the well-known #1 Application Firewall
(Gauntlet Firewall) during 1994-1998. 6.
TCP/IP Protocol
Expert
Created
the third-generation transparency firewall and PKI encryptions in 1994. 7.
Storage Provision
Expert
Provisioned
block-level IOPS and file-level big data with active/active clustering since
2009. 8.
Startup Entrepreneur
Founded
Virtumanity Inc, next
generation of virtual computing services since 2012. Founded
Spontaneous Networks, secure
networks on-demand for enterprise and Cloud services. PUBLIC
AWARDS
·
Top-score
Firewall by Info Word ·
Top Performer
by Data Communications ·
Best Firewall
and VPN by Networking Computing, ·
Best Firewall
Security by Network World ·
The #1 VPN
Firewalls by PC magazine. ·
A top 15
startup by RedHerring Communications,
Anthony Perkins, Chairman & Editor in Chief, EDUCATION:
Applied PHYSICS, ELECTRICAL, and COMPUTER engineering
1.
The 2nd M.S.
Electrical and Computer Engineering, University
of Massachusetts, USA in 6/1994 2.
The 1st M.S. Applied
Physics, Tongji University,
Shanghai, PRC in 5/1987 3.
B.S. Theoretical Physics, Ocean
University of China, Qingdao, PRC CAREER
EXPERIENCES
12/2012 – present, Principle Solution Architect
Design and develop virtualization and
rationalization solutions transforming dynamic business challenges into the cutting-edge
Active/Active datacenter infrastructure capable of enterprise Cloud services
at highly effective and reliable engineering processes. Chief Architect at
Verizon Communications in Government Program Management - Designed
and engineering cutting-edge Active/Active datacenters
supporting government department, , private LTE security, and BYOD (iPAD,
SmartPhone, iMAC) services. - Designed
and engineering the hierarchy DMVPN
infrastructure with multiple virtual cloud networks
crossing all States, supporting cloud services, classified networks, guest
networks, Wifi security, vMotion, NSX, Nexus 7K/5K,
and storage networks. - Integrated
Active/Active
datacenters with MTIPS, AWS, ExpressRouter, Office 365, private
LTE, and zone-based infrastructure. - Deployed
multiple technologies of Checkpoint, F5, Palo Alto, Solarwinds, Websense,
Cisco Nexus, MDM AirWatch, Oracle, HP, Forescout NAC, NetApp, VMWare
ESXi/NSX/vSphare, - Large
Scale Storage Area Network Systems for data block and file services, and
more. - Provide
guidance to the engineering framework of project management and process
controls. Consulting Services
at United States Agency for International Development (USAID) - Developed
virtual secure networks overlay on top of one physical topology for wireless
BYOD and guest networks. - Scripted
software to deep analysis of all data center servers with VMWare 5.x, high
availability, and RTO/RPO solutions, designed artifacts for Enterprise
Disaster Recovery. - Detailed
design of Public Key Infrastructure (PKI) for network topology of non-person
entity. - Upgraded
system design for international mission sites with consolidation solutions of
all-in-one box for infrastructure, DMVPN, local storage optimization,
Firewall and NDIS security, WAN acceleration, and VoIP survivability. - Developed
plan and designed transition to IPv6, including the infrastructure of web
servers, mail servers, domain name servers, WAN ISP, monitoring and
management tools. - Reviewed
and upgraded network and system monitoring solutions with Riverbed
AppResponse, Solarwinds, and Splunk - Performed
deep analysis of Oracle server performance, troubleshooting, optimization,
and tuning. Consulting Services
at DOD U.S Army - Designed
programmable framework for DoD Security Technical Implementation Guide
(STIG). - Implementing
Ruby-Puppet installation with RHEV-m 3.x for integration of app packages. - Developing
STIG packages for FWs, Apache, mySQL, and EDB/PostgreSQL for RHEV v5/6. - Integrated
Elastix/Aastry/Cisco SIP services as a part of unified communication
solutions. 8/2011 – 1/2013, Chief Architect
KForce, 12011 Sunset
Hills Rd, STE450, Reston, Virginia 20190
Responsible
for defining engineering artifacts of the infrastructure and software systems
for large and mission critical application systems in the financial services.
Provided the security, network, architecture, and engineering solutions for
virtual Data Center modernization. Highlights - Define,
design, and engineering the entire Disaster Recovery Data Center within 6
months including network infrastructure (Nexus 7K/5K), virtual security
(VSX/VIPRION), VMWare 4.x, and virtual storage (NetApp/EMC/Brocade) - Developed
engineering artifacts to modernize data center networks with the innovative
virtual DC concepts - Coordinated
technology solutions with stockholders of business, architecture, security,
facility, and operations - Designed
security of WLAN for BYOD, guest, and trusted networks (Cisco AP/Controller,
NAC, and ASA). - Helped
Terremark and CSC for complex Cloud design, engineering, and customization. 09/2010 – 08/2011,
Chief Technologist/Architect,
US Department of Transportation, 1200
New Jersey Ave, SE Washington, DC 20590, USA ActioNet, Inc. 2600 Park Tower Drive, Suite 1000, Vienna VA
22180 Provide
strategic visions, architecture design, and business case formulations for
the numerous projects of the IT shared service infrastructure featuring
software-defined automation of virtual computing clouds, secure networking
infrastructure, virtual storage architecture, and control process automation
for supporting more than 12,000 employees plus 350+ agencies. Highlights - Bridged
technology gaps and solution guidance for numerous projects and
infrastructure enhancements - Provisioned
Cloud Block/File storage for Exchange 2010, Virtual Desktops, SharePoint
2010, VMWare 4/5, and others - Developed
CMDB software remediation of monitoring alerts, auditing, ticketing, and
self-healing processes - Standardized
enterprise agile project frameworks supporting complex and large-scale
engineering projects - Defined
wireless upgrade for wire-line closet consolidation (upgrade 200 Cisco 1240AP
with C6905 controller) - Helped
Verizon Terremark for complex cloud design, engineering, and customization 4/2006-09/2010, Senior Network Architect
Electronic Systems, Northrop Grumman,
7040 Troy Hill, Elkridge, MD 21075, USA Worked as a network group leader with
hands-on implementing DotNet/Java XML applications automating engineering,
development, and deployment of large network infrastructures dynamically,
including architectural framework, and engineering life cycle activities by
programmable transformation of carrier-class networks into a robotic
automated install procedure scaled to create one dozen network operation
centers, two data centers, and more than 670+ remote offices with thousands
of networking devices, security appliances, and applications from Cisco, MS
Windows, Motorola, Harris, HP, and the others. Highlights - Designed
advanced security with multi-zone defense system, DMVPN, and adaptive
securities - Programmed
(Java and DotNet) auto-deployment (zero engineering specialists) for field
installation over 670+ remote sites at nation-wide locations. - Provisioned
storage optimization for IBM Domino Email servers integrated with Solaris
Clusters - Designed
and developed multicast map tracking system over IP/MPLS with satellite
networks - Implemented
software defined EEM QoS for VoIP and video over MPLS EoSDH Wireless WAN - Deployed
Harris long-range Wireless integrated with Motorola tactical broadband mobile
radio. - Integrated
Nortel PBX with UCS/UCE(C3900) with Juniper CTP Circuit to Packet migration. - Developed
Windows Active Directory, Emails, DNS, DHCP, PKI Certificate Servers, and
more - Programmed
realtime network monitoring, auto-ticketing, traffic analyzer, and security
auditing 1/1999-4/2006, Chief Technology Officer (Software Defined
Secure Could Networking)
Spontaneous Networks, Inc. 6903 Rockledge Dr.
Bethesda, MD 20817, USA Created innovative concepts, drove
marketing strategies, and conducted development activities for an open and
non-intrusive software product that would allow network service
infrastructures being defined, prototyped, delivered, managed, switched, and
transformed by clicking a mouse button. “Spontaneous Networks, among the top 15
companies, represents one of the strongest early stage start-ups in security
infrastructure coming out of the East Coast” by Anthony Perkins, Chairman
& Editor in Chief, RedHerring Communications, in 2001. Highlights - Network
appliances on Intel’s Network Processor with Linux kernel and embedded Lynx - Virtual
GigEthernet switching controllers for extremely high-availability (HA)
service infrastructures of CISCO networks for multiple-path remote call
centers and B2B financial networks with cluster switches and WAN
concentrators (BGP, OSPF, EIGRP, and GLBP protocols) - On
demand integration of virtual Firewall, adaptive IDS, integrated with CISCO
IOS FW, VPN/IDS routers, Checkpoint Firewalls, PIX 515/525 Firewalls, IPS
4200 Sensors, Wireless Access Points, ISS, and NFR - Heartbeat
HA of N+1 failover redundant software for multi-path hosting center disaster
recovery - Domain
service integration with virtualized authentications, integrated with JCSI
Kerberos, JAAS, RSA ACE Server, SecureID, CISCO Security ACS, and LDAP/Active
Directory. - Java
management services for messaging, caching, Swing, and XML/XSL/DTD
client-server with Apache Tomcat, relational databases, object dashboard,
multi-administration privileges, and others. - Software
integration of IT auditing and monitoring solutions for CISCOWorks,
Solarwinds, BMC, MRTG, Whatsup, F5 clusters, database servers, and
fiber-channel systems. - Designed
per-customer virtualized networks in the NOC infrastructures with
Cisco/Juniper MPLS, router, switch, FW, VPN, and IPS. - Virtual
VoIP hosting with PRI, IP PBX gateways, and VoIP survivable solutions - Programmed
Java applications for VoIP billing automation and report analysis - Developed
automated installation scripts for field staff eliminated deployment
engineers - Programmed
MS-office XML-embedded documents for automated assessment database archiving,
certification and accreditation process 6/1994-12/1998, Senior Software Engineer
Trusted Information
Systems, Rockville, MD, USA Led by Marcus Ranum, developed the industry
#1 well-known Firewall: Gauntlet
Firewall. Researched the IP Security and developed
the industry #1 well-known VPN product. Network Associates acquired this Company at
$350 million in 1998. Highlights - One
of the two key individuals developed the well-known Gauntlet Firewall and
FWTK in 1994. (TCP/IP, C, C++, Firewall, Device Drivers for Solaris, HP
UX, IBM AIX, BSD, BSDI, FreeBSD.) - Implemented
an entire VPN product, known as the first commercial VPN in this industry in
1994. - Extended
Firewall transparent features in the kernels of Sun OS, Solaris, BSD, BSDI,
and FreeBSD) - Developed
the Encryption Key Recovery of the IP stack in 1996. - Pineered
the VPN Vendor Workshops during 1995 – 1998. - SKILL
HIGHLIGHTS Cloud Virtualization:
Cloud computing with VMWare NSX, RHEV 5, NetApp, EMC, Cisco Nexus Nexus
7K/5K/2K, Checkpoint VSX, F5 VIPRION, VDI (VMware View, and Citrix),
Amazon Web Services, virtual servers (AIX, Linux, Solaris, and Windows),
storage integration, MS/Linux server cluster, Disaster Recovery, and high
performance scalable networks, IBM P7-740, Sun T4/T2K, HP c7000, HP DL380
G5/G7, HP C7000, Riverbed, AppResponse, Bigmon, and others. Networking Infrastructure:
Cisco ASR 1K and ISR 3900/2800/2900/6500/3700 routers, voice over IP (VoIP),
SRST, auditing and Tellabs 6340 EoDH, QoS (CISCO, Tellabs, and Packeteer),
WAN MPLS HA and load balancing with BGP, OSPF, HSRP, EIGRP, GLBP, VRF, GRE,
MPLS, OER, vPC, OTV, FCoE, SLA, F5 Big-IP LTM/GTM on Viprion 2400/2100, and
others. Security Architecture:
risk assessment, virus, virtual firewall (CISCO IOS & ASA Firewall,
Checkpoint VSX, and others), intrusion detect system (IDS: ISS RealSecure, IPS,
ASA, Symantec, and others), Forescout NAC, penetration methodology (ISS
Internet Scanner, Sara, NMAP, Legion, KisMAC, Nessus, and others), Virtual
Private Networks (VPN and PKI), SecureID, RADIUS, Kerberos, Active Directory
and LDAP, encryptions (SSL, SSH, Socks 5, DMVPN, IPSec), and security
algorithms (PKI, AES, DES, 3DES, SHA1, MD5, RC4, RSA), ACS AAA, NAT, etc. Windows Applications:
Microsoft Solutions: Azure, Active Directory, PKI Certificate Servers (CA),
Exchange server 2010, SharePoint 2010, MS/Oracle/openSQL/mySQL database
servers, Visual Studio 2008, MS Office (C#/VB WPF development), SharePoint,
Windows XP/7 and others Software Development:
TCP/IP protocols, operation systems (Sun, Solaris, HP, IBM, BSD/BSDI, Linux,
AIX and embedded OS), kernel, Network Management Systems (NMS), embedded
network processors, web applications, router/switch software, firewall and
VPN appliances with DotNET C, C++, C#, VB/shell/perl scripts, Java, EJBs,
JDBC, Swing, XML/XSL/DTD, Java Server Page, Apache Tomcat, TogetherJ,
Rational Software & Unified Modeling Language, MS Office applications, MS
Visual Studio, NetBeans, JDeveloper Studio, and others. Storage Cluster:
SAN (FC, FCoE, and iSCSI), NAS (NFS, pNFS, and CIF), and VMFS/DFS protocols,
IOPS provisioning for Exchange 2010 and Virtual Desktop Infrastructure; EMC
(VNX7500, VPLEX, DD990, VMAX, Atmos, unishere), NetApp (FAS 2240/3200/6200,
OnTap); Big Data (Hadoop, NOSQL). Quality Assurance:
Layer 2 protocol analysis for TDM, SONET/SDH, DSL, Ethernet, Faber, Copper,
layer 3-4 analysis for TCP/UDP/IP/IGMP/ICMP, application analysis for
latency, jitter, QoS, and VoIP MOS. Tools: SmartBits, JDSU/Actema (FST2300,
SmartClass, PVA-1000 VoIP Suite), IXIA (lxChariot), WireShark, Riverbed
OPNet, HP Openview, Ciscoworks, Solarwinds, MRTG, FWAnalog, FireGen, What’s
up, and etc. |
|
|
||||||||
|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|