Robert D. Bromley V
2111 Pleasantville
Road ² Fallston, MD
21047
Cell: 410-688-3101 ² thebrom@gmail.com
senior Network Security engineer
Enterprise
Security / LAN/WAN Design & Architecture / Disaster Recovery
~
Active DoD TS/SCI Clearance ~
Certified IT professional offering more
than 20 years of hands-on experience and a record of achievement designing,
supporting, troubleshooting, installing, securing and repairing
mission-critical systems and networks.
· Recognized for deep and broad hands-on experience
designing, implementing and supporting complex networks, server, email,
LAN/WAN connections, disaster recovery/backup, and security solutions.
· Noted for ability to work in stressful situations and
aggressive deadlines quickly resolving complex issues and ensuring continuity
of services.
· Maintain current knowledge of technology developments to
plan for upgrades and make critical business decisions.
· Solid reputation for root-cause analysis with a
collaborative spirit and a passion for seeing a quality job through to
completion.
· Organized take-charge professional, exceptional
follow-through abilities, sees projects to successful conclusion maximizing
customer satisfaction.
· Excellent communication skills, able to take intimidating,
highly technical, and complex information and translate it into easily
understood information that empowers users at all organization levels.
· Personal strengths include excellent work ethic,
broad-based knowledge, flexibility, and organization skills.
TECHNICAL SKILLS
|
Certifications
&
Education:
|
CCSP-2007, ISSP-INFOSEC,
CQS-CFWS, CQS-CIPSS, CQS-CISecS, CQS-IDSS, CQS-VPNS, 4011REC,
4013REC, KnowledgeNet
CCIE
Security-Currently
Pursuing, InternetworkExpert.com
CCNP-2010, Skillsoft.com
CCNA-2000, Higher Education
and Applied Technology (HEAT) Center
MCSE-1999, University of
Maryland Baltimore County (UMBC)
Cybersecurity: University of Maryland University College,
Adelphia, MD
Information
Technology: Edison State College, Ft Myers, FL
Mechanical
Engineering: Harford Community College, Bel Air,
MD
|
|
Operating
Systems:
|
Windows
Enterprise Server 2003/2000/NT4, Windows 3.11/95/98, DOS, Cisco IOS (all
versions), Cisco PIX OS (all versions), Microsoft Virtual Server, VM Ware
(ESX, GSX)
|
|
Methodologies:
|
Clustering,
global and local load-balancing, content switching (Layer 7 switching),
VLANs,
|
|
Software:
|
Cisco
Secure Access Control Server (CSACS), Veritas Storage Replicator, Veritas
Storage Resource Management, Veritas Backup Exec (all versions), Exchange
Server 2003/2000/5.5, SQL Server 7/2000/2005, Solarwinds Network Management,
HP Array Configuration Software
|
|
Hardware:
|
Cisco
ASA 55xx, Cisco PIX Firewalls 5xx, Fortinet-Fortigate Firewalls, Juniper
SRX, Cisco Routers (1700/2600/3600/7200) and Catalyst and IOS Switches
(1900/2900/3500/3700/4500/6500), Cisco Intrusion Prevention-IPS/IDS 42xx,
Cisco MARS Appliances (Monitoring, Analysis, and Response System), F5 BIG
IP LTM/GTM, Cisco CSS (all), Cisco GSS (all), Cisco Local and Distributed
Directors, Citrix Netscalers, Checkpoint NG, NGX, Disk systems--Network
Attached Storage (NAS)/Direct Attached Storage (DAS), HP and Dell Storage
Arrays
|
|
Tools:
|
Kiwi
Syslog, Ethereal Network Packet Sniffer/Protocol Analyzer, Fluke.
|
Robert D.
Bromley V ● Page 2 ● thebrom@gmail.com
PROFESSIONAL EXPERIENCE
CACI International, Inc ² Aberdeen Proving Ground, MD2010-Present
Provides
professional services and IT solutions needed to prevail in the defense,
intelligence, homeland security, and federal civilian government arenas.
Information systems security Engineer, Lead
Pivotal
member of a QRC engineering team to design and secure the network for a QRC
program called Relevant ISR to the Tactical Edge (RITE 3G)
§ Designed, implemented, and managed the core network for a
3G cellular network being used on the Last Tactical Mile Pilot Program in
theater to pass biometric data from 3G cellular handhelds on a private 3G
network to the CENTCOM FORWARD SERVER-biometric database enabling real-time
fingerprint and latent print matching on the tactical edge.
§ Designed and implemented a roaming capability for 3G
mobiles to roam from one fixed site to another using backhaul network radios
to pass traffic on the fly with no user interaction using OSPF and NAT on the
mobile and fixed sites ensuring traffic can reach the war fighters on the edge.
§ Directly responsible for bringing the NIPR network to the
tactical edge using 3G mobile nodes on MATVs using Cisco ASA VPNs to
authenticate and protect data passing into the NIPR network.
§ Create relevant test plans to troubleshoot and resolve
issues that arise in subsystem components, to include handheld biometric
devices (SEEKS), 3G Cellular Base Stations (Harris-(Knighthawk), and backhaul
radios (Rockwell Collins-QNT).
§ Assist the government IA Lead in documenting and securing
system components as they relate to information assurance requirements set
forth by CENTCOM.
US Army, Aberdeen Test Center ² Aberdeen Proving Ground, MD2010
Direct fire
testing center
Senior Network Engineer
Recruited
to provide a high level of routing and switching expertise and independently
oversee numerous highly visible projects.
§ Configured Cisco 2800 series routers with Cisco NAM
modules to provide historical and real-time data for robotic test course using
wireless networks. Finished project in 80% less time than budgeted (1 month
versus scheduled 5 months).
§ Overseeing Network Characterization project to develop a
baseline of normal network traffic at 6 test ranges that test robots on a
3-mile test track. Solution consists of a Cisco ISR branch router that can be
disconnected from the ATC LAN while the test range conducts tests and still
provide control of wireless access points while logging traffic for later
analysis.
§ Designed new solution using Cisco ASA active/active
clusters and BGP to handle routing from core to DREN (Defense Research and
Engineering Network). Solution provided firewall redundancy should hardware
fail and redundant routes in case of link failure. Also increased performance
by load balancing both links.
Verizon Business, Inc ² Beltsville, MD2009-2010
Leading provider
of IT, Communications, Security & Network Solutions
Specialist engineer, Firewalls and load balancing
Pivotal member of the 24/7 tier III
network technical operations group that rapidly solves client issues on
thousands of firewalls, load balancers, routers, and switches across the
world in hundreds of locations throughout the USA, Europe, and Asia.
§ Resolved hundreds of security issues and created
configurations for premier clients including Budweiser, Nestle, American
Express, Novartis, and Accenture, hosted within premier, state-of-the-art
data center.
§ Resolved connectivity and security issues related to Cisco
PIX, FWSM, ASA, Checkpoint NG and NGX firewalls, Cisco routers and switches,
and Juniper SRX.
§ Designed and implemented all firewalls and load balancers
for new and existing clients.
§ Resolved load balancing issues on all F5 BIG IP, and Cisco
CSS, GSS, Local Directors, Distributed Directors, and Citrix
Netscalers.
§ Troubleshooted VPNs including site-to-site, Checkpoint
Securemote, and Cisco remote access.
§ Provided clients technical advice with regard to firewall,
network, and load balancing configurations.
§ Documented all implementations, and troubleshooting
resolutions to adhere to SAS 70 certification requirements.
Robert D.
Bromley V ● Page 3 ● thebrom@gmail.com
PROFESSIONAL EXPERIENCE
Old Mutual Financial Network (OMFN) ² Baltimore, MD2007-2009
Delivers a diverse portfolio of annuities and life
insurance products via an established group of master general agents.
Senior Security and Network Engineer
Assisted in leading 11-member support
staff in design, implementation, and maintenance of 150+ servers, network
security, routing and switching.
§ Directly responsible for all network security related
duties throughout the company’s locations within the continental U.S. to
include: Boston, Denver, New York, Atlanta, and Lincoln, Nebraska.
§ Assisted engineers in migration of active directory to a
single root domain with multiple child domains throughout the company’s
worldwide presence to improve security and single sign-on abilities.
§ Directly responsible for all internal routing and
switching designs on a collapsed-core architecture including new
implementations, and maintenance to improve network speed, routing issues,
and VLAN management.
§ Implemented Fortigate firewalls-unified threat management
(IPS, Firewall, URL filtering, anti-virus, and spam prevention) to replace
all Nokia Checkpoint firewalls.
SM Consulting, Inc. ² Linthicum, MD2003 - 2007
Provides Federal,
State and Local governments, and Fortune 1000 companies with contract
services in Linguistics, Intelligence, IT, Management Consulting, Business
Process Outsourcing, Training, and Logistics.
Senior
Network Engineer
Pivotal leader of 3-member support team
managing all day-to-day IT operations across 3 Company Divisions and 7
offices. Monitor all mission-critical services and quickly resolve all issues
to ensure no disruptions to production. Manage design development and
implementation for all technical projects.
§ Spearheaded company’s technology growth from 2-office,
40-user organization to 450+ users in 3 divisions across 7 locations in under
4 years.
§ Built and maintained software development environment of
HP and Dell hardware servers and Microsoft virtual servers for application
services group to write commercial applications using .Net, SQL, and other
Microsoft technologies.
§ Designed bulletproof backup system for mission-critical
data and replicated it off site in real-time to separate geographic location
to avoid disasters from disrupting business.
§ Improved productivity by designing, implementing, and
maintaining the site-to-site VPN tunnels between four offices and one
commercial client that provide reliable connectivity to corporate network.
§ Ensured Federal compliance by designing and managing mail
archiving system based on government retention guidelines that backs up all
incoming and outbound mail for 3 years.
§ Assisted legal team with forensic recovery of hard drive
and email information for prosecution of data theft violators.
§ Upgraded corporate email system from Microsoft Exchange
5.5 to Exchange 2003, and migrated 400+ users on time, on budget, and with
zero business disruptions.
§ Managed multi-million-dollar Federal Division project and
with less than 24 hours notice on a Friday, procured, and setup
25-workstation dual server network ready for use on Monday morning at 8:00am.
Automatic
Data Processing (ADP) ² Baltimore, MD2001 - 2003
Global provider of
transaction processing systems, desktop productivity applications, and
investor communication services.
Senior
Network Engineer, ADP Brokerage Services
Directly supported on-site personnel and
network support including 80+ server farm used by clients to design and print
their financial documents including prospectuses, quarterly reports, 401k
statements, enrollment packets, etc.
§ Facilitated increased uptime during hardware failures,
patch maintenance, and server reboots by designing, implementing, and
managing clustered server farm of Microsoft Exchange and Microsoft SQL
clustered servers.
§ Designed, implemented, and managed custom production web
server farm with network load balancing solution using F5 BIG IP Traffic
Management/Load Balancing Switch to route traffic to lesser-utilized servers
during high traffic periods.
§ Praised by IT Director for achieving 99.999% system uptime
for 3 consecutive years and avoiding all major virus outbreaks including
MSBlaster, Love Bug, Nimda, and Code Red.
Positions from 1993-2001 removed for brevity,
available upon request.