From: route@monster.com
Sent: Thursday, November 10, 2016 3:24 PM
To: hg@apeironinc.com
Subject: Please review this candidate for: Network Engineer TS SCI
This resume has been forwarded to
you at the request of Monster User xapeix03
|
|||||||
|
|||||||
|
|
|
||||||
|
||||||
|
Thomas A. Perron 2803 New Providence
Ct Falls Church, VA
22042 Tel. 571.305.0480 TS SCI with Counter
Intelligence (CI) Polygraph thomas.perron@gmail.com Some highlights: ·
CBS Corporation –
Principal DDI Consultant. DHCP, IPAM migrations – New York City ·
Visa Card
International – DDI SME specializing in VitalQIP Appliance Manager and
integration of BIND, AD to existing global architecture. All
advanced DDI engineering, Python scripting, migrations, upgrades, DNSSEC, DNS
Anycast provisioning ·
Symantec
Corporation. Infoblox SME and Automation Engineer with focus on IPAM,
DDI, Systems delivery; BGP Anycast, complex Infoblox DR and DNS deployments
involving greater than 50 nodes, physical infrastructure build-out incl HA
pairing, IPMI/LOM testing, API scripting, Infoblox Command Line Interface
with Python/Perl ·
Capital One
Bank. Infoblox SME. DNS/IPAM/DHCP, Data Center Migration
Automation SME; Migration expert ·
FBI BlueCat DDI
engineering / IP Addressing Architect, STIGs, Security reviews, remediation
to satisfy US Gov ICD policies ·
Director of National
Intelligence – IPAM aggregation for US Intel Community. Built
system that incorporates global capacity and availability.
Infoblox VM NIOS, ESX, HA, Fault-tolerance ·
Dept of State /
Router Rightsizing and Network Engineer lead ·
Dept of State / lead
Implementation Network Engineer ·
Dept of State /
DTSPO – Configuration Management ·
Dept of State /
Network Engineer ·
Dept of State /
Active Directory and MS Exchange 2010 Engineer Objective: Lead Automation and/or Migration roles
specializing in Infoblox, BlueCat and/or VitalQIP (DDI) - DNS, DHCP, IPAM. More details: Advisory and Consultancy/SME
leadership roles in IP Address Management, Network Management Systems,
DNS/DHCP/DDI/IPv6. Network and System automation leadership roles
involving complex integration requirements. Opportunity to use Python
with vendor APIs in building integrated environments. Expert skills in
Security Operations Development (ICD 503), CONOPS, SOPs, Roles and
Administration. Integration w/ Service Exchange, solution development
using Ranorex. Credentials: Certified InfoBlox Core Engineer Certified InfoBlox Core Administrator ITIL v3 Certified Linux Certified Red Hat Certified Engineer and Administrator (in
progress) CCNP – expired MCSE - expired BS Degree 1984. Cartography/Mapping,
Charting, Geodesy, LandSat, Photogrammetry, Geographic Information
Systems. (GIS) Salem State College 1999 Cisco Certified Network Associate (CCNA) 2001 Cisco Certified Network Professional (CCNP) 2001 Microsoft Certified Systems Engineer 2000
(MCSE) Formally trained as Certified InfoBlox Core
Engineer/and Admin Current: CBS Corporation – DDI lead implementation engineer
specializing in Infoblox. Automation planning and rollout.
DHCP/IPAM build and migration from existing appliances. Extensive
Python coding. Visa Card International – DDI SME/VitalQIP
specializing Appliance Manager and integration of BIND, AD to existing global
architecture. All advanced DDI engineering, Python scripting,
migrations, upgrades, DNSSEC, DNS Anycast provisioning. April 2015 to May 2016: Infoblox SME Symantec Corporation Built, Implemented, and delivered two (2)
Infoblox Enterprise DDI solutions in support of two corporate
goals: 1) provision two independent Grids and 2) Data separation
from Symantec to Veritas. Extensive skills in scripting
automation of BIND and AD (objects, attributes, files) migrations including
data transfer from /etc/named.conf to production Infoblox running
7.3.1. Extensive skills with IB DIW, IBCLI, CSV import. Examined
the entire system in production and built a phased strategy to migrate
critical services from Alcatel QIP and AD to Infoblox. Eliminated
the need for 30 Windows DHCP servers. Built supporting Administration,
Groups, Roles, and Permissions. DNS migration was a formidable task as
each zone needed to be prepared and corresponding records staged so that
their availability could be supported in production. Migrated
2,322 zones/domains and 1,735 subnets for DHCP to Infoblox. Extensive
work with Forwarding, Authoritative, Delegated zones and Name Server
Groups. Modified legacy QIP servers to ensure forwarding to
proper Infoblox resources. Installed External Caching and Anycast
slave servers. Designed and tested the IP Anycast solution and
implemented on over 50 machines globally. Built Python scripts to
analyze CSV files, and conversion of raw data to code via Regex for use in
Linux and Infoblox command line interface. Provisioned NTP
globally. Extensive skills in Bash, awk, sed to compile data to format
for CSV import to Infoblox. Also, used Python to build advanced
interfaces to Infoblox API for updating Infoblox DDI. Created scripts
to provide specific output based on dig and related resolution
goals. Implemented RPZ policy zones and controlled actions and
treatment of Threat Intelligence Feeds. Built a model lab on
VMware to rehearse migration actions and measure results. Coded
tools to measure results from SRV, PTR, HOST, A, NS, MX, TXT and other
Resource Record sets. Performed software code upgrades. Built DR sites
and Hidden DNS master architecture. Installed 100 devices
including FW planning, Grid Services and port/protocol definition for Key
Exchange 2114 and Grid VPN 1194, HTTPS/443, SSH/22, and NTP/123
communications in support of solution. Built and implemented over
100 Engineering Work Orders (written solution plans) and 100 Data Center Work
Requests (detailed installation documents) Data Center Migration DNS lead and Infoblox
Deployment Engineer Senior Infoblox Engineer Infoblox Infrastructure Design and Implementation
lead IP ANYCAST Engineer – deployed and provided
quantitative and measured results delivery and analysis involving globally
distributed DNS infrastructure. Developed and implemented
Infoblox bloxtools techniques to augment service delivery. Developed API interface standard including
automated query to IP WHOIS database and other WAPI-based calls. Automation Lead – built over 30 Python scripts to
automate operational practices. Managed and Maintained Infoblox Grid of
50 devices globally. Extensive skills in Infoblox DDI, API, Python
integration, WAPI, JQuery, REGEX, coding in general, to build faster and more
accurate systems. Feb 2014 – April 2015: Capital One Bank. DNS Engineer and Infoblox DDI
SME DNS Automation. Data Center
Migration. Cloud Platform Engineering. Coding API solutions, migrating DNS zones/domains,
DHCP objects, system engineering and planning, turn-key Infoblox services
utilizing Python scripting. March 2011-Feb 2014: US Gov IC
client IC CIO DNI task. IP Address Management and
DNS/DHCP Design IC / DNI lead architect for IP addressing
management and engineering. Developing Policy and Implementation plan for IC
IPAM solution. Extensive hands-on with BlueCat, InfoBlox, BT
Diamond IP. Developing Policy and IC interface to IPAM to
include DNS and DHCP practices. Specific emphasis on JWICS
network. Building environment to support IPv4 and IPv6.
Integrating to NMS, HPNA, and other workflow integration systems as needed. Details. IPAM and DDNS Design for IC
clients. Designing and developing IPAM solution based on client
requirements in InfoBlox deployed space. 30 IB-1550-A machines serving
DNS and DNSSEC across 400 locations. Built topology and container
architecture proposal to scale on IB Grid system. Expert in
troubleshooting DHCP FO and associating active leases with WAN and LAN
topology across a distributed environment with mixed USG
ownership. Capable of mapping roles and user responsibilities
using InfoBlox Topology and Network views. And, mapping Admin Groups to
appropriate matrix for “access”, R/O view and Full Ownership
responsibilities. Postured to address client security
requirements. Additionally, skilled in Trinzic IPAM Insight (platform
and VM) and Trinzic NetMRI for Discovery/Collections using
non-intrusive SNMP practices. Extensive engineering and troubleshooting skills
involving IPAM, DNS and management of Grids via IBCLI. Additionally, skilled
in planning migrations and conducting suitable Resource Record planning for
multi-zone, multi-domain InfoBlox environments. Practitioner in scripting via
Bash shell for problem solving and organizational planning of domain
consistency. Rehearsed and generated scripts to isolate specific Domain
attributes. Namely, involving #1 xyz.pl
scripts. And, instances of dig using a variety of switches to automate
discovery of true Records. Porting to files and exporting to NMS as required.
Ex. dig -f FQDNfilename.txt > savedfile Experience developing scripting using various Python
modules and libraries
Completed formal course work (training) at
InfoBlox headquarters: Network Services: DNS, DHCP & IPAM Trinzic IPAM for Microsoft Trinzic IPAM Insight Network Infrastructure Automation Trinzic Network Automation Trinzic Switch Port Manager Trinzic NetMRI Network Compliance Trinzic Network Compliance Trinzic PCI Insight Orchestration Server/IF-MAP Related skills. Configuration Engineering
skills. Capabilities. TSIG, GSS-TSIG, Dynamic DNS,DNS
Anycast with OSPF, DHCP Failover, deploying DHCP Options. IP Address
Management. Expert in Authentication; AD, RADIUS, TACACS, Local User
database. Skilled in Python scripting. Capable in integrating IVR
(Voice Telephony) into Enterprise systems. Capture SNMP and forward
calls to various users based on SNMP traps and rules. Linux Certified. Oct 2006 – Feb 2011: Hewlett-Packard Chief Architect US Department of State Leading 150 projects and 15 Engineers.
Managing architecture, design and implementation for Enterprise improvements
across ENM landscape. NextGen – Enterprise Routing, Encryption, WAN
acceleration, Regionalization; and, IT Consolidation and Data Center
Consolidation. 14 years experience w/ US Dept of State. Leader, Planner, Producer Bid as “Key” within the Telecommunications,
Operations and Maintenance (TOM) contract. Provided Technical
Oversight, Operational/Resource Management and Enterprise Architecture
planning and consultancy to a Diplomatic and Federal community. Managed
a 1300 router/switch and IP PBX topology. Services include
Multicasting, Avaya VoIP and telecommunications connectivity to a 40,000 user
community in 200 locations in North America. Managed over 100
VLANs. Experience with 6509, 7200VXR, 3550, 3560 (POE, GiGE,
IPv6). Provided classified and unclassified connectivity to US
Secretary of State and other Ambassadors. Extensive contribution and
advisory in Corporate Program Management and client cost modeling. Managed
a portfolio which included 11 Network and System Engineers. Leading
Ipv6 migration strategy. Writing Enterprise Architecture Plan and
Migration Strategy. Lead the migration/consolidation of HPOV
CiscoWorks; extensive skills in TACACS, AAA, SNMP v2/v3, some scripting PERL
knowledge. Customized Solaris and HP to support unique paging and
alerting. Architected and deployed Emergency Notification Systems (RSAN
and Dialogic). Outstanding technical writer. Influenced major
network architect tools procurement (Juniper DX, Solarwinds, Cisco/Riverbed
WDS, NetQoS, et al). Responsible for developing and engineer WAN/LAN
Architecture solutions. Recently harvested ownership of HPOV/OVO,
Linux-Asterisk set, Call Manager integration via FPT and Nortel, Juniper SSG
VPN Encryptor management. Also, developed a solution for redundant WAN
cores. Specifically, built an MPLS and ISP/VPN design to offer high
availability to internetworking. Extensive skills in tuning QoS – namely, traffic
shaping, EEM and Performance Routing (PfR). Designed and Implemented a six node fully
redundant HPOV distributed NNM system. Experience in Engineering Voice and Data
solutions. Avaya, Juniper, Cisco. Linux. Currently designing and delivering architecture
for deployment of HPOV 7.53 on Sun OS 10. And, 8.1x on Sun OS 10.
Included in this solution is Performance Insight, Avaya SPIs, Advanced
Routing SPIs, Advanced Edition, IP Multicast SPIs, other customization
(backups) for 2000 Node Internetwork throughout the Domestic space within the
US Dept of State. (i.e., AlarmPointExpress Notification, PERL scripting,
Aggregate and sub-class container representation on GIS and AM/FM mapping
systems). Building a tie-in to SQL and other HP Asset management
systems. ITIL Focused solutions. Mapping collections is targeted
towards Commercial MIBs in Juniper, SafeNet, Nortel, Cisco, Avaya. And,
other well-known OIDs. Versed in all Network Management practices
within Fault, Configuration, Application, Performance, Security management.
Designing all HPOV and OVO solutions to support remote proxy polling to
extranet devices (DHS, others) for visibility and comprehensive failure
management. Familiar with KG 175D and Classified systems.
Building Oracle and on-board database management capability. Especially
skilled in IPSEC commercial VPN Encryption systems; Nortel, Safenet,
Juniper. Willing to provide presentation leadership and pre-sales
engineering support to all clients. Recently completed ITIL v3
Certification. Managing HPOV in a distributed failover mode for high
availability across two major DataCenters. Skilled on OPSWARE,
CiscoWorks, LMS, and other complimentary network management systems.
Skilled in Ruby, Asterisk, Adhearsion. Jan 2006 – Sep 2006: Client protected US Department of Defense Springfield, VA Lead Network Engineer/Task Manager Implementing a global Windows 2003 and Cisco
architecture Focus on DAO facilities at US Embassies Lotus Notes, MS Exchange, Propriety software
installations. July 2005 - Jan 2006: Computer Sciences Corp – Fairfax, VA Configuration Manager US Department of State/Diplomatic
Telecommunications Service (DTS-PO) Fairfax, VA. Configuration Management
Branch. Router management. IP architecture planning, IP
address management; implementation, maintenance and management.
Solarwinds (SNMP et al). SYSLOG. VOIP programming (Cisco and
Vanguard). Promina 4000. Cisco ONS 15454 SDH Multiservice
Provisioning Platform (MSPP). Codex 3266 modems, SoloSelect.
Juniper Routers. Cisco 7513, 3745 and 3640 routers. Acorn CTP.
Network Migration Strategy leadership. April 04 – July 05: Northrop Grumman IT – Reston, VA Senior Network Engineer Present: US Department of State IT services
contract. Beltsville MD. Enterprise Network Management Operations
Center. VOIP R&D, IP Multicasting implementation, Tunneling, HSRP,
VLANs, Virtual Private Network Engineer. Co-responsible for VPN services
to/from 250 locations worldwide. Extensive experience with encryption
and tunneling vpn services. OSPF, EIGRP, QoS, Differential Services
Codepoints, Optimization of network, load balancing. Cisco
platforms. Switches: 6500, 3500, 2950 and Routers: 7200, 7500,
2600, 800. SafeNet IRE devices. Remedy/True Control. SNMP
via Cisco Works. HP OpenView. AAA/TACACS. Oct 1997 – April 2004: Senior Network Engineer Computer Sciences Corp – US Consulate Frankfurt
Germany 1997-March 2004. US Department of State. Regional
Information Management Center. Frankfurt Germany. Responsible for
internetworking support, troubleshooting, and design of unclassified network
systems for the Department’s OpenNet + LAN/WAN. Assigned to the
European, N. Africa and Near East Asia area of operations.
Extensive knowledge of client/customer needs and concerns. Details On-site support provided to over 125 US Embassies,
Missions and Consulates. Installations included the following hardware
platforms: Cisco Routers 7206, 2621, 3640; Cisco Switches 5000, 2901,
6509, 3550, 2924, 1924; Compaq Servers ML 530, DL 380 and DL 360. Fully
confident with Windows NT and 2000. Configured Cisco Software CET
/ DES and Cisco Hardware Encryption. Possesses an intimate understanding of troubleshooting
all OpenNet systems. Configured SMS, Exchange, NT Security, CLOUT and
relevant networking configurations. Extensive email (Exchange) troubleshooting
skills. Skilled in backup techniques and disaster recovery
procedures. Successfully restored over 10 failed email systems. Extensive knowledge routing protocols EIGRP and
configuration of AAA/TACACS, SNMP, Tunneling, Access-lists, Redistribution
and Frame-Relay. Configured SafeNet devices and prepared routing for
alt-route’s via VPN (Internet). Experienced in configuring RAID for NT and Compaq. Expert in Internetworking Design and
Deployment. Designed over 20 site plans and delivered turnkey
production networks to various Posts in Dept. of State. Competent in
Visio. Extensive knowledge of TCP/IP, DNS, DHCP in NT 4.0
and Windows 2000/3 architectures. Assisted in the migration of DC-homed Exchange
servers to a meshed/collapsed Exchange topology. Built collapsed
Exchange sites for Missions in Germany, France, Italy. Full understanding of the Dept of State OpenNet+
configuration requirements for other Department services (ie NES and
NIDS). And, Classified Networks. Skilled in building CAT5/CAT6 cabling and Fiber
Optic connectors. Knowledgeable in networking system requirements to
support multicasting (video), Class of Service/Quality of Service for Voice
over IP, ISDN/Dial on Demand Routing. Familiar with the Department’s organizational
structure and reporting formats to include interaction with ENM Network
Design and Network Engineering. Experienced with DS guidelines and Operational
Rules and Requirements as published by the FAM. Familiar with Gig Ethernet Switch Installations
and all aspects of maximizing access port throughput to users. Received the CSC Presidential Award for Customer
Service for work following the installation of the OpenNet + Kabul node at
the US Embassy, Kabul. 1996- 1997: US Marine Corps.
Communication Officer. Major. Training Facility. Staff member. Built
and published several design proposals and tested interoperability between
Joint service telecommunication and network services. 1995 – 1996: US Marine Corps. Naval
Research Lab. 1989 – 1990: Student University of
Massachusetts MBA program. |
|
|
|||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||
|
|