CAREER OBJECTIVES:
Results-driven IT professional
seeking a Senior Network Engineering position with a growing company that
allows me to utilize multiple years of network engineering, security, and
server administration experience.
EMPLOYMENT HISTORY:
Nemours / A.I. DuPont
Children’s Hospital (Wilmington, DE)March 2014—Present
·
Senior Network Engineer
- Implementing a $500 million building
expansion utilizing 40GB Ethernet technology on 4510 platform with SUP8-E.
- Assist with architecture, design,
revision, and vendor supervision to ensure successful implementation of
building expansion.
- Provide hardware guidance to support
migration from Legacy 6500 switches/routers to current $2 million Nexus 7018,
5596, 2248, 2232 data center.
- Rebuild complete wireless network
backbone to support Wireless 5760 and 8510 controller technologies.
Leveraging Medical Best practices to ensure seamless coverage and absolute
N+3 reliability and coverage to support non-stop reliability of clinical
networks in any and all failure scenarios.
- Design independent internet infrastructure
to allow both guests and long-term patients to utilize personally-owned
entertainment devices in order to allow them respite from stress of continued
medical procedures which has improved patient morale and increased parent
satisfaction.
- Decrease complexity of network
infrastructure by leveraging VPLS at data center core level.
- Evaluate current security model and
assist with remediation of security vulnerabilities.
- Provide backbone redundancy, planning,
design, and implementation for WAN Triangle between our corporate
headquarters in Jackson, FL; our hospital in Orlando, FL; and the hospital in
Wilmington, DE. Decrease backbone circuit costs over $10,000 per month while
moving from 100 MB ATM to 1 GB PTP fiber between sites.
- Lead Migration from T1 based back-up to
DMVPN 50MB solutions for all remote sites. Ability to utilize COTS vendors to
lower circuit costs for remote sites by saving up to $600 per site while
increasing bandwidth 30x.
- Collaborate with Senior-level
management and Directors to make sure leadership is kept well informed and to
execute business strategies. Provide technical guidance to drive future
infrastructure development through growth analysis and discussions.
- Serve as technical leader, escalation
point, and overall network subject matter expert (SME). Provide development
of junior team education, resources, and personnel development to ensure
continuous improvement of all team members.
- Assist new vendors with deployment of
IPTV (World Cinema) and cutting edge interactive patient entertainment
platforms (GetWell) utilizing multicast and providing proper security between
third party and corporate resources.
- Serve as 24/7 on-call escalation path
for all patient care-affecting outages and questions.
Conde Nast / Advanced
Publications (Newark, DE)October 2012—January 2014
·
Senior Network Engineer / Internet & Infrastructure
Services
- Administered Riverbed / Cascade Mazu
appliances in order to effectively evaluate application & network user
experience along various data points throughout network to achieve an
improved user experience while troubleshooting platform Layers 4-7
connectivity.
- Researched & deployed within both
enterprise data centers Palo Alto Networks 3050 & 5060 platforms in order
to protect both ingress and egress traffic from Internet and multiple MPLS
connected corporate sites. Configured full anti-virus and DPI inspection in
order to perform L7 aware application firewall functionality. Transfer of
rule-set from Juniper ISG2000 into Palo Alto platform.
- Migrated from Cisco Security Manager
(CSM) into Palo Alto Panorama for enterprise-wide firewall monitoring and
management.
- Creation of independent and secure TOR
environment to support and protect anonymous file and tip gathering from
whistle-blowing sources.
- Managed a team of engineers in the
network design life cycle of our new corporate headquarters for One World
Trade Center supporting 25 floors, a data center, & 17,500 network drops.
Utilization of Cisco Catalyst 6800, 4510RE (SUP8K-E), & 3700 Series
access points. Employed VSS & VPC technologies through Nexus 7K platform.
Hold up-to-date SWAK Clearance for Freedom Tower/WTC.
- Overhauled data center core Edge
Firewall Service Module (FWSM) into a Palo Alto 5060 platform utilizing OSPF
& I-BGP in order to better align our security policies for Cisco ISE
deployment in for support of Network Access Control (NAC).
- Replaced Juniper with Cisco AnyConnect
5525X Firewall for remote access to data center resources. Deployment of
multiple SCEP, Microsoft Enterprise CA Server, & PKI profiles in order to
support certificate-based authentication through various end-user devices.
- Implementation of remote teleworker
environment in order to support seamless user transition from corporate to
home office. Using Cisco AnyConnect 7965G & Jabber for IPT access to UCS
platform as well as Cisco WLC5508 controller, 3502, and 1140 access points to
support Office Extend Mode via NAT and MAC-based access point authentication
for teleworker access with no distinction/interaction from the end-user.
- Developed policies to find rouge access
points and properly disconnect. Creation of various corporate enterprise-wide
standards and policies and supporting documentation for failover design
disaster recovery plans as well as out-of-band remote access for Triage
scenarios.
- Utilization of SecureCRT for
DigiTerminal console, and SSH access documentation, Blue Cat Proteus 4.0
virtual appliances for IPAM documentation.
Glasshouse Technologies /
Ironwood Pharmaceuticals (Cambridge, MA) August 2011—Sept 2012
·
Senior Network Architect / Engineer (SME)
- Enhanced plans for a multi-million
dollar, FDA compliant data center.
- Oversaw and implemented all enterprise
network architectural designs while providing guidance and recommendations.
- Responsible for maintaining 99.999%
uptime on all critical network and security systems
- Implementation and development of
security policies/solutions via ASA 5550 firewalls and RSA Authentication
Manger to support remote VPN access.
- Implemented Next Generation Nexus 5548,
2248
- Expert with 4510-E, & 4507-E
switches/routers and WLC5508 Wireless Access Controller.
- Frequently traveled to remote client
offices for onsite support. Maintained a professional image which contributes
to my 100% customer satisfaction score.
- Developed and performed business
continuity plans and drills.
- Overhauled existing network systems and
provide GAP analyses and documentation.
- Utilized cloud-based solutions to
maximize return on investment and minimize capital costs.
- Coordinate with several other
department leads to formulate strategies for total infrastructure systems
design.
- Mentored several junior-level
associates in the networking field to empower their possible career
development and advancement.
ALICO/MetLife (Wilmington,
DE)April 2010—August 2011
·
Senior Network Engineer
- Manage day-to-day network operations
both internationally and locally.
- Serving as single point-of-contact for
global network help desk.
- Maintaining infrastructure for
user-base of over 35,000 users in 52 countries.
- Responsible for providing expert level
guidance in design, configuration, installation, and monitoring of NOC
through both 24-hour on-call and on-site rotation.
- Coordinated several high-profile
migration efforts from existing legacy infrastructure to new global WAN
interconnect.
- Responsible for intercompany
communication and crisis management.
- Architectural design and engineering of
various local and enterprise-level networks.
- On-site support as required to provide
local resource education and development.
- Served as a team mentor to junior
engineers to assist in development of their talents/skill sets.
- Strong proficiency in WAN, LAN, and
Network Security Devices including 6500 series routers/switches, 5500 Series
firewalls, and 4400 Series wireless access controllers.
Collabera, Inc. (Wilmington,
DE)August 2009—April 2010
·
Senior Network Engineer (AIG/ALICO)
- Creation of various network standards
and documentation to assist in conversion of legacy sites to next generation
network design specifications.
- Worked with multiple users worldwide on
both local- and enterprise-level trouble tickets.
- Provided enterprise-wide support for
both local- and enterprise-level changes.
- Maintained local network and data
center infrastructure along with providing insight into modernization and
standardization of network to best utilize existing equipment to full
functionality.
- Served as primary point-of-contact for
local data-center network operations.
- Provided peer guidance on various
server and network deployments.
- Single-handedly planned, coordinated,
and implemented various logical & physical redesigns of the network
infrastructure retrofits to better support current and future business needs.
Open Systems Technology (Wilmington,
DE)November 2008—August 2009
·
Network Engineer (JP Morgan Chase Bank)
- Worked within a diverse web of network
systems in an enterprise that spans multiple sites worldwide.
- Managed day-to-day network operations
of a Tier-4 data center. Working with CISCO, trouble tickets, and incident
management.
- Maintained network availability and
anticipating network issues to mitigate them before they affect company or
line of business operations.
- Responsible for
providing expert level guidance in DMZ & VLAN design, configuration,
installation, and monitoring through the use of various hardware &
software packages.
- Responsible for enterprise level VLAN
configuration to allow intercommunication throughout J.P. Morgan Chase Bank
locations over diverse WAN infrastructure.
Life Cycle Engineering (Philadelphia,
PA)February 2008—October 2008
·
Network Systems Engineer (US Navy/DoD)
- Designed and implemented mission
critical networks aboard U.S. Navy warships.
- Responsible for entire life cycle from
design and implementation to troubleshooting and obsolescence controls.
- Served as lead engineer for network
troubleshooting incidents both locally and abroad. This included failure
analysis, risk mitigation, and diagnostics on network equipment through
remote console and command-line access.
- Responsible for all technical documentation
reports and communication concerning ship status including reports to Senior
Level Management. Wrote documentation and memos in easy-to-understand
terminology while still conveying the advanced information needed to help
provide fellow team members with action plans.
- Implemented remote network monitoring
and reporting through serial to satellite uplink.
- Developed DoD compliant security
policies for onboard classified and top secret ship networks. This included
using various VLAN types to best secure various classified user equipment by
utilizing port-based, protocol-based, and MAC-based VLAN’s.
- Traveled to Navy vessels locally &
nationally to support ongoing naval operations through collaboration with
multiple Department of Navy branches.
Albert Einstein Academy (Wilmington,
DE)February 2006—July 2009
·
Director of Information Technology
- Developed the network and
infrastructure to support Wide Area Video Conferencing including remote
classroom high-definition video and audio exchange.
- Created infrastructure and ability for
all students and faculty to telecommute both to and from the school from the
Internet while still maintaining FERPA standards.
- Responsible for managing and overseeing
school network including $190k IT upgrade with new servers, Windows 2003
installation, and complete network infrastructure overhaul.
- Performed project work and other
assigned tasks on time.
- Assisted faculty with any additional IT
issues as needed and fill-in as educator to the computer classes when needed.
Staples Office Superstore (Wilmington,
DE)July 2003—July 2009
·
Easy Tech Department Lead
- Managed and performed all in-store
technical service work for the wide range of Staples computer repair and
troubleshooting services including diagnostics, security auditing,
virus/malware removal etc
- Responsible for reporting to the
multiple levels of Staples and Easy Tech management.
- Ensured the repair work is completed in
a timely fashion and to the customer’s complete satisfaction while
maintaining quality control.
- Worked to meet both Staples and vendors
(HP, Compaq, Assurant, etc) repair and troubleshooting guidelines.
- Aided in tech services sales, and loss
prevention policy enforcement
- Found ways
to improve technology and increase technical
service sales/revenue.
EDUCATION:
B.S. in Information Resource
Management at Wilmington University (2006)
A.S. in Computer Network
Engineering at Delaware Technical & Community College (2005)
COMPUTER EXPERIENCE:
Networking
·
Cisco
1900,2600,2800,2900,3800,3825,3900 ISR & ASR1001,ASR1002 Routers.
·
Cisco
2960,3560,3750,4500,4900,6500,6800 enterprise-level routers/switches.
·
Nexus
2000,3000,4000,5000,7000 enterprise-level routers/switches
·
Routing
Protocols: BGP, BFD, EIGRP, OSPF, & RIP.
·
Riverbed
Cascade Mazu profiler, analyzer, & sensor.
·
Network
Architectural Design & Maintenance (Ethernet, FDDI, Wi-Fi,
802.11a/b/g/n, Orinoco, and AP1000 Management)
·
Wireless
LAN Controllers (WLC) 4402,4404,5508,5760,8500,8510.
·
Access
Point models 1131,1140,1242,3502,3600,3700.
·
Virtual
Port Channel (VPC) & Virtual Switching System (VSS)
·
Fiber
Optic Data Multiplexing Systems (FODMS)
·
Route
Protection Switches, Ruggedized Mil-spec Equipment.
·
Fault
Tolerant Redundant Network Infrastructure design and implementation.
·
Troubleshooting
and Diagnosis.
·
Failover
Documentation & Disaster Recovery
(prepared-designed-implemented-reviewed)
·
Spanning
Tree, PVST, VTP & VLAN configuration, Trunking, Port Channel.
Firewalls & Security
·
Palo
Alto Networks PA3050,PA5060,PA200 Firewalls
·
Management
Interfaces: CSM, ASDM, Panorama, NetScreen, FWSM, ASA
·
Policy
Enforcements: ISE, NAC, 802.1X, PKI, MS CA, SCEP
·
IDS,
Honey Pots, Firewall, ACL
·
Rouge
Access Point Location & Disconnection
·
Diverse
Multi-Path VPN (DMVPN)
Servers & Administration
·
Blue
Cat Proteus IPAM virtual appliance
·
System
Management through use of S.N.M.P.
·
Dell
Desktop Authority (formerly ScriptLogic)
·
Remote
Administration (VNC, PCAnywhere, DataSet Remote, Remote Desktop,
Teamviewer)
·
Client
Server Administration & Design (DNS, FTP, IIS 4.0 - 7.0, MDAEMON 7.0 -
10.1)
·
E-mail
Server Security (RBL, Anti-Relay, Spam/Virus filtering)
·
Telephone
Bridges, WebEX, Virtual Meetings, Online Collaboration, & Presence
Services.
Operating Systems
·
Windows
Servers: NT Server 4.0, 2000, 2003,2008,2012
·
Windows
Workstations: NT 4.0, 2000, XP Professional, Vista, Windows 7 & 8
·
LINUX
(RHEL,CENTOS,UBUNTU), MAC OSX, and MS-DOS
Programs & Applications
·
Microsoft
Word, Excel, PowerPoint, Access, Outlook, Publisher, Project, and Visio
·
QuickBooks
Pro & QuickBooks POS
·
Lavasoft
Ad-aware & other spyware filters
·
Data
Recovery experience using R-Studio Recovery
·
System
Image Distribution using R-Image
·
SecureCRT
Technical Support
·
Troubleshooting
and servicing computer hardware, software, systems errors, end user
diagnostics
AWARDS &
CERTIFICATIONS:
·
CCNA
·
Currently
Pursuing CCNP Certification
·
CompTIA
A+ Certification
·
Palo
Alto Networks ACE 5.0
·
ITIL
Foundations V3
·
Academic
Dean’s List from Wilmington University
·
Co-founder
& Treasurer of the Information Technology & Advanced Communication’s
club
·
Additional
certifications available upon request