-D. Kendal Nusbaum
adwqwh@r.postjobfree.com / Rockville, MD / 240-***-**** (Cell)
Certifications: Cisco Certified Network Professional (CCNP)
Cisco Certified Network Associate (CCNA)
Cisco Certified Security Professional (CCSP)
Cisco Certified Network Professional Security (CCNP-Security)
Cisco Firewall Specialist
Cisco VPN Specialist
CompTIA Security + (Security +)
Microsoft Certified System Engineer 2003: Security Specialization (MCSE 2003 Security)
Microsoft Certified System Administrator 2003: Security Specialization (MCSA 2003 Security)
Education: James Madison University – 1981 Bachelors of Business Administration – Management Information Systems
Contractor (2010-Present)
Unisys / Omnicom Group Senior Network Engineer (2022- Present)
Accountable for Client Site Management of all WAN, LAN, WLAN, Security, and Infrastructure for multiple subsidiaries
Cisco Centric Environment for Routers, Switches, Firewalls, and Wireless LAN Controllers
Implement, Configure, and Operate Corporate Standard for Multiple VRFs, Multiple Contexts, and SDWAN
Alion Science & Technology Senior Network Engineer (2021- 2022)
Responsible for Network & Security Management, Design, Implementation, Upgrade, and Operations of New / Current Sites & Data Centers
Environment includes Cisco Routers, Cisco, Dell, & Fortinet Switches, and Fortinet & Palo Alto Firewalls
Extensive experience with Fortinet Security Fabric - FortiGate Firewalls, FortiManager, FortiAnalyzer, FortiSwitch, FortiAP, FortiClient, & FortiClient EMS
Responsibilities include Data Center Management & Upgrades, New Site Implementations, Current Site Upgrades, and Operations
Sinclair Broadcast Group Senior Network Engineer (2020- 2021)
Responsible for Design, Upgrade, Installation, Refresh and Troubleshooting of new and existing Site and Data Center Network & Security
Environment included Multiple Data Centers and 191 TV Stations with Fortigate NGFW Firewalls, Cisco Routers and Cisco Switches
Designed, Managed, Installed, and Configured FortiManager Centralized Firewall Management System on Virtualized Platform
Fortigate NGFW Firewall Configuration including Policy, Proxy, DLP, IDS, Filtering, Antivirus, VPN, SSL Inspection, & Application Control
Verizon Lead Network Engineer (2019)
Hands-On Managed Services Leader responsible for Network & Security Architectural Design, Re-Engineering, and Implementation of all Commonwealth of Virginia State Agency environments including hardware refresh and cutover
SiriusXM Senior Manager, Enterprise Networks (2018)
Manage a staff of Network Security Engineers responsible for all Network & Security associated with Production Broadcasting Operations
Hands-On responsibility for Network & Security Management, Design, Engineering, Monitoring, and Operations
Environment consists of Cisco Routers & Switches, Arista and Brocade Switches, Cisco ASA Firewalls, F5 Load Balancers, ISP Connectivity, MPLS Network, Point-to-Point Circuits, L2 Circuits, IPSEC VPNs, AWS VPNs, multiple Data Centers, and various DMZ & Security Zones
Responsible for Security Scanning, Reporting, Remediation, Investigation, Incident Handling, and Monitoring
INOVA Health Systems Senior Network Security Engineer (2017)
Tier IV Network Management, Engineering and Troubleshooting responsibilities for Security Stack, Security Appliances, Security Policy, Web Proxies (Bluecoat), Firewalls (Cisco, Checkpoint, Palo Alto), IPS (FireEye), Malware Inspection, Content Analysis, SSL Encryption/Decryption Devices, Routing, Switching (Catalyst & Nexus), IPSEC VPNs (Cisco ASA), ISE, Load Balancers (F5), IPAM (InfoBlox), DHCP, and DNS
Installed and Configured Standalone 12 Site Urgent Care Center (UCC) Network and Security Infrastructure
Responsible for Installation, Maintenance, and Troubleshooting of 150+ Site-to-Site IPsec VPNs
Implemented New Security Zones in Data Center and Hospital Networks
Total Wine and More Senior Security Engineer (2016-2017)
Responsible for Network & Security Management, Design, Implementation, and Operations. Environment included ASA Firewalls, Catalyst and Nexus Switches, ASR and ISR Routers. Appliances include F5 Load Balancers, FireEye IDS/IPS, and Riverbed WAN Accelerators.
Responsibilities spanned Multiple Data Centers, Azure Cloud Implementation, and MPLS WAN
Set and Reviewed Security Controls and Policies, Standards, and Guidelines. Developed COOP plans, Audit Responses, and Risk Mitigation.
Geico Network Architect (2015-2016)
Network Design, Implementation, and Operation of extensive Multi-Vendor Network
Primary responsibility for Data Centers, Core Network and Security included Cisco Switches (Catalyst & Nexus), Cisco Routers (ASR & ISR), Firewalls (Cisco, Juniper, and McAfee), F5 Load Balancers, and various Network Management & Monitoring tools
Extensive Multi-VDC Nexus (7K/5K/2K) and Multi-Context Cisco ASA (5585-X) Design, Implementation, and Operations
Extensive Virtual Networking and Clustering/High Availability Experience
AAC Senior Network Engineer (2015)
Network Consultant at Federal Communications Commission (FCC) responsible for Network and Security Operations
Operational environment included Cisco Switches (Catalyst & Nexus), Cisco Routers (ASR & ISR), Firewalls (Cisco, Juniper, and Checkpoint), F5 Load Balancers, Bluecoat Proxies, Cisco Wireless Controllers, and various Network Management & Monitoring tools
Eliassen Group Senior Network Security Engineer (2014-2015)
Network Consultant at National Institute of Health (NIH) responsible for Data Center Network and Security Solutions
Design and Implementation of Multi-VRF Project for Data Center DMZ Solutions and Data Protection
Extensive Network and Security experience on Cisco ASA Firewalls (5585-X SSP 40 & SSP60) and Nexus Switches (7K, 2K)
SAP Mobility Senior Design Engineer (2013)
Network Consultant responsible for Implementing Data Center Network and Security solutions
Designed, Implemented, Upgraded, and Relocated an existing Management Network from local offices to the Data Center
Project solution included a pair of 40 port 10 Gb Cisco 4500-X switches interconnected using VSS, dual Cisco ASR 1002-X Routers, and Primary/Failover Cisco ASA 5545-X Firewalls with switch interconnection to router and firewall pairs using Multi-Chassis EtherChannel
EngagePoint Senior Network Engineer (2013)
Hands-On Network Lead Consultant for Maryland Health Exchange SOA software development provider
Provide Network and Security Design, Deployment, and Tier 4 Operations Support in Cisco centric environment
Trusted Technology Advisor for Data Center Architecture, Complex Infrastructure Projects, and High Visibility Initiatives
Designed, Implemented, and Operated the Site Network for Maryland Health Exchange SOA software development
Deployed Site-to-Site IPsec VPNs to Remote Offices and Business Partners using ASA Firewalls and ASA to Checkpoint Firewalls
Implemented and Managed IPsec Remote Access VPN solution
American Systems Senior Network Architect (2012)
Design, Deploy, and Manage Network & Security Solutions for the Corporate Enterprise and Data Centers.
Provide Leadership, Planning, and Support for Network & Security Installation and Upgrade Projects
Research and Implement Technology Solutions for the WAN, Core Network, Data Centers, and Remote Sites
Copious experience including Cisco Nexus 7K, 5K, 2K, 6500,4500, 3750 Switches; 7200, 2900, 3800, 3900 Routers; 5520, 5585 ASA Firewalls
designDATA IT Enterprise Network and Systems Architect (2011)
Network Design, Implementation, and Operational Administration primarily in a Microsoft and Cisco environment.
Management of Client Network Enterprise Infrastructure related projects
Extensive hands-on Cisco and third party Firewall, Switch, Router, and Appliance experience
Responsible for Data Center Core and Perimeter Network Infrastructure Architecture
Level 4 Escalation Point for Client and Data Center Operational issues
Develop Technology Infrastructure Architecture, Strategies, Policies, Standards, and Procedures
AAMVA Senior Data Center Systems / Network Engineer (2010)
Hands-On Lead Contractor for applications, servers, networking, security, processes and procedures for all Data Center services.
Responsible for the oversight, administration, support, and improvement of Data Center technology infrastructures.
Manage and direct the scope, design, development, and documentation of projects executed by outside vendors.
Create, test, and maintain business continuity planning / disaster recovery policies and procedures.
Evaluate new technologies and make recommendations on improvements.
Technology infrastructure installed, supported, and maintained was predominantly a Microsoft and Cisco environment.
Dimension Data Senior WAN Engineer & Technical Advisor (2005 – 2010)
Member of the Wide Area Network Management Branch (WANMB) of the Infrastructure Management Division (IMD) for the Administrative Office of the United States Courts. Network Management scope includes a 600 Site Private Network, a 200 Site E-Commerce Network, and multiple Internet Gateways. Extensive Cisco, WAN, LAN, Network Management, Data Center, Server, Hosting, and Security experience.
Serve as Technical Expert & Advisor to Senior Level Infrastructure Management Executives. Responsible for Product, Process, Architecture, and Technology Review. Projects include Research, Evaluation, Recommendation, Strategic Planning, Vendor Management, and Rollout.
Client-Facing role to improve the Operational Efficiency, Security, Capability, and Performance of the Agency Networks and Infrastructure.
The EMMES Corporation Director of Technical Services (2002 – 2004)
Hands-On Technical Manager of resources and personnel for a Clinical Research and Data Management Services Organization
Overall Management responsibility for Planning, Organizing, Staffing, Budgeting, and Directing corporate resources for Design, Implementation, and Operations of Enterprise Infrastructure & related Software, Hardware, Processes & Procedures in a 24x7x365 environment
Provided Corporate Technical Vision & Direction, Strategic Planning, and Policy Implementation to achieve Business Objectives
Final level of Corporate Technical Support and Troubleshooting for all areas of responsibility
Client base included Internal Corporate Support Staff, Infrastructure for Business Operations, and Customer Products
Hands-On Technical experience including engineering, administration, configuration and troubleshooting of Network and Systems Security, WAN / LAN Network Devices (Routers, Firewalls, Switches, and Load Balancers from Cisco, Checkpoint, 3COM, F5, etc), Enterprise Applications and Servers (COTS, Secure Web, Applications, Database, Mail Servers, Client / Server, Communications, Financial, Proprietary, HRMIS), and Server & Network Security (Windows NT/2000 Servers, Active Directory, Linux, Novell, DNS, TCP/IP, DMZ, NAT, PAT, VPNs, SMTP, SSL, IIS, Apache, JRun, Load Balancers, IP Address Design & Administration, WebTrends, Network Appliances, etc)
Responsibilities included Network & Systems Engineering and Administration, Security Policy & Standard Operating Procedure Development, Data Center Management, Business Operations, Strategic Planning, Disaster Recovery, Capacity Planning, Performance Monitoring, Release & Change Management, Technology Evaluation, Project Management, and Vendor Management, Negotiation, & Relations
Manage staff resources supporting WAN/LAN Networking, Firewall, Windows NT/2000, Linux, Novell, Workstations, MS SQL Databases, PBX, Voice Mail, Wiring Distribution Systems, Help Desk, User / Client / Desktop Support, and Office Automation
US Internetworking Operations Manager (2001 - 2002)
Hands-On Technical Manager of resources and personnel for an Applications Service Provider (ASP) and Web Hosting Organization
Client base included Internal Corporate Support Staff, Infrastructure for Business Operations, and Customer Products
Responsible for overall management and monitoring of the Network Operations Center (NOC) and 3 Data Center facilities. This includes Business Operations, Change Management, and support of all WAN/LAN Network & Firewalls (Cisco, Checkpoint), Web Servers, Application Servers, Database Servers, Mail Servers, and related software, hardware, processes and procedures in a 24x7x365 environment.
Responsible for hardware installation, software upgrades, configuration, and policy changes on Checkpoint Firewalls and Cisco Routers, Switches, and Firewalls
ASP Services included Applications support for CRM, Web, eBusiness, ERP, HRMIS, Financials, and Enterprise Messaging & Collaboration
Manage client Service Level Agreements (SLA) to ensure optimum compliance
Manage staff resources supporting WAN/LAN Networking, Firewall, Windows NT / 2000, Unix, and Oracle & MS SQL Databases
Enterprise Networking Solutions Self Employed Consultant (1995 - 2001)
KMC Telecom
Performed various diverse duties for a start-up Competitive Local Exchange Carrier (CLEC).
Interfaced with Board of Directors and Top Level Management in a business consultant role to advise on technical and business issues.
Extensive Executive, Business Process and Project Management experience in a technical role.
Job functions varied over time but include and are not limited to: advise Board Members on technical implementation issues, strategy and impacts, switch and network components evaluation, evaluation of Billing (Subscriber & CABS), Customer Care, and OSS system alternatives, review of Interconnect and Ancillary Agreements for technical language and pricing, business and process flows, ILEC relations and negotiations, new city Network Interconnect Design, and special projects for large customer, ISP, or carrier interconnection.
Responsibilities included being part of a team which successfully deployed 35+ Switches / SONET Networks.
Overall deployment responsibilities for all aspects of Ancillary Services which included engineering design, provisioning, and call routing
An integral part of planning and building of the Operations for the Customer Care Center, procedures and data flows, new engineering efforts, new network interconnections, and technical strategy for new / joint sales effort opportunities.
Trained internal personnel on CLEC Operations, technologies, and procedures.
National Association of Life Underwriters
Designed, Implemented, and Managed the Re-Engineering and upgrade of corporate hardware, software, and WAN / LAN / Voice Telecommunications Infrastructure from a legacy environment for a Non-Profit Association (Cisco, 3COM, Lucent, etc)
Performed new technology investigation, RFP development, vendor evaluation, vendor selection, and solution implementation
Designed and Managed an upgrade of the Headquarters Data Center and new PBX purchase
Designed, Implemented, and Managed new Corporate Internet / Intranet Access, Web Servers, Web Applications, and Internet E-Mail.
Implemented a structured wiring distribution and patch panel system.
Trained, documented, and supported IT personnel during new technology implementation and transition.
Broadband Office / Zephion Networks
Primary responsibilities for Network deployment of E911 in a startup CLEC environment. The network environment included a Voice Over IP backbone with PSTN local interconnects using Sonus switches. E911 Network Deployment included all aspects of Network Engineering, provisioning, PSAP contract negotiation, RBOC interconnect negotiation, development & execution of implementation and test plans.
LCC
Designed and tested a communications sub-system for a Wireless Carrier to support the monitoring of Cell Sites from a centralized MTSO via dedicated circuits. This was a Real Time system requiring high availability, redundancy and disaster recovery.
Configuration included Unix server hardware & software, routers, switches, terminal servers, & channel banks (Cisco, Xyplex, etc).
Oncor Communications, Inc. Senior Manager - Networking and Data Warehousing (1991 - 1995)
Overall responsibility for Design, Implementation, Operation, and Management of Corporate Infrastructure including WAN, LAN, Servers, Network and Systems Security, PBX, ACD, Voice Mail, Wiring Distribution Systems, Help Desk / User Support and Connectivity
Managed a staff of Network Managers, Network Engineers, Analysts, and Technicians at multiple locations
Final level of Corporate Technical Support and Troubleshooting for all areas of responsibility
Responsible for network design, network management, infrastructure operations, capacity planning, resource management, technology analysis, strategic planning, requirements analysis, cost justification, vendor selection/management/negotiation, design, configuration, implementation, performance monitoring, tuning, risk analysis, disaster recovery, and troubleshooting.
Installed and supported all Host/Server communications hardware/software
Responsible for developing a Data Warehouse for Executive Information Systems
Managed a staff of Database Administrators and Programmer/Analysts
Developed and implemented Data Warehouse standards, practices, and procedures for data certification
Developed Data Warehouse Infrastructure for repository management of subject matter data including historical rollup, metadata management, archival and retrieval, version control, data distribution, checkpoint restart, and cataloging services
Supported Proprietary Billing Systems, Customer Records Systems, Solomon Financial Reporting Systems
Representative Project Implementation and Responsibilities
Managed relocation of Corporate Headquarters Data Center & Office Staff from a Telecommunications, Networking, & Server perspective
Merged corporate WANs, LANs, and Servers during company acquisitions reducing duplicity
Designed and upgraded internal corporate technology to Client/Server and File Server environment
Designed segmented LAN for improved performance and workgroup flexibility
Provided secondary support for Clustered Hosts and Systems Management
Implemented Enterprise Database Access via ODBC for Corporate reporting and querying
Designed and installed dedicated PBX to PBX access from local to remote sites via T1 and FT1
Designed solution for dedicated Host based file transfer capability to all Regional Bell Operating Companies and most major carriers
Designed and installed Remote LAN access via Bridges & Routers between remote Data Centers
Installed and managed Network Connection to external Credit Card Verifications vendor
Installed and Managed ACH Payroll Network Connection
Installed FDDI Ring in data center to improve performance
Implemented and managed a 25 node Packet Switch based WAN connected via Dedicated Circuits
Installed and managed communications servers
Installed and managed LAN environment of Alpha Servers, Novell File Servers, and MS NT Servers
Evaluated vendors and implemented fax and paging services from host
Provided generic load procedures from operational legacy system feeds into the Data Warehouse
National Telephone Services, Inc. Network Manager (1989 - 1991)
Responsible for all aspects of Corporate WAN, LAN, and Connectivity
Responsible for network design, network management, infrastructure operation, capacity planning, resource management, technology analysis, strategic planning, requirements analysis, cost justification, vendor selection/management/negotiation, design, configuration, implementation, performance monitoring, tuning, risk analysis, disaster recovery, and troubleshooting
Provided secondary support for Systems Management
Provided Remote LAN access via Bridge/Routers between Data Centers
Designed, implemented and managed multiple WAN solutions
Telic Corporation Network Manager (1982 - 1989)
Responsible for Data Center including all aspects of planning, requirements, specification, and expansion
Responsible for all aspects of Corporate WAN, LAN, and Connectivity for Multi-Site Clustered network
Responsible for design, installation and management of 15 Site WAN network and Host-to-Host solutions
Managed 24 X 7 Operations Staff with nightly production schedule
Computer Applications and Systems Inc. Programmer / Analyst (1981 - 1982)
Vendor Experience
Cisco, F5 LTM/Viprion, Juniper (SSG/SRX), Checkpoint, Sonicwall, McAfee, Barracuda, Fortinet, Palo Alto, Bluecoat, SourceFire, Riverbed, Arista, Brocade, APCC, InfoBlox, Exinda, Network Instruments, Newbridge, Wellfleet, Vitalink, Xyplex, Ascend, Avaya, Aruba, Ubiquiti, mitel, Lucent, Paradyne, Penril, NEC, GDC, Adtran, Micom, ADC, 3COM, Bay Networks, Cabletron, Symplex, Cylink, ACC, HP/Compaq/DEC, Dell, IBM, SUN, Intel based PC Servers/Workstations
Data Communications Hardware Experience
Routers, Bridges, Gateways, Switches, Intelligent Hubs, Repeaters, Ethernet, Fiber, Token Ring, Firewalls, Server Load Balancers,
IDS / IPS Devices, VPN Concentrators, Communications Servers, Terminal Servers, Synchronous / Asynchronous Modems, NAS, SANs, Packet Switches, X.25 PADs, CSUs, DSUs, T1/FT1 Multiplexers, D4 Channel Banks, Time Division Multiplexers, DELNIs, Statistical Multiplexers, Switching Statistical Multiplexers, Inverse Multiplexers, Modem Sharing Devices, Limited Distance Modems, WAN Compression Units, Dial Backup Units, Line Drivers, Modem Eliminators, Synchronous Compression Units, Line Monitors, Encryption Devices, 37X5 Front End Processors, 3270 Controllers, 5250 Controllers, DACS, Test Equipment, VMS/SNA Gateways, Network Appliances, Wireless Controllers, Wireless Access Points, Protocol Converters, Print Servers, Fax Servers, Lucent/Avaya Definity System 75 Phone System, Avaya Definity System G3R, Octel Voice Messaging, Lucent 5ESS 2000, Sonus GSX/PSX, Protocol Analyzers, AT&T 110 PDS, UPS Units
Software / Protocol / Network Services Experience
TCP/IP, OSPF, BGP, EIGRP, RIP, IGRP, IS-IS, UDP, ICMP, vPC, VDC, VRF, VSS, STP, HSRP, VRRP, GLBP, ISE, SNMP, QOS,
Fabricpath, IPSec, L2 VPNs, L3 VPNs, Site-to-Site VPNs, Remote Access VPNs, DMVPN, GetVPN, GRE Tunnels, CoS, ToS,
NAT, PAT, VLANs, PPP, L2TP, PPTP, Crypto Devices, IDS / IPS, SANs, X.25, MPLS, HDLC, Frame Relay, Netflow, VOIP,
ASA / PIX Firewall, CSM, Checkpoint Firewall, Botnet, Fortinet Fortigate, Sonicwall, MS ISA, Websense, WLC, WCS, Air Magnet,
Windows 95/98/NT/2000/XP/Vista/7, Novell Netware 5.X, 4.X, 3.X, 2.X, NDS, IPX/SPX, Netbios, NDIS, SMTP, ODBC, MS SQL, Windows NT/2000/2003/2008 Server, Active Directory, DNS, DHCP, WINS, RAS, PKI, Kerberos, Exchange, Outlook Web Access, MS IIS, MS Clustering, NLB, LAVC, SQL, Oracle, Gembase, DECnet, MS LANMAN, PAP, CHAP, Solarwinds, Wireshark, RMON,
UNIX, Linux, Solaris, DNS, SSL, SSH, Sendmail, Telnet, FTP, NFS, Samba, Macromedia JRun, Apache, Cold Fusion, NFT, LAT, VMS/SNA Gateway, VMS/SNA TE, VMS/SNA RJE, CLEO, OS/400, CL, SNADS, APPC/APPN, PC SUPPORT, MVS/XA, TSO, SNA, SDLC, Connect Direct/Network Data Mover, BSC, RJE 2780/3780, LU0, OpenVMS, DCL, EDT, NCP, TSM, VCS, DECAlert, ISPF, Telon, IMS, IDMS, CICS, IBM NCP, VTAM, VPS, Omegamon, MPE IV, IMAGE, QUERY, SPL, IMF, MRJE, Transact, VISIO, WordPerfect, MS Office Suite, MS Access, MS Project, MS Outlook, DOS, Micromuse Netcool, DECAlert, MOP, XCOM, Symantec AntiVirus, McAfee AntiVirus, Norton Antivirus, Symantec Ghost, Adobe Acrobat Suite, GoldFax, GoldMail, PageMate, NetIQ, PCAnywhere, Gemdraw, Eudora, Reachout, ProComm Plus, Reflections, Laplink, COBOL, Fortran, C, FAL, Webtrends, Veritas Backup Exec, BrightStor ARCServe Backup, Yosemite Tapeware, Stac Replica, SAS, Switched 56 Services, PSTN Facilities, ISDN, Dedicated Digital Circuits, Analog Circuits, Dry-Copper Circuits, FaxPress FaxServer, Appletalk, Intuit Track-It, Splunk, Tenable Nessus, Avaya Definity G3, Novell ZENWorks, IntraNetware, GroupWise, Novell Border Manager, Attachmate, HPNA,
Circuit Formats (56/64X, T1, T3, OC-3, OC-12, OC48, OC-192), Line Encoding, Packet Formats, SS7, ISUP, TCAP