Salvatore Cippo
New York
Mobil 646-***-****
ab9gbk@r.postjobfree.com
Summary of Experience
OBJECTIVE: Seeking a position with an organization of talented
professionals where I can contribute to the growth and winning attitude, of
a productive Information Technology team.
Technical Skills: Protocols TCPIP (IPv4 IPv6), BGP, OSPF, EIGRP, GRE, SNMP
ver 2&3, DNS/BIND, VPC (LACP), Port Channel Layer 2 & 3 switching, QoS/CoS
(Priority queuing, Weighted fair queuing,LLC & Custom queuing),
HSRP/GLBP, STP/MST/RSTP/PVST/VMPL, Trunking VTP Protocol 801.1Q, 802.1X
Multicast, Wireless 802.11, DHCP/QIP, RSA, IPS/IDS, BYOD, Software Defined
Networking (SDN) and VPN IPsec/SSL.
Hardware: Cisco ONS, 2800, 3800, 4900, 7200, 7600, Nexus 7K 5K 2K Cisco
Secure ACS, Catalyst. 3750, 6500-E sup 720VSS, Dark Fiber, ASA 5500
Firewalls (multi content), Checkpoint Firewall, F5, Cisco GSS load balance
appliance.
Software: Network General WireShark, Opnet IT Guru, Infoblox, Riverbed,
Cisco IOS, IXIA, Perl Scripting (Windows) and Spirent/Smartbits.
VOIP: Cisco Call Manager, MGCP, H323, SIP, and Skinny.
TELCO: SONET, MPLS, DS3/DS1, T1/E1, ISDN, Frame Relay, Dark Fiber/Metro and
WAN/LAN/MAN/WLAN.
Microsoft Office suite, Word, Excel, Project and Visio.
Experience:
TIAA-CREF 2/2012- 6/2013
Senior Network Architect
. Analyze business requirements to develop technical network solutions and
their framework.
Example, work with telecom group on replacing TDM telephony system with
SIP infrastructure. Vetted vendor proposal and co created guidelines for
QOS and VOIP management system.
. Perform network modeling, analysis, and planning, example IPv6
deployment.
. Develop technology roadmaps, example Software Defined Networking.
. Work on the development of Malware system needed to scan external email
and outgoing services.
. Evaluated and design deployment of anti Phishing services (AGARI).
. Work with the Security department to evaluate best NAC and PKI products
and create deployment strategies.
. Evaluate and Architect the deployment of WAN optimizers (Riverbed
Steelhead and fat client for VPN use).
. Architect the replacement of DNS/DHCP from QIP to Infloblox, consolidate
footprint.
. Designed the replacement and consolidation of Cisco 6500 infrastructure
to Nexus platform.
. Chair a committee on future state technologies.
. Author Network Reference guidelines architecture documentation
(functional requirements/specifications document), used by the
engineering team to design and build out remote offices, DMZs and remote
access infrastructure.
MF Global 3/2010-1/2012
Senior Network Engineer: Consultant
. Team Lead on all Network and Security deliverables.
. Monitor Network resources provide capacity planning.
. Design and implemented Data Center co location consisting of Nexus 7k,5k
and 2k.
. Architect and implement a four hundred position low latency high
frequency Fix Income trade desk using Cisco's Catalyst 6500-E VSS, Cisco
ASA 5525 multi context and Dark Fiber technology.
. Deploy and support Security infrastructure consisting of Microsoft ISA
proxy, Cisco ASA 5520 and 5585.
. Design and implement an enterprise network to replace existing end of
life infrastructure need to support users and core back office trading
environment.
. Primary point of contact and responsible for all Network/Security support
of infrastructure located in the New York/Tristate Area.
ING 4/2006- 12/2009
Senior Network Engineer:
. Team Lead and Project Manager on all Network and Security deliverables.
. Managed a Computer Network and Voice communication group, in addition to
deployment of projects example bandwidth upgrades and new network
installations.
. Architect and direct the deployment of a new infrastructure consisted of
Cisco Catalyst 6500-E/3750 platform. This involved building a new low
latency equity trade desk environment, market data network and access
floors.
. Deploy Internet environment consisting of Bluecoat proxies.
. Run network vulnerability scans using Qualys appliance.
. Responsible for research, design, and deployment of all enterprise-wide
integration including implementation of new and emerging technologies.
. Direct the deployment of a global MPLS Verizon network consisting of
voice and data services.
. Designed new Market Data vendor network able to support Point to Point
and Multicast applications example Multi Cast RMDS and Bloomberg.
. Spear headed the design and installation of all financial market data
services (ADP, DTC, "Reuters Dealing 3000, XTRA, SFTI" Flex trade and
SLK)
. Directed the design and implementation of a BGP multihome Internet
architecture which supports seamless failover.
. Headed support for all local and global network issues.
. Responsible for writing request for proposal (RFP) on all major capital
projects and administer SmartNet contracts renewal with multiple Cisco
resellers.
. Instituted process for network trending which included Bandwidth, CPU and
memory utilization on all LAN devices and WAN links using Concord, Perl
Scripting, Netflow version 9 and SNMP ver3.
Shearman & Sterling 12/2002-
4/2006
Network Specialist: Global Law Firm
. Design, secure, implement and support global LAN/WAN/WLAN networks.
Including Internet access, VPN remote access as well as VPN tunneling to
connect remote offices.
Example design Network migration EIGRP/Frame Relay to OSPF/ATM.
. Evaluate all Enterprise venders and contracts.
. Direct third level support for global user community 2000 plus on Network
related issues.
. Deploy wireless network.
. Deploy security environment consisting Nortel VPN concentrators and
Symantec Firewalls
. Deploy VOIP consisting of Cisco Call Manager.
. Develop Network documentation written and diagrams.
. Define standards and strategies.
. Spear headed all designs and major implementations (local and remote).
. Monitor Network trending/growth, provide scale to growth methodologies.
. Managed large network deployment projects.
REUTERS/RADIANZ/INSTINET
Reuters/Radianz 7/1994 - 12/2002
Network Engineer:
. Co-designed BGP Gateways consisting of Cisco 7204 routers and DS3 WAN
links, needed to establish layer three connectivity between Radianz's IP
Transport network and Instinet's application server network.
. Optimized a global OSPF network by performing a risk analysis. This
consisted of consolidating one OSPF area per city.
. Tested and documented results on a new Cisco IOS software in lab
conditions needed to support QoS, VIP 2/50 and CX architecture under
Cisco 7500 OSPF environment. Test equipment used Smart Bit packet
generator.
. Optimized an OSPF network by redistributing OSPF routing responsibilities
among multiple routers. This enabled the network to utilized more
router's CPUs and not be prone to single point of failure.
. Provide third level support for a global OSPF network, which comprised of
Cisco 7500 routers (RSP2), C1400 FDDI concentrators and Catalyst 5000
switches. Concord was also used to monitor router network resources
(CPU/WAN/LAN) etc.
. Create technical documentation.
. Responsible for the relocation of Instinet's largest remote and regional
Data Centers, Chicago and World Trade Center.
. Responsibilities consisted of working with local Telco providers on
ordering a redundant SONET, designing all environmental (Cat 5e, Fiber
and T1 infrastructure), order data-feeds and test circuits using Firebird
DS3 and T1 tester. In addition to deploying Channel Banks, Racal Milgo
Mux and DSU/CSU.
. Implement regional OSPF network to support client connectivity.
. Implement a layered (Core Distribution and Access) Cisco network in each
of Instinet's tri state facilities as well as Hong Kong and Japan. The
equipment comprised of Catalyst 5000/5500 switches with Route Switch
Module (RSM).
. Implement a global OSPF network.
. Trouble Shoot networks using Network General's Sniffer software.
. Implemented DMZ networks to support vender connectivity.
. Integrate a layer two network on to Nortel Passport Nodes.
. Manage large Data Center project builds nationally and internationally,
consisting of environmental, infrastructure, Telco build out and data
migration.
EDUCATION Queens Borough Community College, A.A.S Electrical Engineering
Technology
Cisco continuing education.
BGP, MPLS, PIX, Switching and Routing.
Pursuing Cisco CCIE certification completed written.
Society Membership IEEE (Computer Society)
LANGUAGES Fluent in Italian