Management Engineer
Resume:
Matt Fahrner ****@***********.***
PO Box *** +1-603-***-****
Lebanon, NH 03766
USA
QUALIFICATION HIGHLIGHTS:
20+ years IT experience enabling the growth of a $3 billion, 400+ store, 25,000+ employee
organization.
More than 5 years senior level IT management experience.
More than 10 years experience managing a 12+ member IT department..
More than 15 years experience researching, designing, and managing systems and network related
projects on an enterprise level.
Experienced with large scale enterprise architecture and management ranging across 2 datacenters, 40+
states, 400+ sites, 10,000+ Unix/Windows systems, 10,000+ end users, and 20,000+ devices.
Primary systems architect with extensive top level engineering and last resort problem solving.
Wide experience with Oracle database, middle-tier, and client networking.
Extensive computer security experience including hardening, firewalling, incidence response, and
customer data protection.
Significant experience in the design of large datacenter HA and DR setups.
Extremely wide scope of understanding of computer architectures - from systems programming, to OS
configuration, to systems integration, to LAN configurations, to WAN configurations, to telecom, to
Internet configurations.
Extremely diverse experience base of different hardware platforms, software products, peripherals, and
networking equipment including vast Unix and Windows experience.
Extensive personnel management experience, including numerous candidate selections.
Significant experience with purchasing and contract negotiation.
SKILLS/PROFICIENCY SUMMARY:
OS Platforms: Unix (SuSE, RedHat, Fedora Core, Solaris, SunOS, Sequent PTX, AIX, Berkeley,
SVR4, Xenix), Windows XP/2000/2003/Me/98/95, Cisco IOS, Cisco CatOS, Windows Mobile,
PalmOS, MS-DOS, DTSS/DCTS
Networking: Enterprise class Cisco routers/switches (6500, 7000 series), Cisco edge switches/routers,
F5 load balancers, Cisco APs, Cisco VPN access servers, Cisco RAS servers, Cisco PIX/FWSM
firewalls, Cisco VOIP/VOFR products, CONTEL/AT+T Tridom/Hughes satellite hardware, various
switches/hubs.
Systems: Kickstart, Jumpstart, RAID, LVM, Virtualization (Xen), YaST, Yum, RPM, SVR4 packaging
Security: PCI, SOX, IdM, SSO, IAM, SEM, VPN, firewalls (PIX, FWSM, IOS ACL, iptables),
application firewall, SSL cert/PKI management, virus protection (Norton, McAfee, Kasperski, ESET),
SPAM monitoring (Proofpoint, Spamassassin), two-factor authentication, IDS/IPS (ISS, Air Defense,
Savant, logwatch), authenticated web proxy (Squid, Netscape), spyware/malware disinfection.
Web technologies: HTML, XML, JavaScript, PHP, CGI, HTTPS/SSL
Network servers: IPAM, ISC BIND (DNS), ISC DHCP, Apache, Squid, OpenLDAP, Sendmail, Oracle
Portal, Oracle Collaboration Suite, SAMBA, BES, Exchange 2007
Languages: C/C++, Perl, Unix shell scripting, TCL, Java, PL/1, Basic, Lisp, assembly
Programming specialties: sockets/TLI, SunRPC, multi-threading, asynchronous I/O, X.25, RS-232,
general systems programming, DOS programming, encryption.
Protocols : TCP/IP, UDP/IP, HTTP, HTTPS, LDAP, NFS, NIS/YP, SunRPC, XDR, SMTP, SQL*Net,
SNMP, PPP, VPN (PPTP/IPSec), DSL, BGP, RIP, EIGRP, IPV6, etherchannel, 802.1Q (VLAN),
802.11(b/g), WPA/WPA2, ActiveSync, IEEE 802.3, FDDI, X.25, X11, RS-232 signaling.
Media: CAT3-CAT5, 568-B, fiber, dark fiber, GBIC, coax, thicknet, AUI, WiFi, satin, RS-232
Authentication platforms: LDAP (OID, Active Directory, and Open LDAP), Oracle OIM, Oracle SSO,
NIS/YP, NIS+, Radius, Unix shadow, two-factor (RSA/Entrust)
Software: Visio, Outlook, Excel, Word, Project, Acrobat Professional, Photoshop, Corel Draw, Adobe
Illustrator, Adobe GoLive, Remedy, Service-Now, SolarWinds, Ethereal/Wireshark
Database: Oracle, mySQL, ndb
SELECTED CAREER ACHIEVEMENTS:
Architecture:
Architected enterprise-wide network infrastructure and most of corporate and store base system setups.
Chief technical architect of DR (Disaster Recovery) plan.
Co-architected Identity Management (IdM) system, greatly simplifying account creation and
maintenance and increasing security.
Analyzed security infrastructure requirements and issues and presented executive plan to re-architecture
our IT security department.
Researched, analyzed, and selected enterprise mail and file archive product for litigation/discovery
support and FRCP compliance.
Made significant design contributions to our Exchange Migration Team.
Re-analyzed our store back office Linux OS selection to set the future direction of Linux use.
Evaluated and proposed now planned use of Microsoft Sharepoint as replacement collaboration system.
Key member of IT Technology Review team.
Management:
Member of IT Directors management group.
Work directly with CIO and CTO on regular basis.
Drive or directly influence direction of numerous systems and other IT projects.
Managed the daily requirements 12+ employees for over 10 years including, hiring, salaries, time
management, and interpersonal issues resolution.
Managed networking and telecom for 2 major datacenters, 400+ sites, 10,000+ Unix/Windows systems,
10,000+ end users, and 20,000+ devices.
Significant project management experience, including driving numerous mission critical projects with
enterprise level exposure compromising many hundreds of networks and thousands of systems.
Negotiated numerous contracts and purchases to maintain systems/networking infrastructure.
Networking/Systems:
Built first ever IP based corporate network from the ground up.
Oversaw the expansion of networking and telecommunications infrastructure from a few Sun
workstations in a single location, to over 10,000 systems in 400+ locations.
Built a small team to a large network group able to support enterprise networking requirements.
Oversaw multiple iterations of WAN and LAN technologies, migrating from earlier X.25 based
networking, to satellite, to IP over frame relay.
Oversaw the implementation of multiple large scale corporate headquarter and warehouse LAN/WAN
networking projects including required HA, telecomm, and disaster recovery (DR) setups.
Supported the networking requirements of Oracle databases including SQL*Net, Grid Control, RAC,
Portal, and Collaboration Suite.
Drove implementation of VOFR and VOIP replacements saving the company millions in voice costs.
Oracle database, middle-tier, and client networking including RAC setups, Portal, Collaboration,
Discoverer, OID, OIM, and SSO with firewalling.
Designed and implemented secure wireless (WiFi) infrastructure.
Initiated first ever Internet connectivity, including registration of class B and class C networks, domain
registrations, ASN registrations, redundant BGP setups, and SSL certificate management.
Built first DNS, DHCP, NFS, and NIS frameworks.
Integrated Windows technologies including Active Directory and CIFS shares.
Significant Windows desktop troubleshooting experience.
Created sendmail based mail relay and aliasing infrastructure.
Created first ever store back office cookie-cutter server installs. Co-created current Linux back-office
server and register installs.
Literally thousands of system and networking installs on both large and small scale systems including
disk setup (partitioning, RAID, mirroring, striping, etc.), kernel reconfigurations, user management,
desktop setup, and cron maintenance.
Security:
Responsible for managing all security projects.
Primary incident response team member.
Responsible to continually analyze security concerns and set/revise policy with other senior IT
management and security teams.
Co-architected identity management (IdM) and LDAP infrastructure.
Member of credit card PCI remediation team.
Numerous SOX compliance and remediation projects.
Maintain Cisco PIX and FWSM firewalls, including primary author of all firewall access lists.
Extensive DMZ and bastion host setups including secure HTTP, HTTPS, FTP, SSH, SMTPS, and
IMAPS services..
Created wireless security infrastructure including new revamp to use WPA.
Implemented first ever C encryption library (still in use).
Longstanding and major contributor to IT Security Council .
Member of multiple product selection teams including: firewalls, Proxy, VPN, IM monitoring, log
management, anti-SPAM, IDS/IPS, application firewall, and WIDS.
Programming:
Wrote multi-threaded C++ credit card authorization daemon using Sun RPCs and VISA VIP/ISO
format messaging to service enterprise-wide authorization requirements (still in use). Services over
3000 registers with an average response time of less than 2 seconds.
Wrote Price Look-Up (PLU) daemons to support real time register price lookup.
Wrote numerous C socket level and systems programming applications to support systems integration
with legacy systems, including the use of X.25 code.
Wrote numerous programs to parse and create data streams to do ETL transformations, including: credit
card reconciliation processes, card issuer communication, and ticket printing.
Taught internal C, Java, and Perl classes.
Regularly write Perl and bourne shell code to support systems requirements, including management of
DNS, NIS, system-wide cron repositories, system inventories, upgrades, etc.
PROFESSIONAL EXPERIENCE:
Burlington Coat Factory:
Chief Systems Architect Jan 2006 Present
Manager of Networking Jan 2002 Jan 2006
Network Supervisor Jan 1998 Jan 2002
Lead Network Engineer Jan 1996 Jan 1998
Senior Network Engineer Jan 1991 Jan 1996
Systems Programmer/Network Engineer Jan 1988 Jan 1991
Junior Programmer Feb 1987 Jan 1988
Consulting:
Network Consultant, Bob Moses, CPA Jan 2004 Present
Providing network, systems, and security consulting and support on an ongoing basis, including
maintenance of Internet connectivity and Linux and Windows systems.
Software Developer, System Excelerator, Inc Aug 2000 Jan 2002
Provided C programming consulting for DoD helicopter component status monitoring executing on an
embedded RPX using MPC823 based ARM processor running Linux.
Turnpike Technologies, ISP Jun 1994 Jul 1998
Helped set up initial ISP and Internet connectivity and firewalls. Provided high level support..
Certifications: Novell Certified Linux Professional (CLP), Novell Certified Linux Administrator (CLA), Novell
Linux Technical Specialist
Contact this candidate