Objective
A position within technology allowing for parlay of demonstrated technical, communication, and project management skills proven by 18 years of successful, Information Technology experience.
Profile
Motivated, personable technical professional with a successful track record of network infrastructure experience. Diplomatic and tactful with professionals and non-professionals at all levels. Experienced in communicating and presenting to C Level Executives. Flexible and versatile – able to maintain a sense of humor under pressure. Thrive in deadline-driven environments. Always eager to take on new challenges.
Professional Experience
BOEHRINGER INGELHEIM USA
Senior Principal Systems Engineer, External Connectivity, February 2013 to May 2017
Responsible for day-to-day implementation and support of external connectivity infrastructure in a global network
oProvide 2nd level support for issues that the NOC cannot handle
oSupport the business by implementing and changing firewall rules as requested in a Palo Alto environment
oMonitor firewall logs in order to troubleshoot connectivity issues
oAssist with site-to-site VPN problems and changes in a Cisco ASA environment
oTroubleshoot and identify problems within the Cisco Ironport web proxy infrastructure
oSupport the remote access VPN infrastructure
oSupport the SSL-VPN infrastructure
Disaster Recovery Test coordinator for External Connectivity Systems
oPerformed this role for the DR test in primary and backup Regional Data Centers
oMade sure all System Leads in my group successfully submitted DR Test plans for their systems
oFailed over all Emergency Class 1 & 2 systems which fell under the External Connectivity umbrella
oMain resource for troubleshooting any problems which occurred with these systems during the test
oFilled out and submitted all test reports after test was completed
Lead firewall engineer used for business carve out
oWorked with Project Manager, System Leads and Application leads to ensure project success
oSet up an isolated network with the firewall to separate site which was being sold
oImplemented firewall rules which allowed resources in this network to communicate with resources in the corporate network
oUsed the firewall logs to troubleshoot connectivity issues and modify rules to allow traffic flow
Coordinated and Implemented Internet Service Provider change
oConstructed RFP and sent it to 4 potential Providers
oMet with providers and determined the best fit for our needs
oCoordinated the change with the provider and internal departments within IT
oTraveled to Regional Data Center to perform cutover and to oversee smooth transition
Design and implement replacement solution for on-site DSL
oDozens of independent DSL connections needed to be replaced by single solution
oOrdered and installed DIA Internet connection into campus
oConfigured and installed separate Cisco switching network which connected to new Internet
oCoordinated and moved over all DSL connections to new network
oPhase 2 was to move these connections over to the corporate LAN utilizing either Cisco SGT or VX-LAN technologies
Responsible for configuring and troubleshooting site-to-site VPN tunnels with external partners
oMeet with partners to determine parameters of the tunnel
oImplement rules on the firewall to restrict traffic to only applications needed
NOC team member training
oDeveloped and deployed training material to the NOC for systems under my responsibility
oAssisted members with handling of Service Manager tickets
GRESHAM INVESTMENT MANAGEMENT LLC
Consultant, Network Engineering, September 2012 to February 2013
Evaluated overall status and health of corporate data network and fixed any prominent issues
oSpanning Tree protocol between core and access switches was incorrect in some instances
oHSRP was improperly configured on some vlans and needed to be addressed
oCisco Nexus 2K switches needed to be set up in a test environment
oRemote Access VPN solution was implemented for user community
oProject plan to move network to new data center needed to be written
MILLER TABAK & CO. LLC
Senior Network Engineer, January 2010 to August 2012
Designed and implemented upgrade of Internet Infrastructure at Miller Tabak
oResearched and decided on Cisco ASA 5520 and Ironport S160 as best solution
oOrdered and managed installation of new DS3 circuit for primary Internet connection
oPut together and executed project plan to migrate from Sonicwall architecture over to Cisco
oMigrated Web Security off of old Surf Control server to new Ironport Web Appliance
Updated the LAN infrastructure in Headquarters as well as in the four remote offices
oCollapsed all non-managed HP switches and Extreme Summit switches into Extreme Alpine 3800 series switches in data closets
oConfigured new EAPS rings between each Alpine switch and the Black Diamond 8810 Core to replace Spanning tree
oUsed the Extreme Summit switches to replace the HP switches in the remote offices
oTravelled to Boston office to reconfigure the LAN
Migration of Market Data Vendors off of Dedicated Connections
oWorked with Tethys, TrackData and ISE engineers to route connections over BT Radianz infrastructure.
oDecommissioned old routers and removed routes to networks
Upgraded software on all network hardware
oCode on all Extreme Summit and Black Diamond switches were brought up to current release
oCode on Cisco 3662 routers and Catalyst 2950 switches were over 5 years old and made current
oUpgraded code on Sonicwall Pro 3060 firewall from Standard to Enhanced. This allowed us to activate the Gateway anti-virus and Intrusion prevention features.
Created network documentation
oCreated Visio diagrams for all areas of the network infrastructure
Market Data, LAN, WAN, and Internet
oInventoried all pieces of Network Hardware
Documented make, model, location, usernames and passwords for each device
Implementation of Network Management System
oInstalled Zenoss Core to perform Fault and Event management on all network devices while more robust solutions are evaluated.
oPut the EPICenter 6.0 Sever into production to monitor and report on all of the Extreme Equipment
oInstalled and evaluated Orion NPM v9 for 60 days
Made improvements to Remote Access infrastructure
oSet up VPN on Cisco ASAs for user remote access
oCreated a document which outlined the procedure for Cisco VPN client installation
oAdd new users to firewall as requested
Responsible for day-to-day implementation and support of company’s data network
oMonitor Router and Switch links with Zenoss and EPICenter
oProvide computer support for traders and back office staff at headquarters and remote sites
oWork with Market Data Vendors to provide update routes and host access for new connections
oSupported users at home and on the road with VPN issues
oConstantly updating network documentation and diagrams using Visio and Excel
UST, INC.
Senior Network Analyst, 2004 to June 2009
Assisted in the design and implementation of new corporate data and VoIP network for new Headquarters
oCreated project plan to move network servers and firewalls to new location within a two day window
oPresented plan to CIO for approval
oInterviewed both Cisco and Extreme to determine best switching solution
oAssisted with the testing of VoIP solution from Avaya and ShoreTel
oAssisted in the design of the new LAN for our corporate headquarters
oStaged and configured new Extreme BD 8810 core and edge switches for new HQ
oImplemented new WLAN solution utilizing Extreme Summit WM Controller
Traveled to Regional Sales offices to implement architecture to support ShoreTel VoIP system
oRedesigned the LAN to accommodate multiple VLANs
oConfigured and installed new Extreme Summit X450 switches to support new phone system
oWorked with other IT groups to change IP Addressing scheme of entire LAN
oAssisted telecomm group with installation of ShoreTel system and VoIP phones
Migrated entire enterprise WAN from Frame-Relay to MPLS
oCoordinated new circuit installs with Sprint and satellite offices
oReconfigured routers to implement mpls
Upgraded all of the Cisco routers in the enterprise
oDetermined what equipment was needed to perform upgrade
oGathered quotes from different vendors and wrote up the purchase orders
oReplaced all 1720 routers with 1841 modular routers
oReplaced all 3662 and 3745 routers with 3845 routers
oCoordinated all installs with non-IT personnel in the plants and sales offices
Assisted in the enforcement of corporate IT security
oCreated certificates for VPN users utilizing RSA server
oCreated user profiles on the Checkpoint R65 firewalls for user VPN connectivity
oHelped migrate firewalls over from Windows 2003 platform to Checkpoint R65 Splat platform on HP Proliant DL380 G5 boxes
oAssisted in the creation of site-to-site VPN tunnels to outside clients
oUtilize Checkpoint Tracker to troubleshoot connection issues through the firewall
oProcess requests from various departments when connections through firewall need to be opened
Responsible for administration of Spectrum Network Management System version 8.0
oPerform software upgrades as needed on server
oAdd/delete models to landscape as needed
oWork with different areas of IT to ensure proper personnel are alerted on outages
Spearheaded a project to redesign the LAN at our winery in Washington state
oWorked with IT staff on site to order equipment and schedule electricians to run fiber
oHad the team members stage the new Extreme X450 switches so I could configure it remotely
oSpent a weekend on site with the team to implement new network design
Responsible for day-to-day support of UST’s enterprise network
oMonitored network and server connections using Spectrum Network Management System
oResponsible troubleshooting WAN problems with Sprint
oWorked with Help Desk and Desktop support groups to ensure LAN connectivity
oResponsible for keeping all Network Documentation up to date using Microsoft Visio
SAC CAPITAL ADVISORS, LLC
Network Engineer, 2003 to 2004
Worked directly with a variety of Market Data vendors setting up new connections into our network
oCoordinated new T1 circuit installs with carriers and Market Data vendors
oInstalled vendor network gear into our data center
oWrote up and implemented route and vlan additions to the routers and firewalls
oWorked with Market data vendor engineers to ensure end-to-end connectivity
oCreated network diagrams of all of our Market Data Connections and configured them in Solarwinds in order to monitor them
oWorked closely with the FIX group when changes were made to the FIX servers or vendor equipment
Mapped out and implemented a project to install out-of-band network for company servers
oOrdered Linksys 10/100 switches to install in each server cabinet
oConfigured and installed Cisco 5509 as Out-of-band switch which uplinked to the core
oTraced and documented all server ilo connections to server farm switches
oCoordinated with server support team the cutover to the new infrastructure
Assisted in the build-out of two new offices for the company
oConfigured and installed Cisco 2600 routers and catalyst 2950 switches for remote office location
oConfigured Cisco Aironet 1400 Wireless Bridges to connect home office with satellite office
oOrdered the installation of new WAN circuits for connectivity into home office
oWorked with electricians to ensure cabling infrastructure was tested and in place
oAssisted desktop support group with migration of users to new facility
Worked on getting all PIX 5xx firewalls into CiscoWorks
oGot all firewalls into inventory so syslog analysis could be performed
oSet up filters in Ciscoworks so firewalls would not overload syslog file
oInstalled Logrot utility on Ciscoworks server to rotate syslog file if threshold was reached
oImplemented commands on firewalls to limit logging to accounting events
oUpdated Network Procedure manual to include instructions on how to view logs
Wrote up and implemented procedure for home wireless users
oCreated network installation document for Linksys Wireless router for Desktop Support
oIncluded instructions on configuring 128-bit WEP on router and wireless client
oWas point of contact for any installation issues
Responsible for day-to-day implementation and support of company’s data network
oMonitored WAN links and server links using Solar Winds Network Performance Monitor
oWorked with Desktop and Trader desk support groups to ensure LAN connectivity
oAssisted with moves, adds, and changes for IT and Traders
oSupported wireless users both in the office and at the homes
oConstantly updating network documentation and diagrams using Visio and Solarwinds
AIG TRADING, INC.
Network Engineer, 2002 to 2003
Designed, tested, and implemented Cisco ACS solution into production
oDeployed Windows 2000 Advanced Server on a Dell PowerEdge 1650 to load Cisco application on
oSet up secondary Dell server in DR location in order to replicate and provide failover
oSet up Network groups to logically separate network devices
oSet up different Shell command authorization sets to limit types of access to network devices
oMonitor user activity in database to ensure no prohibited activity
Planned and implemented the move of users off of old Catalyst 5500’s and onto the new 6500 Access switches
oCreated spreadsheet of all users’ ip addresses, MAC addresses, and patch panel locations
o100% user connectivity when moving over to new switching platform
Designed and deployed wireless solution into production
oconfigured 2 Cisco Aironet 1220 Access Points and put into user environment
oSet up authentication between the wireless client, Cisco ACS, and Windows 2000 server using PEAP and RSA Secure ID token
oGenerated certificates on the windows 2000 server to pass to the client
oInstalled wireless networking card and client on users’ Windows XP and 2000 machines
oMonitor ACS and Access Point for wireless intruders
Planned and implemented the initial deployment of Cisco IDS into production
Migrated older servers off of existing 6509 switches onto new 4509 Server Farm
Worked with external clients to provide connectivity and access to AIG Network
Provide network support for Desktop, Server, and Telecomm administrators in Technology group
THRUPOINT, INC.
Internetworking Solutions Engineer, 1999 to 2002
Enterprise Switching Project at Morgan Stanley, 9 months
oDesigned migration plan from existing hybrid shared-switched environment to full switched infrastructure
oDesigned Engineering specifications and configuration templates for McGraw-Hill facility
oStaged and built Cisco Catalyst 5xxx switches
oMonitor switches for specified burn-in period to verify configurations and to monitor possible failed hardware
oWork with facilities and union electricians to coordinate cabling installs and failure analysis
oWrite up and present turnover document at weekly meeting of all team members
oCutover of existing switched infrastructure to new infrastructure based on engineering’s design
Identify users & servers that need to be cut over utilizing various Unix scripts
Write turnover documents to ensure migration runs smoothly
Incorporate changes into Spectrum and MSDW NIS platform
Work with operations to resolve and issues resulting from the new infrastructure/migration
JP Morgan Chase assignment, 3 months
oAnalyzed internal IT department’s billing records to various business units within the company in an attempt to save $2M-$3M per year
Set up queries within MS Access tables to identify possible duplicate charges on circuits and router/switch ports
Compared data in the Business Units’ network drawings to that in the IT department’s billing tables to identify discrepancies
oCompiled a new inventory of routers, switches, and circuits to accurately bill the business units which was then presented to all of the business units for their review
Reuters America, Inc. assignment, 6 months
oDesign and build out of network infrastructure for new 3 Times Square Building
oStaged and built 30 Cisco 6509 switches for core, distribution, and access layers
oMonitor switches for specified burn-in period to verify configurations and to monitor possible failed hardware
oTested all new desk jack locations using Fluke LAN meter
oCutover of new infrastructure based on engineering’s design
Work with Reuters personnel to ensure proper VLAN configuration
Provide day to day support on all switches until equipment turnover date
Make changes in design as needed to suit customers’ needs
RMA any failed hardware back to Cisco
Keyspan Services, 4 month assignment
oDesigned and implemented plan to physically move all network equipment from old remote location to new one
oRedesigned and implemented customer’s ISDN backup solution for the Frame Relay network
oProvide network support for IS staff on both the local and wide-area sides
oProvided maintenance for routers
Brought all routers up to same version of IOS
Implemented security on all interfaces
Cleared out static routes that were no longer valid
OXFORD HEALTH PLANS
Network Engineer, 1997 to 1999
Installation and configuration of Cisco 75xx routers, 35xx switches, and 3Com hubs in Corporate network
Responsible for installation and troubleshooting of T1, Frame Relay, and ISDN circuits
Traveled to Ireland office in order to discover cause of excessive errors on the LAN
oFound excessive traffic on segment and alleviated it by installing another one
Interface with hardware vendors to determine best solution for ISDN remote access
Configure and support ISDN remote solution for Senior Executives
oDocumented and presented this whole process to other engineers
oWorked closely with CEO to ensure he understood the functionality of the solution
Responsible for placing purchase orders for new network equipment
Responsible for connecting outside companies to Oxford network. This included the coordination of circuit install, design and implementation of router connection, and coordination with security group
Responsible for analyzing monthly carrier bills to discover any discrepancies
oWas able to uncover $40,000 in savings over a 6 month period
oDiscovered carrier was still accumulating monthly charges on de-commissioned circuits
Education
UNIVERSITY OF CONNECTICUT SCHOOL OF BUSINESS – STAMFORD, CT
MBA Finance, May 2011
POLYTECHNIC INSTITUTE OF NEW YORK UNIVERSITY – HAWTHORNE, NY
MS Telecommunications Networks, 2002
MANHATTAN COLLEGE – RIVERDALE, NY
BS Electrical Engineering, 1993
Certifications
Cisco Certified Network Associate (CCNA) – expired in 2002
Cisco Certified Design Associate (CCDA) – expired in 2003
Cisco Certified Network Professional (CCNP) – expired in 2003