Support Cisco
Resume:
Profile
I am a tact and responsible team professional who can communicate effectively to all levels. Accustomed to working on own initiative or as part of a team in a variety of disciplines including infrastructure design, configuration, assessment and support of technical development within an ITIL framework.
Knowledge and Skills
Securitize firewalls using IPS, CSA (HIPS) Cisco ASA 5545 series with URL filtering, Splunk access via HA Firewalls in Active/Standby mode for Context Cisco ASA, Checkpoint R77.30 UAT LAN for Pen tests, IDS / IPS. Handle Cisco 5585 upgrade to Cisco FirePower with web access. Checkpoint R77 rules administration. Support Cisco 6509 with HSRP 4506-E in VSS with VLan’s, Ether Channels, STP. Cisco 3850 access distribution to Core using OSPF, EIGRP Layer-3 routing with Nexus 5k. Cisco NAC – policy based posture. Riverbed WAN Acceleration, manage Kemp Load-Balancer, Wifi network roll-out Cisco AP’s via WLC-5508 with AP’s for local / Flex. Cisco AnyConnect. Change Management process.
Work Experience
Senior Security Engineer Nov 2016 to date
Herjavec Group, Toronto, Canada.
Enable Splunk access via Cisco ASA firewalls, setup Firemon Syslog server for all firewall types
Configure Cisco ASA 5585-X, 5545 as active/standby VPN Firewalls for Cisco AnyConnect client access
Design Client VLan on Cisco 6500 to load-balance Gig-Ethernet / Site to site VPN to Jumpbox access for upgraded Cisco 5585 to Cisco FirePower, Cisco ISE, Cisco AMP and Cisco DNS for all Internet sites.
Manage several Cisco ASA 5545 firewalls to add objects, access and NAT rules on Context / System cluster for Internal / External firewalls, upgrade External to Cisco FirePower ver 6.2 manage via web
Administration of Checkpoint Firewall via SmartDashboard R77.30 cluster, enable rules, access, NAT
Create new site to site VPN using SHA256 due to SHA1 vulnerability, from Checkpoint to Cisco ASA 5520, Cisco ASA 5545 to Juniper SRX-240 using iKEV2 with SHA256 encryption, with NATed tunnel
Security Consultant Nov 2013 to Sept 2016
Plan / Bouygues Construction, Concord, Ont. Canada
Manage TCP/IP Network / Firewall - Cisco ASA, perform IOS / VLAN updates, Site-to-Site VPN, routing / switching, perform IP Subnet upgrade, IPSEC VPN, move remote site to MPLS cloud, Wireless LAN changes for a/b/g/n ranges, implement OSPF, EIGRP, Vendor MPLS links to WAN sites via OSPF.
Configure Cisco ASA 5506-X, 5515 as active/standby with AnyConnect VPN and IP Filtering access
Manage Cisco 6500, 4500 switches with EtherChannels using STP, OSPF updates, EIGEP, MPLS links
Upgrade VPN sites to MPLS links / carrier, design IP subnets, configure UAT LAN for penetration tests
Support Cisco 5508 WLC for local / Flexconnect AP’s on separate SSID’s on 802.11 b/g on 2.4 / 5 Mhz
Network Administrator Jan 2013 to July 2013
Golder Associates, Mississauga, Canada
Support DMVPN sites on MPLS cloud using IPSEC VPN Tunnels via Cisco 2911 with QOS (Traffic )
Troubleshoot EIGRP, OSPF area routes, STP on Stack Switches, VTP / VLANs, trunks / access ports
DNS update, amend zone / record type, AD / External DNS sync, reverse lookup/ DIG/ NSLOOKUP
Setup Cisco WAAS connections and support Riverbed Steelhead WAN Accelerator for various QOS
Senior Technician Nov 2011 to Nov 2012
Teletech Sudbury, Sudbury, Canada
Network Support for LAN/WAN issues, make firewall rule changes, NAT, Static, IP-sub netting, Access-Lists changes on Cisco PIX to Checkpoint – R65 on Solaris – add rules, troubleshoot, perform backups via Crontab, insert Static NAT rules and Authentication rules, routing issues – EIGRP / OSPF, BGP issues
Maintain Cisco 6509 switch accessed via TACACS, manage HSRP / NAT, VLAN access, / IOS upgrade
Work Experience
Data Centre Technician April 2010 to Oct 2011
Teletech London, UK
Support dual Edge Cisco 6509 with HSRP config / Core Cisco 7206 with EIGRP, OSPF areas, BGP routes
Configure Cisco 3500 switches for different VLANS, Support connects to Alteon 5412 switch load balancer
SAN switch upgrade CiscoMDS9500 from Brocade with SM Fibre via Change Management Release
Configure full DNS infrastructure on Redhat Linux 6.0 for primary / Secondary, resolve Cache issues
Install cabling Cat5e/Cat6/fibre for EMC SAN NS120 setup APC redundant-power monitoring - MRTG
Data Centre Network Operations July 2008 – March 2010
Level-3 (UK) Ltd., London, UK
Setup Data Centre for Remote Access Managed Services via Cisco 6500 switches using RIPE IP address
Support Windows2003 for AD configure DNS on RHEL 5.1 setup Zones, reverse-lookup, Sync with ISP
Monitoring via HP-Open View / Solarwinds / Nagios and Cacti, monitor all HSRP failover connections
Work with NOC and 3rd parties on 24 x 7 shifts, handle Power issues, Mains, UPS / Battery, Rack Space
Network Analyst August 2005 – April 2008
Toyota (GB) PLC, Epsom, UK
Administration of Bind DNS on Solaris 6 with all record types A, MX and C use Dig / NSlookup / debug
Upgrade WAN ISDN link to dual ADSL MPLS cloud, IP Subnetting, routing via Cisco ACS RADIUS server for Cisco ADSL routers (800 and 1840), Cisco NAC authentication, ensuring policy based posture
Install Network Switches / Routers with IOS upgrades, perform cabling Cat5e changes, fibre laying
Support Bluecoat Proxy–SG8100 for WAN optimization of web access via Alteon Load Balancer
Infrastructure Systems Analyst Dec 2002 – Dec 2004
Electronic Data System (EDS), UK
National Health Service Project
Setup Solaris 8 Sun Directory Server 5.2 with Windows2000 AD via LDAP for repository of patient records, configure Sun One Messaging with SMTP / X500 connectors, with Mail Groups
UK County Courts
Support Win2000 server with MS-Exchange2000 for Crown Court services via MS-Outlook, SMTP relay
Connect courts via ADSL - Cisco803 routers attached to PIX 515 for VPN access for court officials
Qualifications
Management Sciences Dip. (Hon), (University of Ryerson, Toronto. Canada)
(Major Advanced Microcomputers & Business with Statistics)
MCSE ( TCP/IP and MS-Exchange )
(course completed at Object Arts, Toronto. Canada)
Cisco Certified Network Associate - CCNA, Torontro, Canada
Cisco Firepower – Threat Defence
Cisco AMP for Endpoints
Cisco Web,
Cisco ISE
Security Clearance Level 1
Security Clearance Level II (awaiting)
Nationality: Canadian
Driving License: Full
Contact this candidate