Network Manager
Resume:
VITO TRIMLETT
Warwick, NY. *****
EXPERIENCE DESCRIPTION
Technical Experience
•Years: Over 25 years of “HANDS-ON” experience in the technical and financial industry.
•Years: Over 20 years of FIREWALL experience (Cisco)
•Years : Over 7 years of Palo Alto w/4 years of Panorama
•Years: Over 5 Years of Juniper SRX experience.
•Years: 8 Years of Juniper firewall, switch and router experience
•Years: Over 20 years Content Management, filtering and easement.
•Years: Over 20 years of Network Design and Security design (Firewalls, IDS, Load Balancer w/Proxy)
•Years : Over 10 years of Cisco Wireless, Aironet, Meraki experience
•Years: Over 20 years. Of Network, systems and/or Security Operations
General List of Hardware/Software supported, Below Experience
•WIRELESS: Deployed and designed Cisco wireless deployment of controllers and access-points
•WIRELESS: Managed and planned the survery of sites with major wireless deployment
•NETWORK MULTI-VENDOR SUPPORT : Deployed and supported multi vendor enviroments using JNPR SRX firewalls and MX series with Cisco NEXUS core while using Palo Alto to Public Internet
•MULTICAST : for Market data and video to deliver corporate feeds to branches.
•ROUTING: Designed and supported multiple designs using BGP at edge with redistribution into OSPF and EIGRP for IGP. Use of EIGRP or OSPF depending on design or company.
•ROUTING Design and Audit: Designs included managing the integration of 350 clients with 1gig to 10 gigabit circuits or cross connects. Used BGP at Edge, EIGRP for IGP for Multicast Market data feeds to clients and OSPF for FIX Trading networks. Segmented Production trading from corporate services by a throttle network. This network was audited and approved by the S.E.C as it was the New Stock Exchange for the United States at the time. The Audit was called an “A.R.P. Review”
•Firewall and Load Balancer Hardware: F5 LTM,GTM,ASM Foundry 850, Cisco CSS, Brocade ADX, A10,Cisco ACE,
•SCRIPTING: Managed Python Scripts for start of day and End of day.
•Microsoft Active Directory: Group Policies, DNS and Microsoft Server 2008,2012
•WIRELESS: Designed, site surveyed and implemented multiple 20 AP -50 AP setups for full Wireless connectivity.
•WIRELESS: Aruba ClearPass and AirWave, ARUBA 7210 and 6240, Cisco ISE, Cisco Meraki installations. Cisco W-Controller using 8540 and 5520
•FIREWALL MIGRATIONS & SUPPORT : From Cisco ASA to Palo Alto for 3 different companies. Supported and/or implemented CheckPoint Firewalls
•FIREWALL DESIGN: Multiple designs using VPN IPSEC site to site tunnels to offices as well as Client to Site VPN.
•VRF routes: Have created multiple VRF’s for MPLS, VOICE routing using BGP for routing.
•VPN IPSEC Site to Site – Configured designs w/ Cisco ASA and Routers using VPN IPSEC, GRE.
•VPN Client to Site – Configured and supported Client to site VPN on Cisco ASA. Managed a network of 20 branches all using VPN S2
•Network Routers and Switching Hardware Platforms: Cisco IOS and Cisco Nexus Platforms, Arista, Blade Networks, Juniper (light), Cabletron, Bay Networks, Extreme, 3COM, HP switches, Brocade
•Support: Supported Source Fire IDS based off of alerting.
Migration 1a: Have led and/or have been a lead in 3 PBX to VOIP migrations for both Cisco CM and Avaya Media Gateways
Migration 2a: VOIP migrations ranged from 100 people, 300 to 700 employees.
•Migration: Led and Designed Direct Edge move and launch of their “Stock Exchange” from 545 Washington NJ to Equinix NY4. Designed server and cable layout, Network design and Firewall and/or ACL placement.
•Design: Have Led, designed, deployed and ultimately setup management of 5 Major Network build-outs and over 20 small to mid-size Network build-outs.
•Designed : Branch networks with MPLS, GRE, IPSEC w/BGP and OSPF using Riverbed WAN Optimizing for WAN
•Load Balancer Experience: Foundry 850, F5-BIG IP (LTM) Brocade ADX, CISCO CSS series
•Firewall Experience: Cisco ASA, PIX, Palo Alto, Checkpoint (7 years ago)”
•Migrations: Designed and Led TD securities Migration of trader and server “logins” from legacy network in NYC to Equinix and Savvis S.E.F Trading network and managed various S.E.F.s or ECN (BrokerTek, Tradition, Velocity,Garban (Brokertek), Prebon, ICAP…and more)
•Migrations: Amaranth, Led Migration 350 Employees from Building to building which included all new servers, Phones, Turrets, Feeds etc.
•Design: PIM w/Multicast Sparse-Dense Mode for Clients registering for EDGA EDGX Multicast market feeds.
•Network Management : Orion NPM, NCM, ISITUP for TCP port or WMI service monitoring. Orion Syslog, Splunk Syslog or Syslog watcher (my favorite as it is free) for alerting on parsed errors.
•1 year of Source Fire IDS/IPS implementation and management. (7 years ago)
•GRE : GRE Tunnel w/IPSEC S2S using BGP and HSRP w/route tracking failover,
•VOIP migrations from Nortel 81 to Cisco VOIP system 2x and once to an Avaya Media Gateway, communication manager and session manager.
•Has been Lead Level 2-3 Analyst where I either assisted in or led the implementation of monitoring methodology and troubleshooting procedures.
•Designed full network design with MSFT platform Servers, SAN, Network, SAN switch, RAM SAN, Firewalls, Load Balancers
CLOUD BASED EXPEREINCE
2 years of cloud integration and support Experience with AZURE and AWS
Compiled a "CLOUD COST" proposal compared to ON PREMISE Hardware costs report.
Prepared flexible road-map for executive summary
Setup Security guidelines required for connectivity and implementation strategy.
TEST FAIL-OVER SCENARIO: performed to gauge: A) time to fail-over B) if VM sync working
Integrated redundant connections one to "AWS" and other to "AZURE".
Performed performance testing from internal to CLOUD destinations.
Used multi-platform design and projected USAGE and COST metrics.
Analyzed and worked with Azure on "Business Analytic data."
Setup connectivity via VPN LAN to LAN
Gathered and performed analysis on Latency, data performance
MIGRATIONS
•Led management of 4000 client logins from legacy data centers to new primary data cents (DIRECT EDGE)
•Led validation of Migration to new location networks (Direct Edge, TD Securities, RocketFuel, Amaranth LLC)
•Participated in or led 5 VOIP migrations from legacy PBX (Avaya 2x, Cisco 3x)
•Led 400 branch migration to Avaya VOIP solution over MPLS/QOS using OSPF (UBS)
•Participated in migration to new infrastructure WAN different time(Citigroup, TD Securities, Direct Edge)
•Led and participated im documentation "scrubbing" for over 500 diagrams (Morgan Stanley and RocketFuel)
•Led multiple Firewall and Load Balancer migrations (to F5,Checkpoint and Palo Alto)
ENTERPRISE/GLOBAL TELEPRESENCE SUPPORT:
•CITIGROUP GLOBAL NETWORK - thousands of sites and data centers
•UBS GLOBAL NETWORK - 400 branches or data centers
•TD SECURITIES GLOBAL NETWORK - 25 Branches (securities not bank)
•MORGAN STANLEY GLOBAL NETWORK - Hundreds of sites and data centers
•INSTINET GLOBAL NETWORK - 40 sites.
•BEAR STEARNS GLOBAL NETWORK - Hundreds of sites and data centers
TOOLS:
•SOLAR WINDS: NPM,NCM
•HP OV
•SPECTRUM
•NAGIOS
•ZENOSS
•BIG BROTHER
•MANAGE ENGINE
•WIRESHARK
•PANORAMA
•NETBRAIN
•STATSEEKER
•RIVERBED
DATA or COLO CENTERS Familiar With/ Have worked at
Equinix (NY2,NY4,NY5,NY7), Savvis (NJ2) Weehawken, Telx-Clifton, Rochele Park (Espeed),
Mahwah (NYSE), 1400 Federal Verizon (NASDAQ\ RiverBend (Stamford), 3500 Steeles (TSX), 2
Slough London
EXPERIENCE DESCRIPTION END
Company Employment History
Latency Watch – Own S-Corp Present. - Technical Advisor or Director Level Leadership Roles
April 2011-Present
Clients listed below. Below List is the varied list of projects and jobs worked on for our clients.
•CVS Corporate (August 2016 – Present)
Firewall - Managed, designed and deployed – Palo Alto 4050,5050 with Threat Intellogence. Panorama used to managed multiple sites.
Wireless - Managed, supported and deployed- Cisco Meraki MR12 and MR18 based on Building size and employee
Network – BGP, OSPF and EIGRP (Where Cisco) multi vendor environment with Nexus 7100 and 7500 switch. JNPR MX series and Cisco 4300 ISR routers.
Content switching – F5 LTM and A10 load balancers.
•RocketFuel :( August 2015 – August 2016 - Technology Director New Direction
F5 LTM/GTM day to day support as well as installation at 15 data centers.
Designed 20 data center and branch office network using OSPF, Cisco and Checkpoint Firewalls for segmentation of network. Performed analysis to choose AZURE and AWS service, along with Onboarding & supporting service along with stat analysis.
Setup cookie cutter "Kits" for each branch with variations for differences site to site. Supported VOIP network using Avaya Media Gateways .
•SOBERLINK –Technical Advisor (May 2015-August 2015) – Advisor and Architect
Managed migration from Nortel PBX to CISCO VOIP network using SIP for multi office setup. This allowed for branch adds or moves. Performed analysis to choose AZURE and AWS service, along with Onboarding & supporting service along with stat analysis .Designed and Implemented 2 site, 6 tunnel setup with GRE, IPSEC, BGP and Palo Alto (Outside and Pub/Priv DMZ) and Cisco ASA firewalls (inside zone
segmentation). Migrated 20,000 Hand Held Wireless Breath check.
•CitiBank- (December 2014 - May 2015) - Technology Design Direcotor.
Supported Palo Alto day to day and led migration from Cisco to 4050.
Network Design: Using Nexus and FEX implementation w/ F5 BIG IP LTM and Palo Alto 5050 and CheckPoint Firewalls. For Branch delivery, Migrated from Cisco ASA to Palo Alto 5050. Migrated from Cisco to Juniper Routers for client Branch delivery.
In addition, deployed "Next Gen Juniper SRX550" for Corporate remote network.
Managed trouble tickets and configuration of new servers added to Pools (Content Checks)
•UBS – (Consultant March 2014 -December 2014) "Lead Analyst" "V.P." Lead Analyst on peer with Engineering, managed Palo Alto 5050. Supported Blue Coat Proxy issues for trading network. Supported 350 Branches with Meraki Wireless. Led or assisted in migration to Avaya Media Gateway VOIP for 400 branches nationwide. Support Cisco ACE Load Balancer for Branch applications.
•CenterBridge Technical Advisor" to “CTO” – (Part time Consultant March 2014-March 2015) Migration to Palo Alto Firewalls from Cisco ASA sets. Designed trading and corporate network using EIGRP network. Supported 200 Cisco Phones for M.A.C. needs. F5 Upgrades and Installation GTM and LTM versions
TD Securities Advised on TD securities – "Director of Network/Telecom" - ( May 2011- March 2014)
1A) Migrated 700 Phones from Nortel 81C to Cisco Call Manager with Unity Voice Mail using SIP.
1B) Migrated from Aironet to Meraki MR12 AP’and ECN’s on Legacy Network in 31W52nd NYC to, New Network using F5 VIPIRON LTM w/GTM . Network Designed using BGP with OSPF Triangle design with failover. Also migrated 10 S.E.F. and ECN connections to Equinix via various methods, circuits, cross connects and VPN in 2 cases.
1C) The above migration also proved financially beneficial as the design of the Colo SEF/ECN Network produced savings $100,000 in spending per SEF and thus reducing time to market turn up from 4 months to 7 days.
2) Migration from Cisco ASA to Palo Alto 4050, 5050, CheckPoint R77 FW, and Source Fire IPS/IDS.
Driven by compliance and Audit analysts to change, this Audit driven migration allowed TD to remove 10 either sunset or ill equipped Cisco Firewalls to New Palo Alto versions. 10 firewalls all together migrated to four Palo Alto 4050’s
3) TD Securities SCRIPTING: Performed some perl creation and Python script management for Operations and Engineering data pulls.
Direct Edge Stock Exchange--- 1ST I.T. Employee Hired (Now B.A.Ts stock exchange)
2010-2011 : Head of I.T. Infrastructure
•Deployed Cisco Aironet Aps and WLC. Wih security control
•Deployed F5 LTM along with ASM BIP IP Load Balancers for Client FIX certification and active client logins.
•Created and Implemented Microsoft Anti-Virus and overall network security methodology including Windows Updates and PC policies.
•Designed and Led Migration from D.E. ECN to Stock Exchange consisting of 400 clients, 700 circuits and/or connections
•Managed and negotiated contracts for Microsoft, HP, Intel, SFTI, Radianz, TNS, SAVVIS, NASDAQ, DTCC, Verizon Business, Level3 and Abovenet
•Wrote document and was liaison to the S.E.C. “ARP” committee for D.E. the stock exchange audit. Document included policy, processes, evidence and tickets to support each.
•Design and built new Stock Exchange network using Cisco 6509’s based on modular design segmenting Production from DR and both from "Corporate" environments.
•Designed and implemented "New D.E." Stock Exchange network consisted of BGP on edge for client integration, redistribute into OSPF for FIX trading application, redistribute into EIGRP for Multicast market data feed network
•Migrated from Cisco PIX to Cisco ASA and Checkpoint. Designed Corporate and Trading networks using Firewall to control access.
•Reported to S.E.C. and passed Audit ARP review of S.E.C. for Exchange
•Deploy Alcatel 7450 ESS for Purpose of GRE and MPLS implemented change Trading based on full breathe security approach from Work Stations to ticketing approach This for DR and Production
•Designed and led VOIP migration from Nortel PBX network to Cisco CM,CC and Unity network.
•Led pro-active monitoring team and supported Cisco Call Manager and Call Center using windows events log converting to syslog.
•Created Market data delivery Multicast network using PIM SPARSE-DENSE and was the first exchange to use this method instead of the inefficient “DENSE MODE .
•Responsible for engineering and designing the building out of the primary and secondary Direct Edge “Next Generation” LOW LATENCY platform and implementing the build out at Equinix and Telx Data Centers
•Designed Market Data ticket plant using Exegy and integration of Market data feeds.
•Designed low latency network for Client connectivity
•Designed and built D.E. Corporate "secure" network with S.E.C. approved path to D.E. Trading network.
•Engineered RFP specifications for cabling and network projects for Equinix and TELX
Morgan Stanley 10/05 – 06/07
Manager of Network Operations
•Lead of Global Network Operations Engineering Team
•Managed Vendor relationships.
•Support CISCO CSS, Cisco ACE as well as F5 VIPIRON LTM Load Balancers for a combined 3000 servers domestic
•Supported large OSPF network across Global sites with BGP between business units.
•Lead for 30 Network analysts monitoring global Network
•Client and Business unit interface for all network issues
•Network hygiene Lead using network report analysis and infrastructure audits
•Network Sustaining Engineering Support for purpose of network upkeep
•Hands-on application support of proprietary trading and vendor applications using protocol analysis
Amaranth Group Inc. 12/02 – 10/05
Sr. VP, Communications (Lead Architect: Network, Security Telecom and BCP)
•Managed build outs of New data center and disaster recovery site.
•Managed Network Operations and created process, procedures.
•Managed build out of BCP seating site.
•Managed Vendor contracts and relationships.
•Implemented and supported Source Fire IDS
•Designed Security layout with Cisco ASA and Public server DMZ
•Designed Extranet network using BGP for 3rd party routing integration
•Designed new data center network using OSPF for various sites broken up into Geographic areas.
•Member of security policy committee
•Managed and supported VPN Concentrator for purpose of Client registration.
•Created support technical model for “Trader Help Desk “for all critical network and trader infrastructure issues.
•Managed group responsible for hardware asset management and allocations
•Member of security policy committee
•Managed remote access services allocations for Juniper SSL/ VPN and Citrix user accounts
•Managed an implementation team and contributed to the design of disaster recovery site for the network, telecom and market data groups
•Managed WIFI Solution using Airespace Access points.
•Designed L4-7 load balancing solution using Foundry Server Irons and Brocade ADX.
•Provided supplemental security solutions using SourceFire IDS, Honeypot and 3rd party 7/24/365 monitoring solution to reinforce security strategy.
•Managed an implementation team and contributed to the design of Amaranth’s global offices for the Network, Telecom and Market Data groups
•Implemented SONET ring technology for purpose of WAN redundancy and cost savings initiative for over $2,000,000
Tradescape.com (Day Trading Firm) 01/01 – 12/02
Director of Networking
•Managed all aspects of Market Data integration and FIX connectivity
•Managed System, Network engineering and operations teams
•Designed market data solution to improve latency of various feeds.
•Designed client delivery network (22 branches)
•Designed Client data center footprint
•Designed disaster recovery site routing
•Provided protocol analysis of trading application to improve performance
•Reduced CPU average on core network from 65% to 25% using protocol analysis
•WAN: audit of invoices and reduction circuit costs that produced 2.2 million dollars in savings
Prior to 2001, I have provided the company and title, any additional detail I can provide upon request.
Bear Stearns 11/98 – 01/01
Supervisor of Network Operations
Instinet (ECN) 09/94 – 11/98
Manager of Level1 and Leve 2 Operations and Data Center deployments.
Shark Information (Market Data) 01/93 – 09/94
Field Service Technical Lead
Telerate Systems (Market Data) 07/ 83 – 08/92
Installation Field Engineer
EDUCATION
Sullivan College, 1981 – 1983
CERTIFICATES
CCNA 1.0
CCNP+ Security 1.0
CCIE Written
MCSP
Sniffer University: TCP/IP: Applications Concepts and Troubleshooting
Sniffer University: TCP/IP: Network Concepts and Troubleshooting
Sniffer University: Troubleshooting with Expert Sniffer
NYNEX: Protocol Analyzer
NYNEX: Basic Data Communication Concepts
Contact this candidate