Experienced Network Security Engineer specializing in Post-Sales Firewall Support at the Enterprise-Level. I employ a highly technical background with a strong focus on Network Security and Firewall Support. I am extremely passionate about Network Security, which is why at this time I am committed to pursuing my CISSP Certification, I have thoroughly enjoyed my work as a Security Engineer Supporting large Enterprise corporations. I enjoy supporting Change Management incidents and creating and/or modifying Rule Policies. I also have extensive experience deploying cradle-to-grave systems. I am highly recommended by colleagues who recognize my ability to meet and exceed expectations.
Check Point Firewall Provider-1 Crossbeam X80 GAiA R77 SmartDashBoard SmartView Tracker
oStrong Hands-On Command-Line (CLI) Troubleshooting Experience
oBulk Object Script Deployment
Palo Alto Firewall PA – 2000, 3000 Series Panorama
Fortinet Firewall Fortimanager 3000, Fortigate 3040, Fortigate 5001, Fortigate 310, Fortigate 620
Cisco Appliances: ASA Firewall 5500 Series FirePower 890 VPN
JunOS Space Firewall
Juniper NSM Firewall
Strong Hands-on Command Line Experience (CLI) using Firewall and Route/Switch
oSecureCRT, HopBox, Putty
Linux: Red Hat
Cisco Switches: 3560X, 3560G, 2960 Stacked, 3750X Stacked, 6500 Core
Cisco Routers: 2811, 2901, 2911
Summary of Qualifications:
Hands-on experience supporting Next Generation Firewalls (NGFW)
oJuniper NSM, JunOS Space, Fortinet, Palo Alto, Check Point, Cisco ASA, Cisco Pix,.
Srong background using Check Point Next Generation Firewalls.
oHigh-Level Expertise troubleshooting Check Point Firewalls.
Strong background using Palo Alto 2000, 3000 Series Firewalls
Strong Experience in Post-Sales Firewall operational support.
In depth troubleshooting expertise via GUI and at the Command-line (CLI).
Strong background using Cisco products/services and software.
Hands-on experience driving ticket resolution focused on Network Security Issues.
Experience working Change Management requests.
Extensive experience using ticket queue platforms such as: JIRA, EFORC, and BMC Remedy
High level of analytical ability in resolving complex Network Security issues.
Strong experience in Enterprise SOC Environments managing 400+ Firewalls.
Ongoing willingness to learn new technologies and approaches.
Syracuse University, Syracuse, NY Bachelor of Science Information, Management & Technology
CERTIFICATIONS (In Progress)
CISSP Expected May 2018
Check Point CCSA Expected June 2018
January 2017 – December 2017
Network Security Engineer (Contract Opportunity)
My responsibilities while working for AT&T involved support and execution of firewall policies. I served as a Team Lead who was responsible to day to day firewall management and support, as well as mentoring junior Security Engineers and other internal AT&T teams on Technical Firewall Expertise. Specific duties included:
Serving CSO Team in assisting with day-to-day EFORC ticket requests for troubleshooting and rule modification.
Improving uptime by meeting and exceeding existing SLAs, and completing escalated requests efficiently and in a timely manner.
Assisting in troubleshooting connectivity through packet traces and firewall log analysis both via GUI and Command-Line (CLI)
Creating and executing bulk object scripts for extensive requests with rapid turn around time.
Monitoring and maintaining an array of Firewalls:
oCisco, Juniper NSM, Palo Alto, Fortinet, JunOS Space, Check Point.
Performed as Subject Matter Expert (SME) for all Extranet Check Point vendor facing firewalls.
July 2015 – February 2016
Network Security Engineer (Contract Opportunity)
My responsibilities as a Network Security Engineer at Frontier Communications included the support and implementation of firewall and VPN systems for Frontier's corporate data network. I worked as a Team Lead supporting the Network Security Team as well as the Networking team, where I would mentor other engineers on Technical Firewall Expertise. Installing, configuring and maintaining new equipment and software for Firewalls/VPNs. Identifying security incidents, providing supporting information, and supporting the corporate data network through containment and remediation.
Functioned as Tier 2 support for Firewall/VPN issues which required me to work independently to troubleshoot and resolve related network issues. This includes issues escalating to them from other groups within the Frontier organization.
Configured and managed Palo Alto, Check point, ASA, PIX, and Juniper NetScreen Firewalls.
Worked with routing protocols BGP, OSPF, EIGRP and IGRP.
Analyzed layer 3 & 4 packets for end to end network troubleshooting.
Investigated issues within Frontier corporate data network as well as vendor facing comms.
January 2015 – May 2015
Teaching Assistant – IST452 Advanced Networking
My responsibilities as a Teaching Assistant were to assist IST452 students with Cisco Packet Tracer labs. Labs included routing protocols such as; Open Shortest Path First, Enhanced Interior Gateway Routing Protocol, RIPv2 and RIPv1, and routed protocols; IPv6 and Ipv4. Worked closely with the instructor and student TA(s) to create and maintain new and former labs. Personally payed attention to each particular student and helped him or her with their IST452 coursework, and future goals.
Planned lessons for students and prepared teaching modules for the head professor’s assistance.
Assisted students with labs.
Assisted head professor to improve existing labs and create new ones.
Performed pre-lab configurations for lab setup.
February 2014 – January 2015
HARRIS RF COMMUNICATIONS
Defense & Space
Network Engineer assigned to supporting the definition, design, implementation, and support of configurations of network and security platforms used within Harris based tactical and strategic network solutions. Systems involve Harris equipment and often include microwave, tactical radios, data, and/or custom design peripheral subsystems.
Developed and designed complex and state-of-the-art radio and network system solutions from a choice of Harris product lines, in order to satisfy customer-specified requirements while maximizing profitability and minimizing risks to Harris.
Worked with an extensive range of Cisco LAN and IP Based products in order to design and develop customer systems.
Designed complex IP-Based radio systems, including pre-and post-sales support, design, and implementation.
Developed standard configuration templates that were consistently and efficiently deployed to tactical networks.
Lead problems to resolution, as well as coordinated and facilitated activities with vendors, escalation support teams, and other teams within Harris.
Provided proposal documents and drawings that effectively described the system solution being offered.
July 2012 – January 2014
SAAB SENSIS CORPORATION
Syracuse, NY (Partial Remote)
Aerospace & Aviation
Network Engineer assigned to supporting all existing and future network architectures, customer interfacing, and working closely with the Product and Program team(s) to ensure quality performance on multiple systems including the Advanced Surface Movement Guidance & Control Systems (ASMGCS) and Multilateration Dependent Surveillance (MDS) systems. Worked in technical roles on an array of projects all involving airport navigation tracking systems designed for air traffic controllers. Suported FAA, Air Traffic Systems, and DoD segments of the company.
Configured and optimized network architectures to meet system performance requirements.
Standardized network LAN architecture among all systems deployed at SAAB Sensis.
Conducted trade studies to evaluate alternative network designs to meet evolving requirements and making design recommendations.
Managed Unix/Linux based boxes in order to complete network architecture framework and traffic flow.
Collaborated with customers and co-workers to ensure smooth and reliable operation of software and systems for fulfilling business objectives and processes.
Assisted the product development team with transfiguring user needs to functional requirements.
Conducted research on software and systems products to justify recommendations and to support purchasing efforts.
Developed detailed design definitions and specifications and assisted with implementation.
Negotiated and interfaced directly with various customers during development and test event phases.
Monitored and tested system performance; prepared and delivered system performance statistics and reports using various tools including Matlab, Sensor Data Analysis Tool (SDAT), and EITT.
May 2011 – August 2011
Customer Advocacy Lab Operations Network Engineer (Co-Op)
CALO lab engineer assigned to supporting TAC and AS engineering teams. Responsible for maintaining TAC & AS lab equipment as well as re-creating customer issues.
Built and maintained networks in technical support labs, using Cisco equipment to re-create and solve customer problems.
Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades.
Handled the tasks of providing Level 3 technical support to resolve day-to-day network, computer, and peripheral equipment issues for production and test environments.
Provided general lab infrastructure support, peer training, and mentored newer Co-Ops.
Bachelor of Science, Information Management & Technology
PROFESSIONAL DEVELOPMENT COURSES
SE001 Linear Algebra Applied to Wireless Systems
Palo Alto Networks Essentials 1: Firewall Management 201
References available upon request.