Engineer Manager
Resume:
IVAN J ARANO
Petaluma CA
Cell 707-***-****
ac593l@r.postjobfree.com
SUMMARY: Computer professional with over 18 years of experience looking to support your ongoing system network needs as a Sr. System/Network Engineer. Responsibilities cover systems/network security, research,
design, installation, support, administration of complex network architectures comprised of multiple hardware,
change control and disaster recovery. I have gained a wide range of experience working for large to midsize
organizations as a fulltime or as a short term consultant throughout the Bay Area and L.A. User-friendly engineer with a reputation for dedicated teamwork, high-energy, and good work ethic.
PROFESSIONAL EXPERIENCE:
DFS / Henry Schein, Melville, New York 6/18 to present
Contractor / Solarwinds Engineer - Remote
Configured all interfaces for Palo Alto (PAN) firewalls and add them to NPM/NTA
Deploy EOC and configure sites for US and EU
Configured all ISP interfaces on PAN devices to be able to monitor bandwidth utilization
Configured Solarwinds alerts for:
oInterface on network devices going down
oInterface bandwidth utilization
oHigh CPU utilization
oHigh Memory utilization
oPower Supply critical status
oTemperature sensor critical state
oFan critical status on network devices
Configure and created network device dependencies
Added all Palo Alto and Cisco routers/switches devices to Solarwinds NPM module
VSG / Arista Networks, Santa Clara, California 07/17 to 6/18
Contractor / Network Engineer
Support Palo Alto firewalls models: 5050, 3020, 850, 500, 220, and 200
Support all Arista L2/L3 switches (Datacenter/MDF/IDF devices: 7010T, 7048T, 7050S, 7150S, etc)
Responsible for initial Netbrain Architecture deployment and complete implementation
Creation of all Network diagrams using Netbrain 7.0 for use with Microsoft Visio file format
Support tools as Solarwinds Network Toolset, DumpSec, Wireshark, for network discovery/assessment
Solarwinds modules installed/supported:
oOrion Netflow Traffic Analyzer - 4.2.2
oOrion Network Performance Monitor – 12.1
oOrion Server & Application Monitor - 6.4
oOrion Virtual Infrastructure Monitor – 7.1
oOrion Database Performance Analyzer Integration Module 11.0
oOrion Network Configuration Manager 7.6
Amy’s Kitchen, Bay Area, California 03/15 to 05/17
Sr. Network Engineer
Support Palo Alto firewalls features like: Outbound SSL Decryption, URL Filtering, GlobalProtect (Client VPN), Site-to-Site VPN Tunnel, Dual Internet using Policy Based Forwarding, and Anti-Virus Blocking
Support Cisco Wireless LAN Controllers 4400-5500 series supporting 350+ APs
Support Cisco Aironet 700/1700/2700/3700 series
Supported and configured controlerless Aerohive WiFi supporting 200+ APs
Support all Cisco routers and switches (Datacenter/MDF/IDF devices: Nexus 5596T, ASR 1001/1002/1004, Catalyst 3750X/4506-E/4510R, 6509-E, 6513-E)
Deployed and configured Nutanix and Dell Compellent using fiber optics connections
Support fiber optic connections using ST/LC/SC/MTRJ connectors
Linux administration for 100+ servers using RHEL and CentOS distributions
Responsible for securing all network devices (Routers/Switches/WLC/Aerohive)
Support of vSphere & VMware ESXi 5.5/6.0/6.1
Creation of all Network diagrams using Netbrain 6.2 for use with Microsoft Visio file format
Support tools as Solarwinds Network Toolset, DumpSec, Wireshark, for network discovery/assessment
Layer 3 technologies: IPv4, IPv6, OSPF, BGP, HSRP, VRRP, QoS
Forced all network devices to use 802.1X authentication (RADIUS)
Extensive knowledge and understanding of spanning tree protocol and VLANs
Experience with IOS Routing Maps, Policy Based Routing, Preflix-List Configurations
Solarwinds/Netbrain Architecture on initial deployment and complete implementation
Solarwinds modules installed/supported:
oOrion Netflow Traffic Analyzer - 4.1.1
oOrion Network Performance Monitor – 11.5.2
oOrion Server & Application Monitor - 6.2.2
oOrion Virtualization Manager - 6.3
oOrion Storage Resource Monitor 6.2.0
oInstallation of multiple additional pollers
oInstallation of Solarwinds Web Server
TAOS / BIO-RAD, Hercules, California 2/17 to 3/17
Contractor / Solarwinds Engineer - Remote
Configured all interfaces for Palo Alto (PAN) firewalls and add them to NPM/NTA
Configured Netflow for all border/perimeter network device and added them to NTA module
Configured all ISP interfaces on PAN devices to be able to monitor bandwidth utilization
Configured Solarwinds alerts for:
oInterface on network devices going down
oInterface bandwidth utilization
oHigh CPU utilization
oHigh Memory utilization
oPower Supply critical status
oTemperature sensor critical state
oFan critical status on network devices
Created all Solarwinds maps using Photoshop and Visio network diagram per site
Created network device dependencies
Added all Cisco routers/switches devices to Solarwinds NPM module
FusionStorm / WestMarine, Watsonville, California 3/15 to 1/16
Contractor / Solarwinds Engineer - Remote
Added all Windows server using WMI to Solarwinds SAM module
Added all ESXi hosts to Solarwinds VM module
Configured all Linux server for SNMP enable and add them to Solarwinds SAM module
Configured SNMP for all Network Device
Configured Netflow for all border/perimeter network device and added them to NTA module
Added all Palo Alto firewalls to Solarwinds NPM module
Added all Cisco routers/switches devices to Solarwinds NPM module
Creation of Solarwinds architecture diagrams using Microsoft Visio 2013
Create alerts specific dashboard for each IT team (Helpd Desk, Security, Network, Systems, Storage)
Initial companywide Installation and Support of Solarwinds
oOrion Netflow Traffic Analyzer – 3.8
oOrion Network Performance Monitor – 10.0
oOrion Server & Application Monitor – 5.0
oOrion Virtualization Manager – 5.0
oOrion Storage Resource Monitor 5.2
oInstallation of multiple additional pollers
oInstallation of Solarwinds Web Server
As a Sr. Solarwinds Engineer I was able to redesign SolarWinds for better performance. This project required the deployment of multiple SolarWinds modules (Network Performance Monitor, Netflow Traffic Analyzer, Network Configuration Manager, Server and Application Monitor, Storage Resource Monitor, and Virtualization Manager).
VeraCentra Inc., Napa, California 10/11 to 3/15
Sr. Network/Systems Engineer/ Infrastructure Manager
Support Palo Alto firewalls features like: Outbound SSL Decryption, URL Filtering, GlobalProtect (Client VPN), Site-to-Site VPN Tunnel, Dual Internet using Policy Based Forwarding, and Anti-Virus Blocking
Cisco routers, switches, Foundry 424/448 switches Upgrade/Security/Administration
Created network infrastructure documentation using Netbrain 5.0
McAfee ePolicy Orchestrator 4.6.7 Upgrade/Security/Administration
Upgraded all domain controllers from Win 2003 to Win 2012 R2
Upgraded and complete virtual project environment from VMWare 2.0 to 5.1 to 5.5
Creation of diagrams using Microsoft Visio 2010/2013
Upgrade and support monitoring system from ActiveXperts to Solarwinds
Using tools as Network Toolbox, DumpSec, Wireshark, for network discovery/assessment
Implemented new backup system using Acronis to disk and Symantec Backup Exec to tape
Implemented a Hyper-V farm using Windows 2012 R2 for all main Microsoft SQL database servers
Administration of Dell data storage array using iSCSI for all VMWare and Hyper-V host servers
Initial companywide Installation and Support of Solarwinds
oOrion Netflow Traffic Analyzer – 3.8
oOrion Network Performance Monitor – 10.0
oOrion Server & Application Monitor – 5.0
oOrion Virtualization Manager – 5.0
oOrion Storage Resource Monitor 5.2
oInstallation of multiple additional pollers
oInstallation of Solarwinds Web Server
As a Sr. Network/Systems Engineer I was able to upgrade the entire infrastructure to latest technologies
SolarWinds companywide implementation. This project required the deployment of multiple SolarWinds modules (Network Performance Monitor, Netflow Traffic Analyzer, Network Configuration Manager, Server and Application Monitor, Storage Resource Monitor, and Virtualization Manager).
The MLS, Beverly Hills, California 07/10 to 10/11
Sr. Network/Systems Engineer
Cisco3750/4500 / Foundry 424/448 switches Upgrade/Security/Administration
Multiple SonicWall firewalls 3500 Security/Administration
Support Data Center in L.A. CA
McAfee ePolicy Orchestrator 5.1.0 Upgrade/Security/Administration
Documented entire network in a multiple domain environment
Support virtual environments on Virtual Iron, Hyper-V, and VMWare 4.1/5.0
Creation of diagrams using Microsoft Visio 2010
Administration of Avaya VoIP/IP system using our Cisco switches
SCOM, PRTG 8.4 Setup and Administration
Used tools as NMAP, DumpSec, Wireshark, MBSA 2.1 for network discovery/assessment
Implement new backup system using Double-Take and Acronis technologies
Implemented a Hyper-V farm using Windows 2012 for all main Microsoft SQL database servers
Administration of HP data storage array using Fiber Channel for all VMWare, Hyper-V, and Virtual Iron
MODIS / Royal Dutch Shell, Martinez, California 06/09 to 02/10
Network/Systems Engineer / Contractor
Cisco ASA 5505/5510 firewalls Upgrade/Security/Administration
Cisco 1841/2811 routers Upgrade/Security/Administration
Cisco 6500/4500/3500 switches Upgrade/Security/Administration
Upgrade every Cisco device to Honeywell IOS recommendations
Secure every switch port to one MAC address
Stop any use of telnet and only use of SSH ver. 2 for administration
Use user names with levels of administrations for all devices
Supporting NTP, SNMP, SSH for all Cisco devices
Creation of diagrams using Microsoft Visio 2007
Used tools as NMAP, DumpSec, Wireshark, MBSA 2.1, Nessus
Initial design/installation/support of Whatsup Gold 14.0
Responsible for all network documentation and the upgrade of all Cisco equipment to latest Cisco IOS. Also responsible for the security, implementation, and monitoring for all Cisco switches/routers for the entire refinery. The project was part of the Process Control Domain responsible for all oil processing equipment; it was delivered ahead of schedule and under budget.
JES Engineering, Inc. / PG&E, Rio Vista, California 12/08 to 06/09
Sr. Network Engineer / Contractor
Cisco ASA 5510 firewalls initial configuration administration/security
Cisco 1841/2811 routers and Cisco 3500 switches Upgrade/Security/Administration
VPN Administration/Security using AES 256 bits encryption
Supporting NTP, SNMP, SSH, TCP/IP, Site to Site VPN tunnels
All Cisco devices were monitored using Solarwinds NPM & NTA modules
Creation of diagrams using Microsoft Visio 2007
Robert Half Technology / The State Bar of California, San Francisco, California 06/07 to 05/08
Security/Network Engineer / Contractor
Administration and security for Cisco PIX 501, 515 and ASA 5550 firewalls
Cisco 1841/2600 routers and Cisco 3500 switches Upgrade/Security/Administration
CATOS 6509 and 6509-E IOS switches Upgrade/Security/Administration
VPN Administration/Security using AES 256 bits encryption
Initial design/installation/support of Solarwinds
Websense Administration
Windows 2000/2003 IBM Servers Security
Microsoft SQL 2000 Servers Administration/Security
T1/DS3 line WAN monitoring using Solarwinds and Cisco Works
VLAN design and configuration moving away from using only native VLAN
Documented Network design using Microsoft Visio to reflect new WAN/LAN configurations
Supporting a 24/7/365 Data Center Operations facility
Responsible for upgrading all Cisco PIX 515 firewalls for San Francisco and Los Angeles offices with new Cisco ASA 5520 firewalls. Firewall fail-over, and VLANs for each of two locations were implemented successfully, meeting deadlines for an IBM blade center implementation project.
BayGroup International, Larkspur, California 11/05 to 06/07
Senior Systems/Security Administrator
Windows 2000/2003 Dell Servers Security: Active Directory, DNS, WINS, DHCP.
Redesign of WLAN for two main offices using Cisco Wireless devices and high encryption
SAN Dell/EMC Administration for file and database storage.
Microsoft Exchange 2000/2003 Design/Migration/Security/Administrator
Microsoft Exchange 2003 Outlook Web Access (OWA) using Secure Sockets Layer (SSL) encryption.
McAfee VirusScan Enterprise 8.5i Administration
Managing virtual servers using VMware ESX 3.5
Cisco ASA 5510, PIX 515, Cisco 3000 Concentrator Administration/Security.
Microsoft SQL 2000 Administration/Security in a 2 node Cluster environment.
Microsoft SQL 2005 Administration/Security in a single Dell server.
GFI Events – Server monitoring system, Kiwi Syslog,
Backup Exec System Recovery, Backup-Exec 11d, Network Monitoring with IPCheck Application
Implementation of new security procedures for entire IT department (Documentation, Change Control).
Responsible for upgrading old Cisco PIX 515 firewalls with new Cisco ASA 5520 firewalls. Also all domain controllers were upgraded to from Windows 2000 to Windows 2003 environment. Exchange 2000 was upgraded to Exchange 2003 with excellent results for the entire company. Network tools were introduced to the company as Kiwi Syslog, GFI Event manager, IPCheck. Also, change management was implemented for the IT department.
EDUCATION / PROFESSIONAL DEVELOPMENT
Heald College, San Francisco, CA. Associate in Applied Science Degree (AAS), Network Technology
Hispanic University, Salt Lake, UT. Bachelor of Science (BS), Computer Science
Technical Training
Netbrain University – Certified NetOps Expert (Feb 2018)
Palo Alto Networks – Firewall Installation, Configuration and Management (April, 2017)
SANS Institute -- Track 505 Securing Windows with the Critical Security Controls (2014)
Cisco CCNP-BSCI Series (Routing) (2009)
Cisco CCNP-BCMSN Series (Switching) (2008)
SANS Institute -- Track 7 Auditing Networks, Perimeters & Systems (2007)
CISCO – New PIX ASA Configuration/Administration (2005)
SANS Institute -- Track 3 Intrusion Detection In-Depth (July, 2004)
SANS Institute -- Securing Windows 2000 – The Gold Standard (July, 2004)
SANS Institute -- Track 2 Firewalls, Perimeter Protection, and VPNs (November, 2003)
SANS Institute -- Track 1 Security Essentials (June, 2003)
Certifications
CNA #9750766
CCNA #CSCO10320772
MCSE – MCSA+Security #1610668
CompTIA Security+
Contact this candidate