Network Engineer Security
Resume:
DON RANDLE
Location: Fort Worth
Contact: 817-***-****
Why Me: THINK BIG, START SMALL, DO MORE
Experienced Network Engineer with expertise building scalable network environments to compete with industry leaders in new technologies, ideas, and services. Excellent knowledge of IT security policies with experience configuring, managing and modifying Routers, Switches and ASA Firewalls. Excellent work ethic, able to demonstrate the definition of hard work, leadership, commitment, and enthusiasm.
CCNA Certified: (CSCO11646444).
EXPERIENCE
Allied Electronics & Automation
Oct 2018 – Present
Network Engineer
As one of three Network Engineers in our group responsible for Router, Switch, firewall troubleshooting and maintenance issues.
Responsibilities include; resolving any issues from Corp. office branch locations and/or third party/vendor documented resolutions.
Work hand in hand with third party vendors to ensure success of all network related changes
Work with Project managers to define, consolidate and standardize documentation, security standards, and policies.
Streamline and documented firewall build process for management of multiple router switch firewall using shell, GUI, and keyed ssh.
Participate in site surveys for Wireless Lan Controllers and Access Points to ensure best signal strength and range coverage at branch locations utilizing 802.11n.
Implement, configure and troubleshoot remote user VPN's, Corp VPN tunnel and Secure Remote vendor related issues.
Implemented Integrated Service Engine (ISE) on switch as well as firewall to lock down port assignments and restrict layer2 access by Policies within ISE.
Implemented MLS QOS settings on the 2960 Switch's for Voice traffic to ensure reliability and call quality of VOIP phones.
Implemented new data broadband circuit migrations, configurations and testing to confirm maximum throughput.
Implemented the Policy Rules, DMZ and Multiple VM's for Multiple Clients for Corp. and branch locations throughout United States.
Implemented enterprise system monitoring using Palo Alto, Solarwinds, Cyber Ark. to prevent routing loops redundant links and rouge users from compromising network.
Implemented Zone Based Firewall and Security Rules on the Palo Alto Firewall.
Implemented code upgrades, router and switch replacements for end of life cycles with Cisco vendor to ensure optimum performance.
Omnicom IT: Omnicom Data Centers & Cloud Services
Nov 2014 to Aug 2018
Network Engineer
●Test and turn-up new circuit provisions and bandwidth upgrades, pre-configured Cisco and HP router and switches for shipment, setup MPLS gear for onsite configuration and/or migration.
●Configure and trouble-shoot design and deploy LAN/WAN WLAN functional network topologies.
●Determine the local site’s AS number to preference the match statement for configuring on the ASR connecting to ISP
.
●Set the local preference on the router to prefer an ISP by setting up the route map to match the exit community list
●Configure OSPF routing protocol to redistribute static routes into BGP to advertise loopback IP address for management access and trouble-shooting to agency device from the MPLS gear on site.
●Configure mGRE tunnels by utilizing VRF to restricting traffic to a single VRF host which prevent split horizon and route overlap potentially causing a network outage.
●Set the local preference on the router to prefer an ISP by setting up the route map to match the exit community.
●Monitor and configure system alerts to be monitored by Orion; identifying fault conditions and taking corrective measures to resolve notifications, reports and ISP outages affecting company infrastructure in the Data Center(s).
●Add, remove or modified trunks ports between switch virtual interfaces. for Esxi host configured on the switch interface for access to production and management environment within vSphere.
●Setup HSRP between Management and production devices that run application and storage backups.
●Work with PMO and design architects to find the best design to ensure reliable connectivity between hosts, devices and companies have VPN remote user client on P2P and B2B tunnels
●Participate in the on-call rotation providing after hour support for network related issues as they impact business stability and functionality.
●Troubleshoot router and switch hardware issues and provide maintenance; responsible for resolving the issues from company and/or vendor and documenting resolutions.
●Facilitate maintenance windows for hardware and equipment upgrades, successfully deploy and document the processes and procedure set forth by company and industry guidelines.
●Work with local contact and Telco responsible for packaging and shipping pre-configuring racked equipment that was shipped to the sites for setup.
●Monitor system alerts, identify fault conditions and take corrective measures to resolve notifications and report ISP outages.
Consolidated Data Services, an Omnicom Company
Jan 2010 to Nov 2014
Jr. Network Engineer
●Manage and maintain the day-to-day security operations and system change lifecycles of critical security devices and tools
●Experienced implementing and trouble-shooting enterprise campus networks supporting multi-tenant switching technologies, including link negotiation, VLANs, trunking, inter-VLAN routing, port aggregation.
●Experienced implementing and trouble-shooting enterprise campus networks supporting multi-tenant routing technologies, including static and dynamic routing, routing protocols; OSPF, EIGRP and iBGP eBGP
●Experience implementing VPN technology, including configuration and monitoring radius and or AD server authentication for end user access to VPN tunnel-group with group policies performing active directory lookup.
●Review ticketing system to provide troubleshooting for day to day Operations such as; MPLS, Remote VPN, Firewall ACL and Port assignments.
●Decommission end of lease physical and virtual servers to remove connectivity from the network by cleaning up routes and/or ACL rules.
●Configure, manage and modify Cisco ASA firewalls; policies, DMZ, routing, NAT (source, destination, static and dynamic) within object-group, object-networks, VLAN and port assignment
●Provide 24/7/365 support requirements between servers and/or between their client network(s) to accommodate routing and or ACL needs to firewall and network devices.
●Align with engineering teams and the Network Operation Control center to ensure all devices are online incidents have been resolved during annually and Simi-annually maintenance window for code or version upgrades to the Core equip.
●Troubleshoot router and switch hardware issues and provide maintenance; responsible for resolving the issues from company and/or vendor and documenting resolutions.
●Hands-on experience with firewalls, including Cisco ASA, Checkpoint and basic knowledge Palo Alto firewall rule base set.
AT&T
Sep 2007 – Jan 2010
Tier 1 & 2 Engineer
●Strong hands on knowledge and experience with security solutions such as IPSEC VPNs, SSL VPNs, IPS.
●Strong trouble-shooting by utilization of packet capture hardware/software to support fault isolation.
●Experience with VPN technology, including configuration, monitoring, and fault isolation.
●Strong knowledge with designing, implementing, and operating secure and manageable switched and routed networks.
●Troubleshoot and resolve firewall software and hardware issues, including VPNs, connectivity issues, logging, cluster configurations, and hardware installations.
●Analyze, troubleshoot and proactively monitor network changes generated by alarms in an Internal Monitoring System I.E; S.M.A.R.T.S and NETCOOL
●Monitor stability in LAN/WAN configurations for AT&T managed Services clients while providing troubleshooting for any onsite issues with provided router equipment.
●Using network protocol such as OSPF and BGP in data networks design, by calculating, and applying subnet masks and addresses for devices to be added or subtracted from network.
●Participate in the On-Call rotation 24/7 support for network infrastructure needs as they impact business stability and functionality.
TECHNICAL SKILLS
●Routing Protocols: OSPF, EIGRP, BGP, RIP v1 v2
●HPE H58 H59 H12
●Cisco Routers: 1725, 2500, 2600, 2811, 2960, 3560, 3750, 6509;
●ASR: 1001, 1002, 1013
●Firewalls: Cisco ASA: 5515 – 5585, Palo Alto Panorama Version 8.0.12
●Load-balancer: Citrix Netscaler 4710, BIGIP F5
●Cisco Switch: Nexus 3000, 5000, 6000, 7000 and 9000 series
●Data Communication: Ethernet, LAN, WAN, TCP/IP, B2B, P2P VLAN,
●VPN, MPLS, mGRE Tunnel T1 T3 DNS DHCP
Contact this candidate