Post Job Free
Sign in

Senior Network Engineer

Location:
Charleston, SC
Posted:
February 13, 2015

Contact this candidate

Resume:

P aul Godolphin

**** ***** ***

Mt. Pleasant, SC 29466

865-***-****

****.*********@*****.***

SUMMARY

Over 15 years of experience in enterprise IT environments in both Systems and Network roles.

NETWORKING SKILLS

Routing

• Inbound/outbound route management using route-maps (prefix-lists,

A CLS)

• BGP – OSPF - EIGRP

• Route redistribution

• ASA 5505, 5520, 5585 firewalls

• Check Point firewalls

• DR design using multiple carriers, multiple sites

• Client IPsec tunnels requiring NAT/Double-NAT

Hardware

• Nexus 2K, 5K

• Cisco 6500, 4500, 3750X, 3500, etc. switches

• Cisco 1800, 2800, 2900, 3800, 7200 series routers

• Cisco ASA 5505, 5520, 5585 firewalls

• Cisco VPN 3000 concentrator

• Cisco Meraki APs, switches

Systems Administration

• Shell/PowerShell scripting – complex scripts automating a range of

a ctions including new user Active Directory and Exchange account

c reation, automated application testing, PC imaging

• VERITAS NetBackup, Backup Exec – Active Directory, SQL, file

b ackups – enterprise scale employing policy scheduling, multiple

m edia servers, CASO server, SAN storage

• VMware – VMWare ESX infrastructure on IBM H-series BladeCenter

c hassis, multiple clusters, 100s of guest servers, boot from SAN

• MCSE, MCSA

• Management of 600-1000 seat dual-site call-center

EXPERIENCE

8/2012 – 10/2014

Senior Network Engineer

Pilot Flying J

5 508 Lonas Drive

K noxville, TN 37909

8 65.588.7487

• Redesigned Pilot’s routing infrastructure developing a unique, fully

r edundant failover to DR via GRE over IPsec tunnels

• Management of Pilot enterprise MPLS WAN consisting of over 800

Travel Center networks with multiple ISPs, dual ingress/egress points

• Management of corporate backbone between HQ and multiple DR

D atacenter networks. Over 4000 routes in BGP, multiple carriers –

AT&T, Verizon, Sprint, VPN routes. Redistributed via EIGRP to

c ampus and DR core aggregation routers

• DMVPN – point-to-multipoint VPN for C-store primary network

c onnection over broadband, travel center backup connection.

Tunneled BGP over IPSec. Increased redistribution metrics into

E IGRP for sites using VPN as a backup route

• Use of route-maps (with ACLs and prefix lists) for route filtering, policy

b ased routing

• Backup store access for Credit Card transactions using Cradlepoint

c ellular connections and DMVPN tunnels

• Management of ASA 5505, 5520 and 5585 (SSP10 and SSP20)

f irewalls

• Built Pilot’s enterprise ASA 5585 SSP20 Active/Active firewall

i nfrastructure – wrote custom shell scripts converting thousands of

o bjects and groups from Check Point to Cisco ASA IOS format and

i mporting into new firewalls. Reevaluated and recreated hundreds of

A CLs

• Linux Expect scripts

• WhatsUp/SolarWinds monitoring

• Build Pilot’s RADIUS server

• L2L VPN tunnels

• EIGRP, BGP, OSPF routing – redistribution

• Creation of fully representational and functional lab environment

• Creation of the company’s first comprehensive Visio diagrams

• Designed and implemented Pilot’s DR datacenter in Oklahoma City,

OK

• Nexus 5000, 2000, 3000, 4000 (Blade Center switches) – Nexus 5K-

VPCs to Nexus 2K fabric extenders. Complete build out of DR site

w ith Nexus 5K-2K, built-out unused half of Pilot corporate data center

w ith Nexus 5K-2K (planned to migrate to new Nexus side and upgrade

e xisting Catalyst side)

• Cisco Catalyst 6509 cores switches, 6509 distribution switches

• Cisco 4507, 3750X stacks

• Cisco 7204, 7206, 2811, 2911, 1841 routers

• O C3, DS3, T1, frame-relay, metro-e circuits

• Management of corporate campus consisting of 6 fully staffed

b uildings

1/2010 – 8/2012

Network Engineer

EdFinancial Services

2 98 N Seven Oaks Drive

K noxville, TN 37922

8 65.342.5500

• Brought company network to meet FIPS/NIST standards

• Replaced 75% of all Cisco gear as required to meet FIPS compliance.

• Introduced dynamic routing (OSPF) for Internet edge, corporate WAN

• Visio diagrams to fulfill auditor requirements

• Management of Cisco MDS 9000 series fiber switches

• Cisco ASA 5520 – Active/Standby, Active/Active – Management of

E dFinancial’s multi-tiered ASA firewall infrastructure

• Cisco ASA 5505 – remote vendor access via IPSec VPN

• Cisco 6500, 4507, 3750X switches

• Introduced PEAP wireless infrastructure

• PowerShell scripting to assist Systems Engineering department

• Introduced Microsoft Direct Access VPN solution using IPv6

11/2009 – 1/2010

Network Engineer

Saratoga Technologies

1 209 Euclid Ave

K noxville, TN 37921

8 65.246.0070

• Small to medium sized business consulting

• Firewall configurations

• Network design – installation

• Active directory scripts

• Active Directory domain upgrades

9/2009 – 11/2009

Network Engineer

IT Group

9 040 Executive Park Drive, Suite 200

K noxville, TN 37923

8 65.789.8656

• Small to medium sized business consulting

• VPN small office solutions

• Microsoft Small Business Server

6/2006 – 9/2009

Senior Network Engineer

Clayton Homes

5 00 Clayton Road

M aryville, TN 37804

8 65.380.3000

• Management of enterprise MPLS WAN network consisting of over 75

m anufacturing plants and branch offices

• Introduced dynamic routing on the network edge

• Introduced trunking on the Alcatel LAN

• Worked to implement VMWare infrastructure on IBM H-series Blade

C enters

• Check Point firewall training

• PowerShell scripting for new user account creation, Exchange 2007

m anagement, discovery needs for Legal department

• Redesigned file server system security model – per server

l ocal/domain security groups

• Managed all backups using Backup Exec – CASO media server model

b ased on backup policies

• VMware – assisted with the creation of and later managed VMware

E SX infrastructure – IBM H-series BladeCenter chassis, boot from

S AN, trunked connections carrying multiple VLANs

• Active Directory delegation of control – allow Site Support techs to

u nlock AD accounts, reset passwords, and disable accounts within

s pecific OUs

3/2004-6/2006

Junior Network Engineer

C lientLogic/Sitel

3 102 West End Avenue #900

N ashville, TN 37203

6 15.301.7100

• Created new call center campaigns – router/switch configurations,

r oute advertisements across Sitel/Clientlogic’s Enterprise WAN –

E IGRP-OSPF

• Introduced client circuits and routing into ClientLogic MPLS WAN

• Introduced WhatsUp monitoring for all network equipment

• PIX, ASA firewalls

• Troubleshoot routing and application issues nationwide, Panama and

C anada

8/1999-3/2004

Systems Administrator

ClientLogic/Sitel

3 102 West End Avenue #900

N ashville, TN 37203

6 15.301.7100

• Managed 600-1000 seat dual-site call-center in Oak Ridge Tennessee

• Shell scripting – automation of new user account creation, Ghosting of

c omputers, application deployment

• AI packages for application deployment

• Active Directory IP Security Policies – Original idea pushing IP white

l ists via Group Policy to workstations increasing security – Used by

B lizzard Entertainment campaign in Albuquerque, NM

• Achieved Microsoft MCSE

• Achieved Cisco CCNA

• Promoted to Corporate Network Team

EDUCATION

1998-2001

University of Tennessee

Knoxville, TN

• History/Literature

• Left after Junior year to pursue IT job out of state – GPA 3.93

IT Certifications

• Cisco CCNA (2003)

• Microsoft MCSE (2000)



Contact this candidate